Good morning,
The comment period for Draft NIST Special Publication (SP) 800-47, Revision 1, Managing the Security of Information Exchanges, closes tomorrow, March 12, 2021.
Draft SP 800-47 Rev. 1 provides guidance on identifying information exchanges; risk-based considerations for protecting exchanged information before, during, and after the exchange; and example agreements for managing the protection of the exchanged information.
NIST is specifically interested in feedback on:
Whether the agreements addressed in the draft publication represent a comprehensive set of agreements needed to manage the security of information exchange.
Whether the matrix provided to determine what types of agreements are needed is helpful in determining appropriate agreement types.
Whether additional agreement types are needed, as well as examples of additional agreements.
Additional resources to help manage the security of information exchange.
See the publication details for a copy of the draft document and instructions for submitting comments (preferably using our comment template).
Publication details: https://csrc.nist.gov/publications/detail/sp/800-47/rev-1/draft
Any questions, please reach out to sec-...@nist.gov.
Regards,
Jeff Brewer
Management and Program Analyst
Information Technology Lab, Computer Security Division,
National Institute of Standards and Technology