NIST Special Publication 1800-28, titled “Data Confidentiality: Identifying and Protecting Assets Against Data Breaches,” provides a comprehensive guide to help organizations identify and protect their data assets from unauthorized access and breaches. The publication applies the Identify and Protect functions of the NIST Cybersecurity Framework to address challenges in categorizing authorized versus unauthorized data access, especially given the complexity of data environments and access methods. It offers a modular, standards-based reference design that organizations can adopt wholly or partially to improve their data confidentiality posture. The guide is divided into three volumes: an executive summary for business leaders, a detailed approach and architecture for security managers, and practical how-to instructions for IT professionals to implement the example solution. Overall, NIST SP 1800-28 assists organizations in understanding risks, implementing protective technologies, and managing data confidentiality risks effectively to prevent data breaches.
Publication's URL
URL: https://csrc.nist.gov/pubs/sp/1800/28/finalPublication's scorecard
Country: USA
Scope: Cyber
Typology: Standard
Publication's date: February 1, 2024
Category: Data Protection & AI
Sector: Cross-Sector
Rating:
(No Ratings Yet)
Loading...