This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Talk:Industry:Project Review/NIST SP 800-37r1 FPD Appendix I"

From OWASP
Jump to: navigation, search
(APPENDIX I SECURITY CONTROLS IN EXTERNAL ENVIRONMENTS)
(APPENDIX I SECURITY CONTROLS IN EXTERNAL ENVIRONMENTS)
Line 8: Line 8:
  
 
==APPENDIX I SECURITY CONTROLS IN EXTERNAL ENVIRONMENTS ==
 
==APPENDIX I SECURITY CONTROLS IN EXTERNAL ENVIRONMENTS ==
 +
  
 
[https://buildsecurityin.us-cert.gov/swa/downloads/SwA_in_Acquisition_102208.pdf Software Assurance in Acquisition:
 
[https://buildsecurityin.us-cert.gov/swa/downloads/SwA_in_Acquisition_102208.pdf Software Assurance in Acquisition:
Mitigating Risks to the Enterprise]
+
Mitigating Risks to the Enterprise] "... provides information on how to incorporate SwA considerations in key decisions and how to exercise due diligence throughout the acquisition process relative to potential risk exposures that could be introduced by the supply chain."  --[[User:Walter Houser|Walter Houser]] 23:22, 19 December 2009 (UTC)
 +
 
 
[[Category:GIC-NISTSP80037r1FPD]]
 
[[Category:GIC-NISTSP80037r1FPD]]

Revision as of 23:22, 19 December 2009

PARTNERSHIPS, OUTSOURCING ARRANGEMENTS, SUPPLY CHAIN EXCHANGES


APPENDIX I SECURITY CONTROLS IN EXTERNAL ENVIRONMENTS

[https://buildsecurityin.us-cert.gov/swa/downloads/SwA_in_Acquisition_102208.pdf Software Assurance in Acquisition: Mitigating Risks to the Enterprise] "... provides information on how to incorporate SwA considerations in key decisions and how to exercise due diligence throughout the acquisition process relative to potential risk exposures that could be introduced by the supply chain." --Walter Houser 23:22, 19 December 2009 (UTC)