Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.


The Computer Security Resource Center (CSRC) has information on many of NIST's cybersecurity- and information security-related projects, publications, news and events. CSRC supports people and organizations in government, industry, and academia—both in the U.S. and internationally.

Highlights

Recent News

NIST Publishes Cybersecurity White Paper 41 May 19, 2025
NIST Cybersecurity White Paper (CSWP) 41, "Likely Exploited Vulnerabilities: A Proposed Metric for Vulnerability Exploitation Probability", helps organizations identify actively exploited vulnerabilities and measure...
Foundational Cyber Activities for IoT Product Manufacturers May 13, 2025
In addition to publishing a report on the "Workshop on Foundational Cybersecurity Activities for IoT Device Manufacturers" (IR 8572), an initial public draft of IR 8259r1, "Foundational Cybersecurity Activities for IoT...
Comment on NIST IR 7621 Revision 2 May 1, 2025
NIST has released the initial public draft of NIST Internal Report (IR) 7621r2, Small Business Cybersecurity: Non-Employer Firms
HPC Security Overlay: Comment on SP 800-234 May 1, 2025
The initial public draft (IPD) of NIST Special Publication (SP) 800-234, High-Performance Computing (HPC) Security Overlay, is now available for public comment.
NIST Published SP 800-236 2024 Annual Report April 28, 2025
NIST published Special Publication 800-236, FY 2024 Annual Report for NIST Cybersecurity and Privacy Program.

View All News

Upcoming Events

OSCAL Adopters' Monthly Workshops Series November 30, 2022 - December 17, 2025
The NIST OSCAL team is hosting a series of monthly mini workshops that aims to address topics of interest for our community and to open this forum for its members to present their OSCAL-related work. Unless specifically...
Information Security & Privacy Advisory Board (ISPAB) July 2025 Meeting July 16, 2025 - July 17, 2025
The Information Security and Privacy Advisory Board (ISPAB) is authorized by 15 U.S.C. 278g-4, as amended, and advises the National Institute of Standards and Technology (NIST), the Secretary of Homeland Security (DHS), and...
Sixth PQC Standardization Conference September 24, 2025 - September 26, 2025
Code of Conduct for NIST Meetings NIST plans to hold the 6th PQC Standardization Conference from September 24–26, 2025, in Gaithersburg, Maryland. In August 2024, we published the first three post-quantum cryptographic...

View All Events