Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Managing the Security of Information Exchanges



Kelley L. Dempsey, Victoria Yan Pillitteri, Andrew Regenscheid


An organization often has mission and business-based needs to exchange (share) information with one or more other internal or external organizations via various information exchange channels. However, it is recognized that the information being exchanged also requires the same or similar level of protection as it moves from one organization to another (protection commensurate with risk). This publication focuses on managing the protection of the information being exchanged or accessed before, during, and after the exchange, and provides guidance on identifying information exchanges, considerations for protecting exchanged information, and the agreement(s) needed to help manage the risk associated with exchanging information. This publication does not provide implementation guidance on any particular type of technology-basd connection or information access or exchange method. Organizations are expected to tailor the guidance to meet specific organizational needs and requirements regarding the information exchange.
Special Publication (NIST SP) - 800-47rev1
Report Number


agreements, connection, information exchange, information exchange agreement, interconnection, interconnection security agreement, memoranda of agreement, memoranda of understanding, nondisclosure agreement, protection requirements, risk management, service level agreement, user agreement.


Dempsey, K. , Pillitteri, V. and Regenscheid, A. (2021), Managing the Security of Information Exchanges, Special Publication (NIST SP), National Institute of Standards and Technology, Gaithersburg, MD, [online],, (Accessed May 30, 2024)


If you have any questions about this publication or are having problems accessing it, please contact

Created July 20, 2021, Updated November 29, 2022