Date Published: May 2022 (includes updates as of 11-01-2024)
Supersedes:
SP 800-161 Rev. 1 (05/05/2022)
Planning Note (11/01/2024):
The guidance from Appendix F, "Response to Executive Order 14028's Call to Publish Guidelines for Enhancing Software Supply Chain Security," is available at NIST's dedicated EO 14028 website. See Appendix K, "Revision History," for a summary of changes made in this update.
None selected
Publication:
https://doi.org/10.6028/NIST.SP.800-161r1-upd1
Download URL
Supplemental Material:
EO 14028: Software Security in Supply Chains
NIST’s Cyber Supply Chain Risk Management Program
NIST news article (2022)
Document History:
11/01/24: SP 800-161 Rev. 1 (Final)