Pillar: Identity

View Only

1 to 3 of 3 threads (3 total posts)

	Thread Subject	Replies	Last Post	Status
	NIST 5/25 Multi-Cloud Conference	0	4 months ago by Erik Johnson
	CISA and NSA Release Enduring Security Framework Guidance on Identity and Access Management 03/21/2023 03:08 PM EDT As part of the Enduring Security Framework (ESF), the Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) has released Identity and Access Management Recommended Best Practices Guide for Administrators. These recommended best practices provide system administrators with actionable recommendations to better secure their systems from threats to Identity and Access Management (IAM). IAM-a framework of business processes, policies, and technologies that facilitate the management of digital identities-ensures that users only gain access to data when they have the appropriate credentials. This paper provides recommended best practices and mitigations to counter threats to IAM related to: identity governance environmental hardening identity federation/single sign-on multifactor authentication IAM auditing and monitoring This guidance was developed and published by a CISA- and NSA-led working panel with ESF, a public-private cross-sector partnership that aims to address risks that threaten critical infrastructure and national security systems. Please share your thoughts. We recently updated our anonymous Product Feedback Survey and we'd welcome your feedback.	0	6 months ago by Erik Johnson
	New Three-Part NIST Webinar Series on Draft NIST SP 800-63-4, Digital Identity Guidelines	0	7 months ago by Erik Johnson