NIST will create two separate guidelines on securing sensitive data for defense contractors

The National Institute of Standards and Technology is reworking the way it presents guidelines on securing defense-related controlled unclassified information in order to avoid strapping contractors with redundant requirements, according to a senior NIST official.

NIST will separate a planned “appendix” to its guidelines on securing controlled unclassified information into a different document, according to Computer Scientist and Fellow Ron Ross, who said NIST is also awaiting the completion of an Office of Management and Budget review of NIST’s revision...