| TIP: NIST SP 800-53 r4 - Security Control Family: System and Information Integrity

NIST SP 800-53 r4 - Security Control Family: System and Information Integrity - Supplemental Controls, v4

Profile of requirements corresponding to all supplemental security controls in NIST Special Publication 800-53, r4, under the control family of System and Information Integrity.

Identifier

https://artifacts.trustmarkinitiative.org/lib/tips/nist-sp-800-53-r4---security-control-family_-system-and-information-integrity---supplemental-controls/4/

Publication Date

2021-04-26

Issuing Organization

TMI (https://trustmarkinitiative.org/) View Contact

No Responder

help@trustmarkinitiative.org

555-555-5555

No Mailing Address

Keywords

800-53, Information Integrity, NIST, Security, System, Supplemental

Legal Notice

This document and the information contained herein is provided on an "AS IS" basis, and the Georgia Tech Research Institute disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, the Georgia Tech Research Institute disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.

Tree View
Details View

Trust Expression:

TIP_NISTSP80053r4SecurityControlSI23TimetoRemediateFlawsBenchmarksforCorrectiveActions and TIP_NISTSP80053r4SecurityControlSI25AutomaticSoftwareFirmwareUpdates and TIP_NISTSP80053r4SecurityControlSI26RemovalofPreviousVersionsofSoftwareFirmware and TIP_NISTSP80053r4SecurityControlSI34UpdatesOnlybyPrivilegedUsers and TIP_NISTSP80053r4SecurityControlSI36TestingVerification and TIP_NISTSP80053r4SecurityControlSI37NonsignatureBasedDetection and TIP_NISTSP80053r4SecurityControlSI38DetectUnauthorizedCommands and TIP_NISTSP80053r4SecurityControlSI39AuthenticateRemoteCommands and TIP_NISTSP80053r4SecurityControlSI310MaliciousCodeAnalysis and TIP_NISTSP80053r4SecurityControlSI41SystemWideIntrusionDetectionSystem and TIP_NISTSP80053r4SecurityControlSI43AutomatedToolIntegration and TIP_NISTSP80053r4SecurityControlSI47AutomatedResponsetoSuspiciousEvents and TIP_NISTSP80053r4SecurityControlSI49TestingofMonitoringTools and TIP_NISTSP80053r4SecurityControlSI410VisibilityofEncryptedCommunications and TIP_NISTSP80053r4SecurityControlSI411AnalyzeCommunicationsTrafficAnomalies and TIP_NISTSP80053r4SecurityControlSI412AutomatedAlerts and TIP_NISTSP80053r4SecurityControlSI413AnalyzeTrafficEventPatterns and TIP_NISTSP80053r4SecurityControlSI414WirelessIntrusionDetection and TIP_NISTSP80053r4SecurityControlSI415WirelesstoWirelineCommunications and TIP_NISTSP80053r4SecurityControlSI416CorrelateMonitoringInformation and TIP_NISTSP80053r4SecurityControlSI417IntegratedSituationalAwareness and TIP_NISTSP80053r4SecurityControlSI418AnalyzeTrafficCovertExfiltration and TIP_NISTSP80053r4SecurityControlSI419IndividualsPosingGreaterRisk and TIP_NISTSP80053r4SecurityControlSI420PrivilegedUsers and TIP_NISTSP80053r4SecurityControlSI421ProbationaryPeriods and TIP_NISTSP80053r4SecurityControlSI422UnauthorizedNetworkServices and TIP_NISTSP80053r4SecurityControlSI423HostBasedDevices and TIP_NISTSP80053r4SecurityControlSI424IndicatorsofCompromise and TIP_NISTSP80053r4SecurityControlSI62AutomationSupportforDistributedTesting and TIP_NISTSP80053r4SecurityControlSI63ReportVerificationResults and TIP_NISTSP80053r4SecurityControlSI73CentrallyManagedIntegrityTools and TIP_NISTSP80053r4SecurityControlSI76CryptographicProtection and TIP_NISTSP80053r4SecurityControlSI78AuditingCapabilityforSignificantEvents and TIP_NISTSP80053r4SecurityControlSI79VerifyBootProcess and TIP_NISTSP80053r4SecurityControlSI710ProtectionofBootFirmware and TIP_NISTSP80053r4SecurityControlSI711ConfinedEnvironmentswithLimitedPrivileges and TIP_NISTSP80053r4SecurityControlSI712IntegrityVerification and TIP_NISTSP80053r4SecurityControlSI713CodeExecutioninProtectedEnvironments and TIP_NISTSP80053r4SecurityControlSI715CodeAuthentication and TIP_NISTSP80053r4SecurityControlSI716TimeLimitonProcessExecutionWOSupervision and TIP_NISTSP80053r4SecurityControlSI83ContinuousLearningCapability and TIP_NISTSP80053r4SecurityControlSI101ManualOverrideCapability and TIP_NISTSP80053r4SecurityControlSI102ReviewResolutionofErrors and TIP_NISTSP80053r4SecurityControlSI103PredictableBehavior and TIP_NISTSP80053r4SecurityControlSI104ReviewTimingInteractions and TIP_NISTSP80053r4SecurityControlSI105RestrictInputstoTrustedSourcesandApprovedFormats and TIP_NISTSP80053r4SecurityControlSI13PredictableFailurePrevention and TIP_NISTSP80053r4SecurityControlSI131TransferringComponentResponsibilities and TIP_NISTSP80053r4SecurityControlSI133ManualTransferBetweenComponents and TIP_NISTSP80053r4SecurityControlSI134StandbyComponentInstallationNotification and TIP_NISTSP80053r4SecurityControlSI135FailoverCapability and TIP_NISTSP80053r4SecurityControlSI14NonPersistence and TIP_NISTSP80053r4SecurityControlSI141RefreshfromTrustedSources and TIP_NISTSP80053r4SecurityControlSI15InformationOutputFiltering and TIP_NISTSP80053r4SecurityControlSI17FailSafeProcedures

