NIST draft guidance seeks to integrate security, privacy requirements for federal data systems

The National Institute of Standards and Technology has released a major draft update to its comprehensive guidance for the federal government on managing its massive data systems and networks, which includes a first-time integration of privacy and security requirements as part of a risk-management process that could affect information operations well beyond the government.

The proposed fifth revision for NIST Special Publication 800-53 was issued on Tuesday, with the agency seeking public comments until Sept. 12 and a final...