On August 20, 2014, The Computer Security Division of The National Institute of Standards and Technology (NIST) released Interagency Report 7966 (NISTIR 7966). This report provides guidelines for the security of automated access management using Secure Shell (SSH). The report explains how those guidelines map directly to the security controls mandated in NIST 800-53 and the President’s Cyber Security Framework.
These new developments within NIST have great significance for CISOs and other executives responsible for IT security. This white paper explains why NIST has taken these steps and what it means for IT security management not only within federal government agencies but also within the commercial sector.