Addressing Visibility Challenges with TLS 1.3 within the Enterprise: Review Volumes A & B

National Institute of Standards and Technology (NIST) sent this bulletin at 01/30/2024 02:20 PM EST
NIST

View As Web Page
Header

National Cybersecurity Center of Excellence

Addressing Visibility Challenges with TLS 1.3 within the Enterprise

Download Both Volumes

The National Cybersecurity Center of Excellence (NCCoE) invites you to share your feedback on preliminary draft Special Publication 1800-37, Addressing Visibility Challenges with TLS 1.3 within the Enterprise. The public comment period is open now until April 12024.  

The Addressing Visibility Challenges with TLS 1.3 within the Enterprise project aims to facilitate the adoption of the Internet Engineering Task Force’s TLS 1.3 transport layer security protocol (TLS) by demonstrating technologies and architectures that can be deployed alongside TLS 1.3 to support continuous security monitoring and analysis of network traffic in enterprise environments.

Many enterprises rely on network monitoring and inspection tools to implement critical cybersecurity, operational, and regulatory controls such as intrusion detection, troubleshooting, and fraud monitoring. Some of these organizations have found it challenging to support TLS 1.3 because some techniques that enterprises had used with TLS 1.2 to gain visibility into traffic protected by TLS, no longer worked with TLS 1.3.

NIST is working with private sector collaborators to demonstrate how necessary visibility within the enterprise can be achieved while implementing TLS 1.3. Our demonstrated approaches provide visibility into traffic within internal enterprise networks while protecting data through encryption in-transit, key management controls, and access control policies.

Please see our frequently asked questions to gain further insights into this project. 

Feedback Welcome

Please read the preliminary practice guide and share your feedback or email us by April 1. 

Stay Connected

To receive news and updates about this project, please join the TLS 1.3 Community of Interest. Visit the TLS 1.3 project page and follow us on Twitter @NISTcyber.

If you have any questions/comment about this notice, please contact us.

 

 

NIST Cybersecurity and Privacy Program
Questions/Comments about this notice: applied-crypto-visibility@nist.gov
NCCoE Website questions: nccoe@nist.gov