Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

News & Updates

December 21, 2017

We recently added a few new features to CSRC's publications section.

December 21, 2017

NIST publishes Special Publication (SP) 800-187, Guide to LTE Security.

December 15, 2017

A second round of public comments has started for Draft SP 800-177 Revision 1, "Trustworthy Email"

December 5, 2017

NIST has published the 2nd draft of a proposed update to the Framework for .....

December 1, 2017

NIST is pleased to announce the publication of a report by the University of Maryland’s Supply Chain Management Center titled “The Cyber Risk Predictive Analytics Project”. 

November 28, 2017

NIST announces the release of an errata update for Special Publication 800-171, Revision 1, Protecting Controlled Unclassified Information is Nonfederal Systems and Organizations. The errata.....

November 28, 2017

NIST announces the release of Draft Special Publication 800-171A, Assessing Security Requirements for Controlled Unclassified Information. This publication is.....

November 21, 2017

NIST announces the release of Special Publication (SP) 800-67, Revision 2, Recommendation for the Triple Data Encryption Algorithm (TDEA) Block Cipher. This publication specifies.....

November 15, 2017

NIST announces the public comment release of Draft Special Publication 800-52 Revision 2, Guidelines for the Selection, Configuration, and Use of Transport Layer Security (TLS) Implementations. Transport Layer Security...

November 8, 2017

The national need for a common lexicon to describe & organize the cybersecurity workforce and requisite knowledge, skills, and abilities (KSAs) led to the.....

October 31, 2017

NIST announces an update to its transition plans for key establishment schemes specified in the SP 800-56 series.

October 25, 2017

Papers and presentations are solicited for the 5th Annual Hot Topics in the Science of Security (HoTSoS) Symposium, which will be held April 10–11, 2018 at the StateView Hotel in Raleigh, N.C., ......

October 12, 2017

NIST announces the release of NIST Interagency Report (NISTIR) 8176, Security Assurance Requirements for Linux Application Container Deployments

October 3, 2017
Federal Register Number: 2017-21158

The Information Security and Privacy Advisory Board (ISPAB) will meet October 25-27, 2017. All sessions will be open to the public.

October 2, 2017

NIST's National Cybersecurity Center of Excellence (NCCoE) Releases Draft SP 1800-12, Derived Personal Identity Verification (PIV) Credentials

September 28, 2017

NIST Announces the Release of a Discussion Draft of Special Publication (SP) 800-37, Revision 2, Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy

September 25, 2017

NIST Announces the Final Release of Special Publication (SP) 800-190, Application Container Security Guide

September 19, 2017

NIST Releases NISTIR 8183, Cybersecurity Framework Manufacturing Profile

September 19, 2017

NISTIR 8192, “Enhancing Resilience of the Internet and Communications Ecosystem,” is now available

September 18, 2017

A major update to CSRC.nist.gov has officially launched!

September 15, 2017

NIST Releases the Draft Special Publication 800-177 Revision 1, Trustworthy Email for public comment.  This updated Special Publication has a new....

September 14, 2017

NIST Releases the Second Draft of Special Publication 800-125A, Security Recommendations for Hypervisor Deployment, for public comment.

September 14, 2017

SCAP 1.2 validation test suite version 1-2.2.0.0 is now available.

August 15, 2017

NIST Releases the Initial Public Draft of Special Publication 800-53, Revision 5, Security and Privacy Controls for Information Systems and Organizations.

August 7, 2017

NIST Announces the release of Draft Special Publication 800-56C Revision 1, Recommendation for Key Derivation through Extraction-then-Expansion for public comment.

August 7, 2017

NIST Releases Draft Special Publication 800-56A Revision 3, Recommendation for Pair-Wise Key-Establishment Schemes Using Discrete Logarithm Cryptography, for public comment.

August 2, 2017
Federal Register Number: 2017-16219

NIST invites organizations to provide products and technical expertise to support and demonstrate security platforms for the Secure Inter-Domain Routing Building Block. Participation in the building block is open...

