Big news! Today we published errata for the NIST SP 800-63-3: Digital Identity Guidelines suite to provide additional clarification on requirements and informative sections that many of you had questions about. The errata – a list of corrections and clarifications - does not change any requirements – but instead provides further explanation for our stakeholders. To simplify things even further, each volume has an errata table that can be used to navigate directly to the content we updated.
NIST remains committed to nimbly updating these guidelines at a pace that works for government and industry. Stakeholders should feel free to provide feedback through GitHub or the Digital Identity Guidelines inbox (and we promise to consider all input as we work to make sure that agencies have the richest set of options to improve the delivery of digital identity solutions).
That said, we don’t want to overwhelm our valued stakeholders—so please also let us know how we should best keep pace with emerging threats, your needs, and marketplace innovation in a manner that works best for you! It’s a delicate balance, so your thoughts and suggestions on effective pacing and mechanisms to update these guidelines are encouraged.
We will continue to maintain these documents for you and take pride in doing it in a manner that aligns with our mission. Thank you so much for playing such a large role in the evolution of this document—and happy reading!
Follow us on Twitter!