Skip to main content
U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock ( ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Detect

These mappings are intended to demonstrate the relationship between existing NIST publications and the Cybersecurity Framework. These preliminary mappings are intended to evolve and progress over time as new publications are created and existing publications are updated. Initially, each publication has been mapped only once to the category considered most applicable. Certain NIST publications that have broad applicability across multiple categories of a function have been included within the General Mappings section

General Mappings

This table provides publications that have broad applicability across multiple categories of a function.

DETECT (DE)

800-137

Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations

1800-7

Situational Awareness for Electric Utilities

 

 

NIST Cybersecurity Publication by Category

This table consists of NIST Publications that have been mapped only once to an individual Category.

DETECT (DE)

Anomalies and Events (DE.AE): Anomalous activity is detected in a timely manner and the potential impact of events is understood.

800-94 Rev. 1

Guide to Intrusion Detection and Prevention Systems (IDPS)

800-92

Guide to Computer Security Log Management

1800-7

Situational Awareness for Electric Utilities

 

Security Continuous Monitoring (DE.CM): The information system and assets are monitored at discrete intervals to identify cybersecurity events and verify the effectiveness of protective measures.

800-28 Ver. 2

Guidelines on Active Content and Mobile Code

800-137

Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations

800-40 Rev. 3

Guide to Enterprise Patch Management Technologies

 

 

Created February 1, 2018, Updated May 21, 2018