The NIMS PP has been reviewed by a National Information Assurance Partnership (NIAP) team to determine the suitability of the CC for specifying the NIMS security characteristics. The review team is also providing the results of the NIMS PP review as input toward furthering the development of a Common Evaluation Methodology (CEM) for PPs. We hope that the NIMS PP will become a worked example to ease the development of subsequent system PPs. Lessons to be learned include how well the NIMS PP serves as a security specification for communicating among stakeholders, identifying security concerns, and specifying solutions to these concerns.
This forum will be conducted by the team members who developed and reviewed the NIMS PP. Marshall Abrams, MITRE; Bernard Ramsey, FAA; Gary Stoneburner, NIST; and James Williams, MITRE.