Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST SP 1800-31

Improving Enterprise Patching for General IT Systems: Utilizing Existing Tools and Performing Processes in Better Ways

Date Published: April 2022

Author(s)

Tyler Diamond (NIST), Alper Kerman (NIST), Murugiah Souppaya (NIST), Kevin Stine (NIST), Brian Johnson (MITRE), Chris Peloquin (MITRE), Vanessa Ruffin (MITRE), Mark Simos (Microsoft), Sean Sweeney (Microsoft), Karen Scarfone (Scarfone Cybersecurity)

Abstract

Keywords

cyber hygiene; enterprise patch management; firmware; patch; patch management; software; update; upgrade; vulnerability management
Control Families

None selected

Documentation

Publication:
https://doi.org/10.6028/NIST.SP.1800-31
Download URL

Supplemental Material:
Project homepage

Document History:
09/10/20: SP 1800-31 (Draft)
11/17/21: SP 1800-31 (Draft)
04/06/22: SP 1800-31 (Final)

Topics

Security and Privacy

patch management, vulnerability management

Technologies

software & firmware

Applications

enterprise

Laws and Regulations

Executive Order 14028