NIST SP 1800-25, titled “Data Integrity: Identifying and Protecting Assets Against Ransomware and Other Destructive Events,” provides practical guidance for organizations to identify, protect, and manage their critical assets against threats to data integrity, such as ransomware, destructive malware, insider threats, and accidental user errors. The publication applies the NIST Cybersecurity Framework to data integrity challenges, offering a modular, standards-based reference architecture that organizations can adopt in whole or in part. It details methods for asset inventory, vulnerability management, policy enforcement, logging, and backups, and includes real-world scenarios to illustrate how to mitigate and recover from integrity attacks. The guide is structured in three volumes: an executive summary, a technical approach and architecture, and step-by-step implementation instructions.
Publication's URL
URL: https://csrc.nist.gov/pubs/sp/1800/25/finalPublication's scorecard
Country: USA
Scope: Cyber
Typology: Standard
Publication's date: April 1, 2020
Category: Data Protection & AI
Sector: Cross-Sector
Rating:
(No Ratings Yet)
Loading...