References (55)

TIP NIST SP 800-53 r4 Security Control SI-2 (3): Time to Remediate Flaws / Benchmarks for Corrective Actions, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-2 (3): Time to Remediate Flaws / Benchmarks for Corrective Actions.
ID	TIP_NISTSP80053r4SecurityControlSI23TimetoRemediateFlawsBenchmarksforCorrectiveActions

TIP NIST SP 800-53 r4 Security Control SI-2 (5): Automatic Software / Firmware Updates, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-2 (5): Automatic Software / Firmware Updates.
ID	TIP_NISTSP80053r4SecurityControlSI25AutomaticSoftwareFirmwareUpdates

TIP NIST SP 800-53 r4 Security Control SI-2 (6): Removal of Previous Versions of Software / Firmware, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-2 (6): Removal of Previous Versions of Software / Firmware.
ID	TIP_NISTSP80053r4SecurityControlSI26RemovalofPreviousVersionsofSoftwareFirmware

TIP NIST SP 800-53 r4 Security Control SI-3 (4): Updates Only by Privileged Users, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-3 (4): Updates Only by Privileged Users.
ID	TIP_NISTSP80053r4SecurityControlSI34UpdatesOnlybyPrivilegedUsers

TIP NIST SP 800-53 r4 Security Control SI-3 (6): Testing / Verification, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-3 (6): Testing / Verification.
ID	TIP_NISTSP80053r4SecurityControlSI36TestingVerification

TIP NIST SP 800-53 r4 Security Control SI-3 (7): Nonsignature-Based Detection, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-3 (7): Nonsignature-Based Detection.
ID	TIP_NISTSP80053r4SecurityControlSI37NonsignatureBasedDetection

TIP NIST SP 800-53 r4 Security Control SI-3 (8): Detect Unauthorized Commands, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-3 (8): Detect Unauthorized Commands.
ID	TIP_NISTSP80053r4SecurityControlSI38DetectUnauthorizedCommands

