The latest version of the National Institute of Standards and Technology’s Cybersecurity Framework will be “backwards compatible,” a NIST official said Tuesday.
It means organizations already using version 1.0 will be able to seamlessly adopt the new draft, NIST’s Matthew Barrett told attendees.
As a result, he said, there would be less flexibility to tinker with the higher level concepts in the framework, like the five key functions that make up its core: identify, protect, detect, respond and recover. But each function is divided and subdivided and there’s more flexibility to add or delete concepts at those levels, Barrett explained.
Read more on the new draft and its implications in Shaun Waterman’s coverage on CyberScoop.