NIST Updates Guidelines for PNT Services: NIST IR 8323r1

Today, NIST is publishing NIST IR 8323r1, Foundational PNT Profile: Applying the Cybersecurity Framework for the Responsible Use of Positioning, Navigation, and Timing (PNT) Services. This revises the original Foundational PNT Profile that was released in February 2021.

This project is part of NIST’s response to the February 12, 2020, Executive Order (EO) 13905, Strengthening National Resilience Through Responsible Use of Positioning, Navigation, and Timing Services. The EO notes that “the widespread adoption of PNT services means disruption or manipulation of these services could adversely affect U.S. national and economic security. To strengthen national resilience, the Federal Government must foster the responsible use of PNT services by critical infrastructure owners and operators.” The Order also calls for updates to the profile every two years or on an as-needed basis.

Based on NIST’s interaction with public and private sector stakeholders and their efforts to create “sector-specific” profiles, it was decided to create Revision 1.

No substantive changes were made to the original Foundational PNT Profile; NIST only sought comments on the changes made in this revision. Among the most noteworthy are:

  • The addition of five new Cybersecurity Framework (CSF) subcategories
  • The addition of two appendices; Appendix D; Applying the PNT Profile to Cybersecurity Risk Management, and Appendix E; Organization Specific PNT Profiles.

See the publication details for a copy of the profile and link to the comments received. All revision 1 changes are captured in Table 26: “Change Log” for easy reference to reviewers.

/Public Release. This material from the originating organization/author(s) may be of a point-in-time nature, edited for clarity, style and length. The views and opinions expressed are those of the author(s).View in full here.