The NCCoE has released draft NIST Cybersecurity Practice Guide, "Attribute-Based Access Control." For ease of use, the draft guide is available to download or read in volumes:
- SP 1800-3a: Executive Summary (PDF) (web page)
- SP 1800-3b: Approach, Architecture, and Security Characteristics (PDF) (web page)
- SP 1800-3c: How-To Guides (PDF) (web page)
Or you can download a .zip file of all volumes, including supplemental files (83.21 MB).
The comment period on the draft guide is now closed. If you have questions on our ABAC projects, please email us at firstname.lastname@example.org.
Second Draft Underway
For each cybersecurity challenge, the NCCoE works with a variety of collaborators to use different sets of commercially available products. For non-industry specific cybersecurity challenges, the center will work with a core set of partners within the National Cybersecurity Excellence Partnership to complete an initial build and guide. The center may produce additional guides with other vendors, depending on the challenge’s complexity and how broadly it affects industry. For Attribute Based Access Control, we have launched a second build to demonstrate additional technologies and products that can support an Attribute Based Access Control system.
To get the latest information on our work in identity management, sign up for our email updates.