U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

Secure websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to our website. Please do not share sensitive information with us.

SP 1800-31

Improving Enterprise Patching for General IT Systems: Utilizing Existing Tools and Performing Processes in Better Ways

Date Published: April 2022

Author(s)

Tyler Diamond (NIST), Alper Kerman (NIST), Murugiah Souppaya (NIST), Kevin Stine (NIST), Brian Johnson (MITRE), Chris Peloquin (MITRE), Vanessa Ruffin (MITRE), Mark Simos (Microsoft), Sean Sweeney (Microsoft), Karen Scarfone (Scarfone Cybersecurity)

Abstract

Keywords

cyber hygiene; enterprise patch management; firmware; patch; patch management; software; update; upgrade; vulnerability management
Control Families

None selected

Documentation

Publication:
SP 1800-31 (DOI)
Local Download

Supplemental Material:
Project homepage (web)

Document History:
09/10/20: SP 1800-31 (Draft)
11/17/21: SP 1800-31 (Draft)
04/06/22: SP 1800-31 (Final)

Topics

Security and Privacy
patch management; vulnerability management

Technologies
software & firmware

Applications
enterprise

Laws and Regulations
Executive Order 14028