The National Cybersecurity Center of Excellence (NCCoE) has released the final version of National Institute of Standards and Technology (NIST) Cybersecurity Practice Guide Special Publication 1800-16, Securing Web Transactions: Transport Layer Security (TLS) Server Certificate Management. See the two-page fact sheet for an overview of the project.
This practice guide can benefit executives, chief Information security officers, system administrators, or anyone who has a stake in protecting his or her organization's data, privacy, and overall operational security.
For ease of use, the final guide is available to download or read in volumes:
- SP 1800-16A: Executive Summary (pdf) (web page)
- SP 1800-16B: Security Risks and Recommended Best Practices (pdf) (web page)
- SP 1800-16C: Approach, Architecture, and Security Characteristics (pdf) (web page)
- SP 1800-16D: How-To-Guides (pdf) (web page)
Or download the complete guide (PDF).
If you adopted all or parts of the practice guide, share your experiences with us.
If you have questions, please send an email to tls-cert-mgmt-nccoe@nist.gov.