TIP NIST SP 800-53 r4 Security Control SI-3 (9): Authenticate Remote Commands, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-3 (9): Authenticate Remote Commands.
ID	TIP_NISTSP80053r4SecurityControlSI39AuthenticateRemoteCommands

TIP NIST SP 800-53 r4 Security Control SI-3 (10): Malicious Code Analysis, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-3 (10): Malicious Code Analysis.
ID	TIP_NISTSP80053r4SecurityControlSI310MaliciousCodeAnalysis

TIP NIST SP 800-53 r4 Security Control SI-4 (1): System-Wide Intrusion Detection System, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (1): System-Wide Intrusion Detection System.
ID	TIP_NISTSP80053r4SecurityControlSI41SystemWideIntrusionDetectionSystem

TIP NIST SP 800-53 r4 Security Control SI-4 (3): Automated Tool Integration, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (3): Automated Tool Integration.
ID	TIP_NISTSP80053r4SecurityControlSI43AutomatedToolIntegration

TIP NIST SP 800-53 r4 Security Control SI-4 (7): Automated Response to Suspicious Events, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (7): Automated Response to Suspicious Events.
ID	TIP_NISTSP80053r4SecurityControlSI47AutomatedResponsetoSuspiciousEvents

TIP NIST SP 800-53 r4 Security Control SI-4 (9): Testing of Monitoring Tools, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (9): Testing of Monitoring Tools.
ID	TIP_NISTSP80053r4SecurityControlSI49TestingofMonitoringTools

TIP NIST SP 800-53 r4 Security Control SI-4 (10): Visibility of Encrypted Communications, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (10): Visibility of Encrypted Communications.
ID	TIP_NISTSP80053r4SecurityControlSI410VisibilityofEncryptedCommunications

TIP NIST SP 800-53 r4 Security Control SI-4 (11): Analyze Communications Traffic Anomalies, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (11): Analyze Communications Traffic Anomalies.
ID	TIP_NISTSP80053r4SecurityControlSI411AnalyzeCommunicationsTrafficAnomalies

TIP NIST SP 800-53 r4 Security Control SI-4 (12): Automated Alerts, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (12): Automated Alerts.
ID	TIP_NISTSP80053r4SecurityControlSI412AutomatedAlerts

TIP NIST SP 800-53 r4 Security Control SI-4 (13): Analyze Traffic / Event Patterns, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (13): Analyze Traffic / Event Patterns.
ID	TIP_NISTSP80053r4SecurityControlSI413AnalyzeTrafficEventPatterns

TIP NIST SP 800-53 r4 Security Control SI-4 (14): Wireless Intrusion Detection, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (14): Wireless Intrusion Detection.
ID	TIP_NISTSP80053r4SecurityControlSI414WirelessIntrusionDetection

TIP NIST SP 800-53 r4 Security Control SI-4 (15): Wireless to Wireline Communications, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (15): Wireless to Wireline Communications.
ID	TIP_NISTSP80053r4SecurityControlSI415WirelesstoWirelineCommunications

TIP NIST SP 800-53 r4 Security Control SI-4 (16): Correlate Monitoring Information, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (16): Correlate Monitoring Information.
ID	TIP_NISTSP80053r4SecurityControlSI416CorrelateMonitoringInformation

TIP NIST SP 800-53 r4 Security Control SI-4 (17): Integrated Situational Awareness, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (17): Integrated Situational Awareness.
ID	TIP_NISTSP80053r4SecurityControlSI417IntegratedSituationalAwareness

TIP NIST SP 800-53 r4 Security Control SI-4 (18): Analyze Traffic / Covert Exfiltration, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (18): Analyze Traffic / Covert Exfiltration.
ID	TIP_NISTSP80053r4SecurityControlSI418AnalyzeTrafficCovertExfiltration

TIP NIST SP 800-53 r4 Security Control SI-4 (19): Individuals Posing Greater Risk, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (19): Individuals Posing Greater Risk.
ID	TIP_NISTSP80053r4SecurityControlSI419IndividualsPosingGreaterRisk

