Informative References

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviations / Acronyms / Synonyms:

NISTIR 8379

Online Informative Reference

NIST IR 8278Ar1, NIST IR 8278r1

Definitions:

  Specific sections of standards, guidelines, and practices common among critical infrastructure sectors that illustrate a method to achieve the outcomes associated with each Subcategory in the Cybersecurity Framework.
Sources:
NISTIR 8183
NISTIR 8183 Rev. 1
NISTIR 8183A Vol. 1

  A relationship between a Reference Document and the NIST Cybersecurity Framework, using the OLIR Template.
Sources:
NISTIR 8204 under Informative Reference (Reference)

  A specific section of standards, guidelines, and practices common among critical infrastructure sectors that illustrates a method to achieve the outcomes associated with each Subcategory. An example of an Informative Reference is ISO/IEC 27001 Control A.10.8.3, which supports the “Data-in-transit is protected” Subcategory of the “Data Security” Category in the “Protect” function.
Sources:
NIST Cybersecurity Framework Version 1.1 under Informative Reference

  Relationships between elements of two documents that are recorded in a NIST IR 8278A-compliant format and shared by the OLIR Catalog. There are three types of OLIRs: concept crosswalk, set theory relationship mapping, and supportive relationship mapping.
Sources:
NIST IR 8278Ar1 under Online Informative Reference
NIST IR 8278r1 under Online Informative Reference

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.