The National Cybersecurity Center of Excellence has released the second preliminary draft of SP 1800-35 Vol. E, Implementing a Zero Trust Architecture, for public comment until October 31st, 2023. Please note that Vol. A, B, and C are the previous versions and do not require reviews; also, Volume D is open for public comment until October 9th, 2023.
This guide summarizes how the NCCoE and its collaborators are using commercially available technology to build interoperable, open standards-based ZTA example implementations that align to the concepts and principles in NIST Special Publication (SP) 800-207, Zero Trust Architecture.
Volume E provides a risk analysis and mapping of ZTA reference design security characteristics to cybersecurity standards and recommended practices. The updated version also includes mappings from the vendor products that have been implemented so far to the cybersecurity standards and recommended practices.
The preliminary draft guide is available for download by specific volumes. Please submit your comments by completing the spreadsheet and then emailing it to nccoe-zta-project@list.nist.gov.