Publications
Withdrawn on August 29, 2019.
Release of NIST Special Publication 800-52 Revision 1, Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations
Documentation
Topics
Date Published: April 2014
Author(s)
Kerry McKay (NIST), Kim Quill (G2), Gregory Witte (G2)
NIST SP 800-52, Revision 1 provides guidance to U.S. Government information system managers for the selection and configuration of TLS protocol implementations. U.S. Office of Management and Budget (OMB) Circular A-130, Management of Federal Information Resources, requires managers of publicly accessible federal systems to ensure that sensitive data is protected. SP 800-52 Revision 1 provides guidelines that focus specifically on the transport layer as described in the Open Systems Interconnection (OSI) model (ISO/IEC 7498-1). TLS is applicable to a variety of situations where clients and servers need to interact and where authentication is performed using public key certificates. SP 800-52 is used in conjunction with other NIST information technology security publications to ensure the protection and security of an entire information system.
NIST SP 800-52, Revision 1 provides guidance to U.S. Government information system managers for the selection and configuration of TLS protocol implementations. U.S. Office of Management and Budget (OMB) Circular A-130, Management of Federal Information Resources, requires managers of publicly...
See full abstract
NIST SP 800-52, Revision 1 provides guidance to U.S. Government information system managers for the selection and configuration of TLS protocol implementations. U.S. Office of Management and Budget (OMB) Circular A-130, Management of Federal Information Resources, requires managers of publicly accessible federal systems to ensure that sensitive data is protected. SP 800-52 Revision 1 provides guidelines that focus specifically on the transport layer as described in the Open Systems Interconnection (OSI) model (ISO/IEC 7498-1). TLS is applicable to a variety of situations where clients and servers need to interact and where authentication is performed using public key certificates. SP 800-52 is used in conjunction with other NIST information technology security publications to ensure the protection and security of an entire information system.
Hide full abstract
Keywords
information security; network security; SSL; TLS; Transport Layer Security
Control Families
System and Communications Protection
Documentation
Publication:
April 2014 ITL Bulletin
Supplemental Material:
None available
Document History:
04/29/14: ITL Bulletin