Date Published: September 2020
Comments Due: October 16, 2020 (public comment period is CLOSED)
Email Questions to: mitigating-iot-ddos-nccoe@nist.gov
, , , , , , , , , , , , , , , , , , , , , , , , , ,
The National Cybersecurity Center of Excellence (NCCoE) has released the final public draft of the NIST Cybersecurity Practice Guide, SP 1800-15, “Securing Small-Business and Home Internet of Things (IoT) Devices: Mitigating Network-Based Attacks Using Manufacturer Usage Description (MUD),” and is seeking the public's comments on the contents. This practice guide is intended to show IoT device developers and manufacturers, network equipment developers and manufacturers, and service providers who employ MUD-capable components how to integrate and use MUD and other tools to satisfy IoT users’ security requirements.
NOTE: A call for patent claims is included on page iii of 1800-15B. For additional information, see the Information Technology Laboratory (ITL) Patent Policy--Inclusion of Patents in ITL Publications.
Access Control; System and Communications Protection
Publication:
Draft SP 1800-15 files
Supplemental Material:
None available
Document History:
04/24/19: SP 1800-15 (Draft)
11/21/19: SP 1800-15 (Draft)
09/16/20: SP 1800-15 (Draft)
05/26/21: SP 1800-15 (Final)
Security and Privacy
configuration management; controls; identity & access management; security automation; threats
Technologies
firewalls; sensors
Applications
cybersecurity framework; Internet of Things; small & medium business
Laws and Regulations
Executive Order 13800