Standard Name
NIST Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations
Industry Standard
NIST
Publication Number
SP 800-52r1
Standard Date
4/27/2014
Standard Link
http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-52r1.pdf
Securezoo Overview

The National Institute of Standards and Technology issued on 4/27/2014 a new Special Publication, SP-800-52r1: "Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations."

In an abstract, NIST describes the new guidelines:

"Transport Layer Security (TLS) provides mechanisms to protect sensitive data during electronic dissemination across the Internet. This Special Publication provides guidance to the selection and configuration of TLS protocol implementations while making effective use of Federal Information Processing Standards (FIPS) and NIST-recommended cryptographic algorithms, and requires that TLS 1.1 configured with FIPS-based cipher suites as the minimum appropriate secure transport protocol and recommends that agencies develop migration plans to TLS 1.2 by January 1, 2015. This Special Publication also identifies TLS extensions for which mandatory support must be provided and other recommended extensions."

Of special note was the target date, January 1, 2015, of when goverment agencies should be migrated off of TLS 1.1.

Topics
Encryption