Cybersecurity, Privacy, & AI

Trending Now
Your AI Agent Could Become Your Biggest Insider Threat • The New Cyber Deterrent Isn’t a Weapon. It’s Cyber Recovery. • Commerce OIG Calls for Changes to NIST Vulnerability Database Management • Pentagon Looks to AI, Other Tech to Help Tackle Contested Logistics Challenges • How Defensive Cyber Responds to Hockey-Stick Growth of AI-Driven Threats
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on April 16, 2020 • Cyber

NIST Invites Comment on Guidance for Who Gets to Access What in the Cloud

NIST Invites Comment on Guidance for Who Gets to Access What in the Cloud

Blackboard | Shutterstock

Stakeholders have until May 15 to provide feedback to NIST on draft guidance for controlling how various users should be allowed to navigate within cloud computing environments.

The push to adopt cloud services has sometimes led to a misconception that cloud providers become responsible for securing sensitive data from hackers. Draft NIST Special Publication 800-210 refutes that contention, before delving into specific guidelines and recommendations on the cloud services federal agencies are encouraged to adopt. It presents cloud access control characteristics and a set of general access control guidance for cloud service models: IaaS (Infrastructure as a Service), PaaS (Platform as a Service), and SaaS (Software as a Service).

More at NextGov

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.

© PubKGroup 2024