The National Online Informative References (OLIR) Program is a NIST effort to facilitate subject matter experts (SMEs) in defining standardized online informative references (OLIRs) between elements of their documents, products, and services and elements of NIST documents like the Cybersecurity Framework Version 1.1, Privacy Framework Version 1.0, NISTIR 8259A, or NIST SP 800-53 Revision 5. The NIST Interagency or Internal Report (IR) 8278 - National Online Informative References (OLIR) Program: Program Overview and OLIR Uses focuses on explaining what OLIRs are, what benefits they provide, how anyone can search and access OLIRs, and how subject matter experts can contribute OLIRs.
Informative Reference Catalog
Contains all the Reference Data—Informative References and Derived Relationship Mappings (DRMs)
Learn More
Derived Relationship Mapping Analysis Tool
Provides Users the ability to generate DRMs for Reference Documents with a Focal Document of the Users’ choice.
Learn More
OLIR Focal Document Templates
Downloadable templates of OLIR Focal Documents
Learn More
More Details
The OLIRs are in a simple standard format defined by NISTIR 8278A, National Online Informative References (OLIR) Program: Submission Guidance for OLIR Developers and are displayed within the OLIR Catalog. NISTIR 8278A provides guidance to Informative Reference developers for completing and submitting OLIRs. NISTIR 8278A provides guidance to Informative Reference developers for completing and submitting OLIRs. NIST analyzes the submitted OLIRs for correctness, works with submitters regarding any corrections, and hosts links to the public draft and final versions of the OLIRs. By following this approach, cybersecurity document owners can use the OLIR Program as a mechanism for communicating with owners and users of other cybersecurity documents
The OLIR Program integrates ongoing NIST projects that respond to administrative and legislative requirements, including those for the Cybersecurity Framework. The OLIR Program also addresses many Office of Management and Budget (OMB) memoranda that address specific cybersecurity issues and comprise large sets of regulations with which organizations must comply. The OLIR Program can represent relationships to any authoritative documents, products, or services. These resources can be generated from national and international standards, guidelines, frameworks, and regulations to policies for individual organizations, sectors, or jurisdictions
Have a question? Please check out the Informative References FAQs page to see if it has already been answered.
Disclaimer: Informative References are linked to by NIST for informational purposes only and do not constitute an endorsement by NIST of the submitted content.
How to Submit
Do you want to submit an Informative Reference for consideration? Please follow these instructions.
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
