The IT Law Wiki


The National Aeronautics and Space Administration (NASA) is an agency of the U.S. government, responsible for the nation's civilian space program. NASA was established by Congress on April 2, 1958. The National Aeronautics and Space Act of 1958 directed that NASA assume responsibility and direction for all space activities except for those primarily associated with the development of weapons systems, which would be retained by the Department of Defense. NASA replaced its predecessor, the National Advisory Committee for Aeronautics (NACA). The agency became operational on October 1, 1958.

NASA has led U.S. efforts for space exploration ever since, resulting in the Apollo missions to the Moon, the Skylab space station, and later the Space Shuttle. Currently NASA is supporting the International Space Station and developing new Ares I and V launch vehicles. In addition to the space program, NASA is also responsible for long-term civilian and military aerospace research.

To carry out its critical mission and business operations, NASA depends on interconnected information systems. Many of these systems are interconnected through the public telecommunications infrastructure, including the Internet.

NASA policies[]

NASA policies that are relevant to this wiki include:

  • NPD 1600.2: NASA Security Policy.
  • NPD 2540.1: Personal Use of Government Office Equipment Including Information Technology.
  • NPD 2810.1A: Security of Information Technology.
  • NPR 1382.1A: NASA Privacy Procedural Requirements.
  • NPR 1441.1: NASA Records and Retention Schedule.
  • NPR 2800.1: Managing Information Technology.
  • NPR 2841.1: Identity, Credential, and Access Management Services.
  • NPR 7120.7: NASA Information Technology and Institutional Infrastructure Program and Project Management Requirements.

NASA IT handbook[]

  • IT Security Handbook 2810.02-02, “Security Assessment and Authorization: Information System Certification and Accreditation Process for FIPS 199 Moderate & High Systems,” November 10, 2010
  • IT Security Handbook 2810.02-04, “Security Assessment and Authorization: Continuous Monitoring - Annual Security Control Assessments,” November 10, 2010
  • IT Security Handbook 2810.02-05, “Security Assessment and Authorization: External Information Systems,” November 8, 2010
  • IT Security Handbook 2810.09-02, “Incident Response and Management: NASA Information Security Incident Management,” August 24, 2011

See also[]

This page uses Creative Commons Licensed content from Wikipedia (view authors). Smallwikipedialogo.png