TIP NIST SP 800-53 r4 Security Control SI-4 (20): Privileged Users, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (20): Privileged Users.
ID	TIP_NISTSP80053r4SecurityControlSI420PrivilegedUsers

TIP NIST SP 800-53 r4 Security Control SI-4 (21): Probationary Periods, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (21): Probationary Periods.
ID	TIP_NISTSP80053r4SecurityControlSI421ProbationaryPeriods

TIP NIST SP 800-53 r4 Security Control SI-4 (22): Unauthorized Network Services, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (22): Unauthorized Network Services.
ID	TIP_NISTSP80053r4SecurityControlSI422UnauthorizedNetworkServices

TIP NIST SP 800-53 r4 Security Control SI-4 (23): Host-Based Devices, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (23): Host-Based Devices.
ID	TIP_NISTSP80053r4SecurityControlSI423HostBasedDevices

TIP NIST SP 800-53 r4 Security Control SI-4 (24): Indicators of Compromise, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-4 (24): Indicators of Compromise.
ID	TIP_NISTSP80053r4SecurityControlSI424IndicatorsofCompromise

TIP NIST SP 800-53 r4 Security Control SI-6 (2): Automation Support for Distributed Testing, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-6 (2): Automation Support for Distributed Testing.
ID	TIP_NISTSP80053r4SecurityControlSI62AutomationSupportforDistributedTesting

TIP NIST SP 800-53 r4 Security Control SI-6 (3): Report Verification Results, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-6 (3): Report Verification Results.
ID	TIP_NISTSP80053r4SecurityControlSI63ReportVerificationResults

TIP NIST SP 800-53 r4 Security Control SI-7 (3): Centrally-Managed Integrity Tools, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (3): Centrally-Managed Integrity Tools.
ID	TIP_NISTSP80053r4SecurityControlSI73CentrallyManagedIntegrityTools

TIP NIST SP 800-53 r4 Security Control SI-7 (6): Cryptographic Protection, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (6): Cryptographic Protection.
ID	TIP_NISTSP80053r4SecurityControlSI76CryptographicProtection

TIP NIST SP 800-53 r4 Security Control SI-7 (8): Auditing Capability for Significant Events, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (8): Auditing Capability for Significant Events.
ID	TIP_NISTSP80053r4SecurityControlSI78AuditingCapabilityforSignificantEvents

TIP NIST SP 800-53 r4 Security Control SI-7 (9): Verify Boot Process, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (9): Verify Boot Process.
ID	TIP_NISTSP80053r4SecurityControlSI79VerifyBootProcess

TIP NIST SP 800-53 r4 Security Control SI-7 (10): Protection of Boot Firmware, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (10): Protection of Boot Firmware.
ID	TIP_NISTSP80053r4SecurityControlSI710ProtectionofBootFirmware

TIP NIST SP 800-53 r4 Security Control SI-7 (11): Confined Environments with Limited Privileges, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (11): Confined Environments with Limited Privileges.
ID	TIP_NISTSP80053r4SecurityControlSI711ConfinedEnvironmentswithLimitedPrivileges

TIP NIST SP 800-53 r4 Security Control SI-7 (12): Integrity Verification, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (12): Integrity Verification.
ID	TIP_NISTSP80053r4SecurityControlSI712IntegrityVerification

TIP NIST SP 800-53 r4 Security Control SI-7 (13): Code Execution in Protected Environments, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (13): Code Execution in Protected Environments.
ID	TIP_NISTSP80053r4SecurityControlSI713CodeExecutioninProtectedEnvironments

TIP NIST SP 800-53 r4 Security Control SI-7 (15): Code Authentication, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (15): Code Authentication.
ID	TIP_NISTSP80053r4SecurityControlSI715CodeAuthentication

TIP NIST SP 800-53 r4 Security Control SI-7 (16): Time Limit on Process Execution W/O Supervision, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-7 (16): Time Limit on Process Execution W/O Supervision.
ID	TIP_NISTSP80053r4SecurityControlSI716TimeLimitonProcessExecutionWOSupervision

