Computer Security Resource Center

Computer Security Resource Center

    Publications

Drafts Open for Comment

Draft publications listed below have comment periods that are still open. Select the publication title for more information about the draft and instructions for submitting comments. Your thoughtful reviews and comments are greatly appreciated and help us to improve our publications.
For a complete list of public drafts that have not been obsoleted (either retired or followed by a new draft or final publication) see the list of all public drafts.

Showing 8 matching records.

Traditional data and operations management across organizations and on the web can involve inefficient transaction reconciliation between siloed databases, password fatigue, and single points of failure. This often results in concerns over interoperability, security, and privacy of data that affect...

Summary NIST requests review and comments on Special Publication (SP) 800-46 Revision 2, Guide to Enterprise Telework, Remote Access, and Bring Your Own Device (BYOD) Security. This documents presents recommendations for safeguarding the technologies used for telework and remote access. The public...

Draft NIST Interagency Report (NISTIR) 8212 provides an operational approach to the assessment of an organization's information security continuous monitoring (ISCM) program.  The ISCM assessment (ISCMA) approach is consistent with the ISCM Program Assessment, as described in NIST SP 800-137A, Asses...

The National Cybersecurity Center of Excellence (NCCoE) at NIST is actively engaged in helping organizations address the challenge of ransomware and other data integrity events through the Data Integrity projects. These projects help organizations implement technical capabilities that address data i...

Summary NIST is planning to update NIST Special Publication (SP) 800-55 Revision 1, Performance Measurement Guide for Information Security. The public is invited to provide input by November 19, 2020, for consideration in the update.  Learn more about our Measurements for Information Security init...

About the Profile The PNT cybersecurity profile is part of NIST’s response to the Feb. 12, 2020, Executive Order 13905, Strengthening National Resilience Through Responsible Use of Positioning, Navigation, and Timing Services. The order notes that “the widespread adoption of PNT services means disr...

Public safety officials utilizing the forthcoming public safety broadband networks will have access to devices, such as smartphones, tablets and wearables. These devices offer new ways for first responders to complete their missions but may also introduce new security vulnerabilities to their work e...

The NIST Cloud Computing Security Working Group (NCC-SWG) issued Draft SP 500-299, NIST Cloud Computing Security Reference Architecture, in May 2013. See the NCC-SWG homepage for additional details.