Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST Releases 2nd Draft of Key Management Best Practices for Organizations: Draft SP 800-57 Part 2 Rev. 1
November 20, 2018

(1/28/19) Comment Period Extension: Comments are now due by February 18, 2019.


NIST invites public comments on this second draft of Special Publication (SP) 800-57 Part 2 Rev. 1Recommendation for Key Management Part 2: Best Practices for Key Management Organizations. Part 2 provides guidance when using the cryptographic features of current systems. This revision:

  1. identifies the concepts, functions and elements common to effective systems for the management of symmetric and asymmetric keys;
  2. identifies the security planning requirements and documentation necessary for effective institutional key management;
  3. describes key management specification requirements;
  4. describes cryptographic key management policy documentation that is needed by organizations that use cryptography; and
  5. describes key management practice statement requirements.

public comment period for this document is open until February 18, 2019

Created November 20, 2018, Updated June 22, 2020