Here is the text of the NIST sp800-63b Digital Identity Guidelines.

  • 0xD@infosec.pub
    link
    fedilink
    English
    arrow-up
    4
    ·
    3 months ago

    It needs to be specific to be clear for its purposes. You can express everything in simpler terms but then you risk leaving things out of definitions. It’s basically legal speak.

    Normally, you’d read the scope of such a document to see whether it fits your purpose, then cherry-pick the chapters necessary. If something’s unclear, you can google pretty much everything.

    Doing that a few times will make it infinitely easier! You especially get to understand those broad, inaccessible definitions a lot easier.