The National Cybersecurity Center of Excellence (NCCoE) has released the final draft of the National Institute of Standards and Technology’s (NIST’s) Cybersecurity Practice Guide Special Publication (SP) 1800-15, Securing Small-Business and Home Internet of Things (IoT) Devices: Mitigating Network-Based Attacks Using Manufacturer Usage Description (MUD). This practice guide is intended to show IoT device developers and manufacturers, network equipment developers and manufacturers, and service providers who employ MUD-capable components how to integrate and use MUD and other tools to satisfy IoT users’ security requirements.
The public comment period is now closed. Thank you to everyone who shared their feedback with us. View the current three volumes and the Functional Demonstration Results individually (see links below) or download the complete guide. To see a brief overview, read the two-page fact sheet.
- SP 1800-15A: Executive Summary (pdf) (web)
- SP 1800-15B: Approach, Architecture, and Security Characteristics (pdf) (web)
- SP 1800-15C: How-To Guides (pdf) (web)
- Supplement to Volume B: Functional Demonstration Results (pdf) (web)
If you have questions or suggestions, please email us at mitigating-iot-ddos-nccoe@nist.gov. Join our Community of Interest to receive email alerts and news about additional milestones.