NIST guidelines for protecting PII

[Allison Dolan <adolan () MIT EDU>]

In case you hadn't already seen
"Special Publication 800-122, titled "Guide to Protecting the
Confidentiality of Personally Identifiable Information," provides
guidance to agencies for identifying PII and determining the
appropriate level of protection for it. It also suggests controls to
provide that level of protection and gives recommendations for
developing breach response plans. The risk-based approach means that
agencies should put the bulk of their efforts into protecting the
most critical information."

article: http://gcn.com/Articles/2010/04/12/NIST-PII-
guidelines-041210.aspx?p=1

Allison F. Dolan
Program Director, Protecting Personally Identifiable Information
Massachusetts Institute of Technology