On July 22, 2025, the National Institute of Standards and Technology (NIST) issued proposed updates to NIST SP 800-53 Controls on Secure and Reliable Patches designed to “address software resiliency, developer testing, secure logging, least privilege for functions and tools, deployment management of updates, software integrity and validation, delineation of roles and responsibilities between organizations and developers, and root cause analysis and improvement.”
To review the proposed updates, NIST has released a public comment site. Comments can be submitted on an “expedited public comment period” through August 5, 2025. NIST will then “review and adjudicate comments” and issue final updates “on or before September 2, 2025.”
If you are interested in commenting on the proposed updates, note the expedited comments period which concludes, next week, August 5, 2025.