NEW | NIST Releases Errata Update for Cybersecurity Supply Chain Risk Management Guidance

National Institute of Standards and Technology (NIST) sent this bulletin at 11/01/2024 10:05 AM EDT

NIST Cybersecurity and Privacy Program

New NIST Errata Update | Cybersecurity Supply Chain Risk Management

NIST has released an errata update to its foundational publication on managing cybersecurity risks in supply chains. Special Publication (SP) 800-161r1 (Revision 1), Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations, was published in May 2022 in response to the 2021 Executive Order on Improving the Nation’s Cybersecurity. This errata update seeks to clarify NIST guidance on aspects such as vulnerability advisory reports and software bills of material and fix errors like inaccurate numbering of control enhancements. Additional changes may be found in the Revision History (Appendix K) of the errata update.

See the updated publication. Questions about the publication can be sent to scrm-nist@nist.gov.

Learn More

NIST Cybersecurity and Privacy Program
Questions/Comments about this notice: scrm-nist@nist.gov
CSRC Website questions: csrc-inquiry@nist.gov

NEW | NIST Releases Errata Update for Cybersecurity Supply Chain Risk Management Guidance

NIST Cybersecurity and Privacy Program

New NIST Errata Update | Cybersecurity Supply Chain Risk Management

Learn More

Connect with us