Guide for Assessing the Security Controls in Federal Information Systems [Second Public Draft April 2006] [open pdf - 5MB]
"The second public draft of Special Publication 800-53A contains significant improvements in a variety of areas based on the feedback obtained from our customers during the initial public comment period. In addition to completing the remaining twelve families of assessment procedures for the security control families in NIST Special Publication 800-53, the following significant changes can be noted: Clarification of the purpose and target audience for the publication; Clarification of the purpose and use of the conceptual assessment framework; Refinement of assessment expectations; Reduction in the number of procedural steps for assessing security controls; Realignment of procedural steps within the security control assessment procedures; More user-friendly format for assessment procedures in the assessment procedure catalog; New summary table for minimum assessment procedures for security control baselines contained in NIST Special Publication 800-53; and Updates of supporting appendices."
NIST SP 800-53A; NIST Special Publication 800-53A
NIST Computer Security Resource Center: http://csrc.ncsl.nist.gov/publications/drafts.html