NIST’s Ross: Privacy only small part of update to core security controls, but responsible for delay

A key NIST official is attributing a delay in the administration’s approval of a foundational publication of security controls -- Special Publication 800-53 -- to an overall effort to integrate privacy measures into NIST’s work guiding federal agencies’ information management.

“The hold-up is, it's really very simple, once we started integrating privacy into our [Federal Information Security Management Act] publications, privacy content now exists in the document,” NIST’s Ron Ross told Inside Cybersecurity in response to a question about why...