Date Published: December 2011
Comments Due: January 20, 2012 (public comment period is CLOSED)
Email Questions to:
remediation-comments@nist.gov
NIST announces the public comment release of Draft NIST Interagency Report (NISTIR) 7831, Common Remediation Enumeration Version 1.0. NISTIR 7831 defines the Common Remediation Enumeration (CRE) specification. CRE is part of an emerging suite of enterprise remediation specifications that enable automation and enhanced correlation of enterprise remediation activities. Each CRE entry represents a unique remediation activity and is assigned a globally unique CRE identifier (CRE-ID). This specification describes the core concepts of CRE and the technical components of a CRE entry, outlines how CRE entries are created, and defines the technical requirements for constructing CRE entries.
Audit and Accountability; Assessment, Authorization and Monitoring; Configuration Management; Incident Response; Maintenance; Risk Assessment; System and Communications Protection
Publication:
Draft NISTIR 7831 (retired) (pdf)
Supplemental Material:
None available
Document History:
12/06/11: IR 7831 (Draft)
audit & accountability, incident response, maintenance, risk assessment, security automation
Laws and RegulationsFederal Information Security Modernization Act, OMB Circular A-130