U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST SP 800-46 Rev. 2 (Initial Public Draft)

Guide to Enterprise Telework, Remote Access, and Bring Your Own Device (BYOD) Security

Date Published: March 2016
Comments Due: April 15, 2016 (public comment period is CLOSED)
Email Questions to: 800-46comments@nist.gov


Murugiah Souppaya (NIST), Karen Scarfone (Scarfone Cybersecurity)


NIST requests public comments on two draft Special Publications (SPs) on telework and BYOD security: Draft SP 800-46 Revision 2, Guide to Enterprise Telework, Remote Access, and Bring Your Own Device (BYOD) Security, and Draft SP 800-114 Revision 1, User's Guide to Telework and Bring Your Own Device (BYOD) Security. Organizations are increasingly threatened, attacked, and breached through compromised telework devices used by their employees, contractors, business partners, and vendors. These publications make recommendations for organizations (in SP 800-46 Revision 2) and users (in SP 800-114 Revision 1) to improve their telework and BYOD security practices.



information security; network security; remote access; telework; host security; bring your own device (BYOD)
Control Families

Access Control; Configuration Management; Contingency Planning; Identification and Authentication; Media Protection; Risk Assessment; System and Communications Protection; System and Information Integrity


Draft SP 800-46 Revision 2 (pdf)

Supplemental Material:
None available

Document History:
03/14/16: SP 800-46 Rev. 2 (Draft)
07/29/16: SP 800-46 Rev. 2 (Final)


Security and Privacy

authentication, contingency planning, threats, vulnerability management


communications & wireless

Laws and Regulations

OMB Circular A-130