TIP NIST SP 800-53 r4 Security Control SI-8 (3): Continuous Learning Capability, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-8 (3): Continuous Learning Capability.
ID	TIP_NISTSP80053r4SecurityControlSI83ContinuousLearningCapability

TIP NIST SP 800-53 r4 Security Control SI-10 (1): Manual Override Capability, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-10 (1): Manual Override Capability.
ID	TIP_NISTSP80053r4SecurityControlSI101ManualOverrideCapability

TIP NIST SP 800-53 r4 Security Control SI-10 (2): Review / Resolution of Errors, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-10 (2): Review / Resolution of Errors.
ID	TIP_NISTSP80053r4SecurityControlSI102ReviewResolutionofErrors

TIP NIST SP 800-53 r4 Security Control SI-10 (3): Predictable Behavior, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-10 (3): Predictable Behavior.
ID	TIP_NISTSP80053r4SecurityControlSI103PredictableBehavior

TIP NIST SP 800-53 r4 Security Control SI-10 (4): Review / Timing Interactions, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-10 (4): Review / Timing Interactions.
ID	TIP_NISTSP80053r4SecurityControlSI104ReviewTimingInteractions

TIP NIST SP 800-53 r4 Security Control SI-10 (5): Restrict Inputs to Trusted Sources and Approved Formats, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-10 (5): Restrict Inputs to Trusted Sources and Approved Formats.
ID	TIP_NISTSP80053r4SecurityControlSI105RestrictInputstoTrustedSourcesandApprovedFormats

TIP NIST SP 800-53 r4 Security Control SI-13: Predictable Failure Prevention, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-13: Predictable Failure Prevention.
ID	TIP_NISTSP80053r4SecurityControlSI13PredictableFailurePrevention

TIP NIST SP 800-53 r4 Security Control SI-13 (1): Transferring Component Responsibilities, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-13 (1): Transferring Component Responsibilities.
ID	TIP_NISTSP80053r4SecurityControlSI131TransferringComponentResponsibilities

TIP NIST SP 800-53 r4 Security Control SI-13 (3): Manual Transfer Between Components, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-13 (3): Manual Transfer Between Components.
ID	TIP_NISTSP80053r4SecurityControlSI133ManualTransferBetweenComponents

TIP NIST SP 800-53 r4 Security Control SI-13 (4): Standby Component Installation / Notification, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-13 (4): Standby Component Installation / Notification.
ID	TIP_NISTSP80053r4SecurityControlSI134StandbyComponentInstallationNotification

TIP NIST SP 800-53 r4 Security Control SI-13 (5): Failover Capability, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-13 (5): Failover Capability.
ID	TIP_NISTSP80053r4SecurityControlSI135FailoverCapability

TIP NIST SP 800-53 r4 Security Control SI-14: Non-Persistence, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-14: Non-Persistence.
ID	TIP_NISTSP80053r4SecurityControlSI14NonPersistence

TIP NIST SP 800-53 r4 Security Control SI-14 (1): Refresh from Trusted Sources, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-14 (1): Refresh from Trusted Sources.
ID	TIP_NISTSP80053r4SecurityControlSI141RefreshfromTrustedSources

TIP NIST SP 800-53 r4 Security Control SI-15: Information Output Filtering, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-15: Information Output Filtering.
ID	TIP_NISTSP80053r4SecurityControlSI15InformationOutputFiltering

TIP NIST SP 800-53 r4 Security Control SI-17: Fail-Safe Procedures, v4
Description	Profile of requirements corresponding to NIST Special Publication 800-53, r4, Security Control SI-17: Fail-Safe Procedures.
ID	TIP_NISTSP80053r4SecurityControlSI17FailSafeProcedures

Sources (1)

SP800-53R4	NIST Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations, National Institute of Standards and Technology, April 2013 (Includes updates as of 01-15-2014). Available at http://dx.doi.org/10.6028/NIST.SP.800-53r4.

Also available as XML or JSON