U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Updates 2017

NIST releases Draft SP 800-70 Rev. 4, National Checklist Program for IT Products: Guidelines for Checklist Users and Developers
August 01, 2017

NIST releases Draft SP 800-70 Rev. 4, National Checklist Program for IT Products: Guidelines for Checklist Users and Developers

NIST requests public comments on the release of  Draft Special Publication (SP) 800-70 Revision 4National Checklist Program for IT Products: Guidelines for Checklist Users and Developers. Using security configuration checklists to verify the configuration of information technology (IT) products and identify unauthorized configuration changes can minimize product attack surfaces, reduce vulnerabilities, and lessen the impact of successful attacks. To facilitate development of checklists and to make checklists more organized and usable, NIST established the National Checklist Program (NCP). This publication explains how to use the NCP to find and retrieve checklists, and it also describes the policies, procedures, and general requirements for participation in the NCP. 

 

Comments are due August 30, 2017; they may be submitted to checklists@nist.gov

 

For full details and a link to the document.

Created August 01, 2017, Updated June 22, 2020