NIST Revises SP 800-171 Guidelines for Protecting Sensitive Information

National Institute of Standards and Technology (NIST) sent this bulletin at 05/10/2023 10:12 AM EDT
nist

View as a Web Page
News

NIST Revises SP 800-171 Guidelines for Protecting Sensitive Information

A person sitting with a laptop reaches out to touch a padlock icon floating in the air with other cybersecurity symbols.

The National Institute of Standards and Technology (NIST) has updated its draft guidelines for protecting sensitive unclassified information, in an effort to help federal agencies and government contractors more consistently implement cybersecurity requirements.

The revised draft guidelines, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations (NIST Special Publication [SP] 800-171 Revision 3), will be of particular interest to the many thousands of businesses that contract with the federal government. Federal rules that govern the protection of controlled unclassified information (CUI), which includes such sensitive data as health information, critical energy infrastructure information and intellectual property, reference the SP 800-171 security requirements. Systems that store CUI often support government programs containing critical assets, such as design specifications for weapons systems, communications systems and space systems.

Read More

IN CASE YOU MISSED IT
Figure labeled "Cyber Professional" stands on the edge of a cliff holding a rope and looking down uncertainly.

Is Your Cybersecurity Strategy Falling Victim to These 6 Common Pitfalls?

March 20, 2023
NIST research reveals misconceptions that can affect security professionals — and offers solutions.

Read More