Date Published: April 2018
Comments Due: May 31, 2018 (public comment period is CLOSED)
Email Questions to: firstname.lastname@example.org
Elaine Barker (NIST), William Barker (NIST)
NIST announces the release of a draft revision of Special Publication (SP) 800-57 Part 2, Recommendation for Key Management, Part 2: Best Practices for Key Management Organization. General guidance and best practices for the management of cryptographic keying material were introduced in Part 1 of SP 800-57. Part 2 introduces key management concepts that must be addressed in key management policies, practice statements and planning documents by any organization that uses cryptography to protect its information; provides guidance for the development of organizational key management policy statements and key management practices statements; and identifies key management information that needs to be documented for all federal applications of cryptography. Appendices provide examples of key management infrastructures and supplemental documentation and planning materials.
The revisions are listed in the final appendix.
Keywords accreditation; assurances; authentication; authorization; availability; backup; certification; compromise; confidentiality; cryptanalysis; cryptographic key; cryptographic module; digital signature; key management; key management policy; key recovery; private key; public key; public key infrastructure; security plan; trust anchor; validation
Audit and Accountability;
System and Communications Protection;
System and Information Integrity;