Which NIST publication should a security architect refer to for the most recent guidance on password compliance?

The most appropriate NIST publication for guidance on password compliance is NIST Special Publication 800-63. This publication specifically addresses identity management and provides comprehensive guidelines for digital identity assurance, including best practices for password management.

Within the content of NIST 800-63, there is a focus on how to manage the credentials of users effectively, including recommendations for secure password creation and maintenance. This publication emphasizes methods for creating secure passwords, the use of multi-factor authentication, and other authentication methods that enhance security while ensuring compliance with modern standards.

The relevance of this publication has become increasingly important as threats to password security evolve, and it provides the most current standards to ensure that organizations are implementing strong and effective password policies in line with industry best practices.