Specific sections of standards, guidelines, and practices common among critical infrastructure sectors that illustrate a method to achieve the outcomes associated with each Subcategory in the Cybersecurity Framework.
Sources:
NISTIR 8183
NISTIR 8183 Rev. 1
NISTIR 8183A Vol. 1
A relationship between a Reference Document and the NIST Cybersecurity Framework, using the OLIR Template.
Sources:
NISTIR 8204
under Informative Reference (Reference)
A specific section of standards, guidelines, and practices common among critical infrastructure sectors that illustrates a method to achieve the outcomes associated with each Subcategory. An example of an Informative Reference is ISO/IEC 27001 Control A.10.8.3, which supports the “Data-in-transit is protected” Subcategory of the “Data Security” Category in the “Protect” function.
Sources:
NIST Cybersecurity Framework Version 1.1
under Informative Reference
Relationships between elements of two documents that are recorded in a NIST IR 8278A-compliant format and shared by the OLIR Catalog. There are three types of OLIRs: concept crosswalk, set theory relationship mapping, and supportive relationship mapping.
Sources:
NIST IR 8278Ar1
under Online Informative Reference
NIST IR 8278r1
under Online Informative Reference