Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST SP 800-193 (Initial Public Draft)

Platform Firmware Resiliency Guidelines

Date Published: May 2017
Comments Due: July 14, 2017 (public comment period is CLOSED)
Email Questions to:


Andrew Regenscheid (NIST)


NIST announces the public comment release of Draft Special Publication 800-193, Platform Firmware Resiliency Guidelines. The platform is a collection of fundamental hardware and firmware components needed to boot and operate a computer system. This document provides technical guidelines and recommendations supporting resiliency of platform firmware and data against potentially destructive attacks.  These draft guidelines promote resiliency in the platform by describing security mechanisms for protecting the platform against unauthorized changes, detecting unauthorized changes that occur, and secure recovery from attacks. This document is intended to guide implementers, including system manufacturers and and component suppliers, on how to use these mechanisms to build a strong security foundation into platforms.



BIOS; Code signing; Firmware; Option ROM; Platform Firmware
Control Families

None selected


Draft SP 800-193 (pdf)

Supplemental Material:
Comment Template (xlsx)

Document History:
05/30/17: SP 800-193 (Draft)
05/04/18: SP 800-193 (Final)