NIST SP 1800-34: Validating the Integrity of Computing Devices (Preliminary Draft)

NIST SP 1800-34: Validating the Integrity of Computing Devices

The National Institute of Standards and Technology (NIST) has issued a Preliminary Draft security guidelines SP 1800-34 for Validating the Integrity of Computing Devices.

The Special Publication (SP) 1800-34 provides updated guidance and sample solution to help organizations verify that the internal components of their computing devices are genuine and have not been tampered with.

An abstract from SP 1800-34 (draft):

Organizations are increasingly at risk of cyber supply chain compromise, whether intentional or unintentional. Cyber supply chain risks include counterfeiting, unauthorized production, tampering, theft, and insertion of unexpected software and hardware. Managing these risks requires ensuring the integrity of the cyber supply chain and its products and services. This project will demonstrate how organizations can verify that the internal components of the computing devices they acquire are genuine and have not been unexpectedly altered during manufacturing or distribution processes.

NIST

Related Standards and Guidelines