NIST issues guidance for securing organizations’ internal and external information exchange channels

The National Institute of Standards and Technology has released guidance on protecting information that organizations exchange both internally and with outside entities to meet assorted “mission and business-based needs,” providing a four-phased methodology that companies can follow.

NIST Special Publication 800-47, Revision 1, “Managing the Security of Information Exchanges,” was released Tuesday and “provides guidance on identifying information exchanges; considerations for protecting exchanged information before, during, and after the exchange commensurate with risk; and sample templates of the agreements...