Title: NIST Develops Federal Information Processing Standards (FIPS) for Government Systems
Summary:
The National Institute of Standards and Technology (NIST) develops Federal Information Processing Standards (FIPS) to establish uniform technical specifications for federal computer systems. These standards are created when suitable industry solutions don’t exist to meet specific government requirements. While primarily intended for federal agencies, many private sector organizations voluntarily adopt FIPS to enhance their information security.
Current FIPS, including both published standards and draft versions for public comment, are listed on NIST’s Current FIPS webpage. Not all FIPS are mandatory for federal agencies, as their applicability is specified within the standards themselves. FIPS do not apply to national security systems as defined by the Federal Information Security Management Act (FISMA) of 2002.
The development and withdrawal of FIPS follow specific procedures outlined on the NIST Procedures for Developing FIPS Publications webpage. While federal agencies cannot waive mandatory FIPS, the standards remain valuable resources for non-government organizations seeking to strengthen their information security programs.
Source: https://www.nist.gov/standardsgov/compliance-faqs-federal-information-processing-standards-fips
Keywords: FIPS, NIST, Federal computer systems
