High-Performance Computing Security Working Group HPCSec-WG

Executive Order 13702 established the National Strategic Computing Initiative (NSCI) to maximize the benefits of high-performance computing (HPC) for economic competitiveness and scientific discovery. High-performance computing (HPC) systems provide fundamental computing infrastructure to conduct large-scale AI/ML model training, process large volumes of data, and perform complex simulations at high speeds. HPC is vital to the nation's vision for maintaining its global competitive edge.

Security for HPC systems is an essential component in achieving the anticipated benefits. We aim to develop HPC security standards and guidance that define the reference architecture, identify threats, minimize risks, and protect systems. The Working Group also provides a platform for the community to share best practices, seek synergies, and tackle challenges. You can join us by subscribing to the mailing list at hpc-security+subscribe@list.nist.gov. We also look for volunteers and contributors who want to assist us in advancing our mission.

News:

• 5th High-Performance Computing Security Workshop at Rockville, MD, on May 7th to 8th, 2025: the event and registration pages for the workshop are NOW LIVE!

  • Event page: https://www.nist.gov/news-events/events/2025/05/5th-high-performance-computing-security-workshop
  • Registration page: https://events.nist.gov/profile/web/index.cfm?PKwebID=0x10052abcd
• News on NIST 800-223

  • NIST 800-223 offers comprehensive guidance to address the security challenges associated with High-Performance Computing (HPC) systems. Since its publication, this guidance has been positively received by the HPC community. It has proven particularly effective for security engineers and system administrators in understanding the unique architectures and security concerns related to HPC systems.

    Additionally, this guidance has influenced the design and implementation of HPC systems. The zone-based reference architecture has been adopted to build secure on-premises and cloud-based HPC systems. For example, AWS advises its customers on constructing a secure and compliant HPC environment that aligns with the guidelines outlined in NIST SP 800-223 [1]. Similarly, Isambard-AI, the most powerful AI supercomputer in the UK, has adhered to the recommendations provided in NIST SP 800-223 [2].

  1. Building a secure and compliant HPC environment on AWS following NIST SP 800-223

  2. Federated Single Sign-On and Zero Trust Co-design for AI and HPC Digital Research Infrastructures

• Workshop and BoF at SC24, November, 2024. 

  • Third International Workshop on Cyber Security in High Performance Computing (S-HPC 2024), Sunday, 17 November 2024.

  • Birds of a Feather (BoF): Implementing Zero Trust on HPC, Wednesday, 20 November 2024 (tentatively).

• 4th High-performance Computing Security Workshop, Wichita, KS, May 20-21, 2024. 
• NIST published Special Publication (SP) 800-223, High-Performance Computing Security: Architecture, Threat Analysis, and Security Posture on February 9, 2024.
• "NIST SP 800-223 (Initial Public Draft): High-Performance Computing (HPC) Security: Architecture, Threat Analysis, and Security Posture" is currently undergoing the comment review phase. 
• NIST has published Interagency Report (IR) 8476, 3rd High-Performance Computing Security Workshop: Joint NIST-NSF Workshop Report, which offers summaries and critical insights from a collaborative workshop hosted by NIST and the National Science Foundation (NSF).