Generic Pattern
Generic security pattern that shows how the major NIST control families apply to security architecture for generic computing environment
Release: 08.02 Authors: Spinoza Updated: 2025-07-05
Click on controls in the diagram to view details. Download SVG
When to Use
not applicable.
When NOT to Use
not applicable.
Typical Challenges
not applicable.
Threat Resistance
not applicable.
Assumptions
All computing systems are accessed from some form of user interface to a client. The client can connect to resources provided by a host across some form of network. Hosts can act as clients and servers to communicate. This model echoes the original design goals of TCP/IP where the intelligence is placed into the end point, and application layer of the network stack, and the network simply transfers data packets.