Draft NIST IR 8310 1 2 Cybersecurity Framework Election 3 Infrastructure Profile 4 5 Mary Brady 6 Gema Howell 7 Joshua M . Franklin 8 Christina Sames 9 Marc Schneider 10 Julie Snyder 11 David Weitzel 12 13 14 15 16 17 18 This publication is available free of charge from: 19 https://doi.org/10.6028/ NIST.IR.8310- draft 20 21 22 23 Draft NISTIR 8310 24 25 Cybersecurity Framework Election 26 Infrastructure Profile 27 Mary Brady * Christina Sames 28 Software and Systems Division Marc Schneider 29 Information Technology Laboratory Julie Snyder 30 David Weitzel 31 Gema Howell The MITRE Corporation 32 Applied Cybersecurity Division McLean, VA 33 Information Technology Laboratory 34 Joshua M . Franklin ** 35 The Turnout, LLC 36 Silver Spring, MD 37 *Former employee; all work for this publication was done while at NIST 38 **Former employee; all work for this publication was done while at The Turnout, LLC 39 40 This publication is available free of charge from: 41 https://doi.org/10.6028/ NIST.IR.8310- draft 42 43 44 March 2021 45 46 47 U.S. Department of Commerce 48 Gina Raimondo , Secretary 49 National Institute of Standards and Technology 50 James K. Olthoff , Performing the Non -Exclusive Functions and Duties of the Under Secretary of Commerce 51 for Standards and Technology & Director, National Institute of Standards and Technology 52 National Institute of Standards and Technology Interagency or Internal Report 8310 53 82 pages (March 2021 ) 54 This publication is available free of charge from: 55 https://doi.org/10.6028/ NIST.IR.8310 -draft 56 Certain commercial entities, equipment, or materials may be identified in this document in order to describe an 57 experimental procedure or concept adequately. Such identification is not intended to imply recommendation or 58 endorsement by NIST, nor is it intended to imply that the entities, materials, or equipment are necessarily the best 59 available for the purpose. 60 There may be references in this publication to other publications currently under development by NIST in accordance 61 with its assigned statutory responsibilities. The information in this publication, including concepts and methodologies, 62 may be used by f ederal agencies even before the completion of such companion publi cations. Thus, until each 63 publication is completed, current requirements, guideline s, and procedures, where they exist, remain operative. For 64 planning and transition purposes, federal agencies may wish to closely follow the development of these new 65 publica tions by NIST. 66 Organizations are encouraged to review all draft publications during public comment periods and provide feedback to 67 NIST. Many NIST cybersecurity publications , ot her than the ones noted above, are available at 68 https://csrc.nist.gov/publications . 69 70 71 72 73 74 75 Public comment period: March 29, 2021 through May 14, 2021 National Institut e of Standards a nd Technology Attn: Appli ed Cybersecurity Division , Informati on Technology Laboratory 100 Bur eau Driv e (Mail St op 2000) Gaithersburg, MD 20899 -2000 Email: NISTIR -8310 -comments@nist.gov All c omments ar e subject to release under the Freedom of Information Act (FOIA). 76 77 NISTIR 8310 (DRAFT) CYBERSECURITY FRAMEWORK ELECTION INFRASTRUCTURE PROFILE ii Reports on Computer Systems Technology 78 The Information Technology Laboratory (ITL) at the National Institute of Standards and 79 Technology (NIST) promotes the U.S. economy and public welfare by providing technical 80 leadership for the Nation’s measurement and standards infrastructure. ITL develops tests, test 81 methods, reference data, proof of concept implementations, and technical analyses to advance the 82 development and productive use of information technology. ITL’s responsibilities include the 83 development of management, a