The Mobile Device Security Team at NIST’s National Cybersecurity Center of Excellence (NCCoE) has published the second draft of Special Publication 1800-22 Mobile Device Security: Bring Your Own Device (BYOD) and is seeking the public’s comments on its contents. Many organizations now support their employees’ use of personal mobile devices to remotely perform work-related activities.
This increasingly common practice, known as BYOD, provides employees with increased flexibility to telework and access organizational information resources. Helping to ensure that an organization’s data is protected when it is accessed from personal devices, while also protecting the privacy needs of employees, poses unique challenges and threats.
The goal of this practice guide is to provide an example solution that helps organizations use both a standards-based approach and commercially available technologies to help meet their security and privacy needs when permitting personally owned mobile devices to access enterprise resources.
Please review the second draft, which includes new updates to the iOS BYOD implementation, and submit comments online on or before January 13th, 2023. Visit the mobile device security page to submit your comments here.
We welcome your input and look forward to your comments. We invite you to join our Community of Interest to receive news and updates about this project by signing up on our website here.