Saturday, December 10, 2022

NIST SP 1800-34, Validating the Integrity of Computing Devices (Supply Chain)

 The National Cybersecurity Center of Excellence (NCCoE) has published the final version of NIST SP 1800-34, Validating the Integrity of Computing Devices.

What Is This Guide About?

Technologies today rely on complex, globally distributed and interconnected supply chain ecosystems to provide reusable solutions. Organizations are increasingly at risk of cyber supply chain compromise, whether intentional or unintentional. Managing cyber supply chain risks requires, in part, ensuring the integrity, quality, and resilience of the supply chain and its products and services. This project demonstrates how organizations can verify that the internal components of their computing devices are genuine and have not been altered during the manufacturing or distribution processes.

Let Us Know What You Think!

Questions? Email us at supplychain-nccoe@nist.gov with your feedback and let us know if you would like to join the Supply Chain Assurance community of interest. We recognize that technical solutions alone will not fully enable the benefits of our solution, so we encourage organizations to share lessons learned and best practices for transforming the process associated with implementing this guide.

What's Next

We will be hosting a community of interest webinar in February to discuss the final practice guide and share other exciting activities. The date and time will be announced later and we will send out another email to inform our community of interest.

Project Page