News & Updates
NIST Releases Draft SP 800-37 Rev 2
May 9, 2018
The initial public draft of SP 800-37 Revision 2, Risk Management Framework for Information Systems and Organizations, is available for public comment until June 22, 2018.
NIST Releases SP 800-193
May 4, 2018
NIST announces the release ofSpecial Publication 800-193, Platform Firmware Resiliency Guidelines, a document that provides technical guidelines and recommendations supporting resiliency of the collection of hardware and...
NISTIR 8179 Criticality Analysis Process Model
April 11, 2018
NIST is releasing NIST Internal Report (NISTIR) 8179, Criticality Analysis Process Model: Prioritizing Systems and Components, to help organizations identify those systems and components that are most vital and which may...
NIST Releases NISTIR 8176
October 12, 2017
NIST announces the release of NIST Interagency Report (NISTIR) 8176, Security Assurance Requirements for Linux Application Container Deployments
NIST Releases SP 800-37 Rev 2 Discussion Draft
September 28, 2017
NIST Announces the Release of a Discussion Draft of Special Publication (SP) 800-37, Revision 2, Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy
NIST Releases NISTIR 8192
September 19, 2017
NISTIR 8192, “Enhancing Resilience of the Internet and Communications Ecosystem,” is now available
NIST Releases Draft SP 800-177 Rev. 1
September 15, 2017
NIST Releases the Draft Special Publication 800-177 Revision 1, Trustworthy Email for public comment. This updated Special Publication has a new....
NIST Release First Draft SP 800-53 Rev. 5
August 15, 2017
NIST Releases the Initial Public Draft of Special Publication 800-53, Revision 5, Security and Privacy Controls for Information Systems and Organizations.
NIST releases Draft SP 800-70 Rev. 4
August 1, 2017
NIST requests public comments on the release of Draft Special Publication (SP) 800-70 Revision 4, National Checklist Program for IT Products: Guidelines for Checklist Users and Developers.
NIST releases Draft NISTIR 8176
August 1, 2017
Application Containers are slowly finding adoption in enterprise IT infrastructures. To address security concerns associated with deployment of application container platforms, NIST Special Publication 800-190 (2nd Draft),...
NIST Requests Comments on the SCAP
August 21, 2015
NIST requests comments on the design and development of Security Content Automation Protocol (SCAP) version 1.3. Please send suggestions for SCAP 1.3 by September 28, 2015. For more information, visit the CSRC SCAP...
Draft NISTIR 8062, Privacy Risk Management
May 29, 2015
NIST requests comments on the draft report NISTIR 8062, Privacy Risk Management for Federal Information Systems, which describes a privacy risk management framework for federal information systems.
Errata Update for Special Publication 800-53, Revision 4
January 29, 2015
NIST announces the release of an Errata Update for Special Publication 800-53, Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations. This update contains new mapping tables...
Public Comments: DRAFT SP 800-53 Revision 4
August 28, 2014
NIST announces the release of Draft Special Publication 800-53, Revision 4, Appendix H, International Information Security Standards, Security Control Mappings for ISO/IEC 27001: 2013. (NOTE: This draft ...
DRAFT Special Publication 800-53A Revision 4
July 31, 2014
NIST announces the release of Draft Special Publication 800-53A, Revision 4, Assessing Security and Privacy Controls in Federal Information Systems and Organizations: Building Effective Assessment Plans ...
Periodic Errata Updates for SP 800-53 Revision 4
May 9, 2013
NIST will provide periodic errata updates to Special Publication (SP) 800-53, Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations, as needed.
SECOND Public DRAFT of NIST Interagency Report 7622
March 23, 2012
NIST announces the second public draft of NIST Interagency Report (NISTIR) 7622, Notional Supply Chain Risk Management Practices for Federal Information Systems. This publication is intended to provide a wide...