August 1, 2017

Application Containers are slowly finding adoption in enterprise IT infrastructures. To address security concerns associated with deployment of application container platforms, NIST Special Publication 800-190 (2nd Draft),...

August 1, 2017

NIST requests public comments on the release of Draft Special Publication (SP) 800-70 Revision 4, National Checklist Program for IT Products: Guidelines for Checklist Users and Developers. 

July 11, 2017

NIST requests comments on the current plan for use and deprecation of the Tripe Data Encryption Algorithm (TDEA).

July 10, 2017

NIST is seeking comments on Draft NIST IR 8179, Criticality Analysis Process Model.

June 28, 2017

NIST Releases Special Publication 800-192, Verification and Test Methods for Access Control Policies/Models

June 23, 2017

NIST Releases Special Publication 800-12 Revision 1, An Introduction to Information Security

June 22, 2017

NIST Special Publication 800-63-3, Digital Identity Guidelines is now final

June 15, 2017

NIST is pleased to announce the final publication of NIST Interagency Report (NISTIR) 8011, Automation Support for Security Control Assessments, Volumes 1 and 2.

June 5, 2017
Federal Register Number: 2017-11511

The Information Security and Privacy Advisory Board (ISPAB) will meet June 28-30, 2017. All sessions will be open to the public.

May 30, 2017

NIST announces the public comment release of Draft Special Publication 800-193,  Platform Firmware Resiliency Guidelines. The platform is a collection of fundamental hardware and firmware components needed to boot and...

May 15, 2017

NISTIR 8170 rovides guidance on how the Framework for Improving Critical Infrastructure Cybersecurity (Cybersecurity Framework) can be used in the U.S. Federal Government in conjunction with the current and planned suite...

May 15, 2017

As the world rapidly embraces the Internet of Things, properly securing medical devices has grown challenging for most healthcare delivery organizations (HDOs).......

May 8, 2017

The Department of Homeland Security (DHS) has published the "Study on Mobile Device Security," a report to Congress that details current and emerging threats to the Federal Government's use of mobile devices. It also...

May 8, 2017

SP 800-121 Rev. 2 has been approved as final & is now available.

April 26, 2017

NIST releases a draft whitepaper "Profiles for the Lightweight Cryptography Standardization Process".

April 12, 2017

Recent Cryptanalysis of FF3 - Special Publication 800-38G

April 10, 2017

NIST announces the public comment release of Draft Special Publication (SP) 800-190, Application Container Security Guide.

March 31, 2017

What is the current status of release of Draft Special Publication 800-53 Revision 5?  This news item will explain the current status of this document.

March 30, 2017

NISTIR 8114, Report on Lightweight Cryptography has been approved as final and is now available.

March 23, 2017
Federal Register Number: 2017-05759

NIST's NCCoE invites organizations to provide products and technical expertise to support and demonstrate security platforms for the Capabilities Assessment for Securing Manufacturing Industrial Control Systems...

March 20, 2017

The Final Public Draft Cybersecurity Framework Manufacturing Profile is now available for public comment.

March 1, 2017
Federal Register Number: 2017-03970

The Information Security and Privacy Advisory Board (ISPAB) will meet March 29-31, 2017. All sessions will be open to the public.

February 24, 2017

On Thursday, February 23rd, Google announced  that a team of researchers from the CWI Institute in Amsterdam and Google have successfully demonstrated an attack on the SHA-1 hash algorithm by creating two files that...

February 22, 2017

NIST has launched a beta site for a new version of CSRC.nist.gov: https://beta.csrc.nist.gov.  It will be available alongside http://csrc.nist.gov for several months as we continue to fix issues, implement...

February 16, 2017

NCCoE Released Draft Special Publication 1800-7, Situational Awareness for Electric Utilities for public comment.

January 25, 2017
Federal Register Number: 2016-01599

NIST requests comments on a proposed update to the Framework for Critical Infrastructure Cybersecurity (the "Framework"). The proposed update to the Framework is available for review at http://www.nist.gov/​cyberframework...