Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Guide to Enterprise Telework, Remote Access, and Bring Your Own Device (BYOD) Security

Published

Author(s)

Murugiah P. Souppaya, Karen Scarfone

Abstract

For many organizations, their employees, contractors, business partners, vendors, and/or others use enterprise telework or remote access technologies to perform work from external locations. All components of these technologies, including organization-issued and bring your own device (BYOD) client devices, should be secured against expected threats as identified through threat models. This publication provides information on security considerations for several types of remote access solutions, and it makes recommendations for securing a variety of telework, remote access, and BYOD technologies. It also gives advice on creating related security policies. [Supersedes NIST SP 800- 46 Rev. 1 (June 2009): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=902685]
Citation
Special Publication (NIST SP) - 800-46 Rev 2
Report Number
800-46 Rev 2

Keywords

bring your own device (BYOD), host security, information security, network security, remote access, telework

Citation

Souppaya, M. and Scarfone, K. (2016), Guide to Enterprise Telework, Remote Access, and Bring Your Own Device (BYOD) Security, Special Publication (NIST SP), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.SP.800-46r2 (Accessed December 21, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created July 28, 2016, Updated March 1, 2021