High-Performance Computing Security Working Group HPCSec-WG

Executive Order 13702 established the National Strategic Computing Initiative (NSCI) to maximize the benefits of high-performance computing (HPC) for economic competitiveness and scientific discovery. High-performance computing (HPC) systems, commonly known as Supercomputers, provide fundamental computing infrastructure to train AI/ML models, analyze big data, and perform complex simulations at high speeds. HPC is vital to the nation's vision for maintaining its global competitive edge.

Securing high-performance computing systems is vital for safeguarding AI models, protecting sensitive data, and achieving anticipated benefits. We aim to develop HPC security standards and guidance that define the reference architecture, identify potential threats, and safeguard systems. The Working Group also provides a platform for the community to share best practices, seek synergies, and tackle challenges. You can join us by subscribing to the mailing list at [email protected]. We also look for volunteers and contributors who want to assist us in advancing our mission.

News:

• NIST 800-234: High-Performance Computing (HPC) Security Overlay is published on May 1, 2025

  • Public comments can be submitted until July 3, 2025.
• 5th High-Performance Computing Security Workshop at Rockville, MD, on May 7 - 8, 2025
  • Event page: https://www.nist.gov/news-events/events/2025/05/5th-high-performance-computing-security-worksho 
• News on NIST 800-223

  • NIST 800-223 offers comprehensive guidance to address the security challenges associated with High-Performance Computing (HPC) systems. Since its publication, the HPC community has received this guidance positively. It has proven particularly effective for security engineers and system administrators in understanding the unique architectures and security concerns related to HPC systems.

    Additionally, this guidance has influenced the design and implementation of HPC systems. The zone-based reference architecture has been adopted to build secure on-premises and cloud-based HPC systems. For example, AWS advises its customers on constructing a secure and compliant HPC environment that aligns with the guidelines outlined in NIST SP 800-223 [1]. Similarly, Isambard-AI, one of the UK's most potent and greenest AI supercomputers, has adhered to the recommendations provided in NIST SP 800-223 [2].

  1. Building a secure and compliant HPC environment on AWS following NIST SP 800-223

  2. Federated Single Sign-On and Zero Trust Co-design for AI and HPC Digital Research Infrastructures

• Workshop and BoF at SC24, November, 2024. 

  • Third International Workshop on Cyber Security in High Performance Computing (S-HPC 2024), Sunday, 17 November 2024.

  • Birds of a Feather (BoF): Implementing Zero Trust on HPC, Wednesday, 20 November 2024 (tentatively).

• 4th High-performance Computing Security Workshop, Wichita, KS, May 20-21, 2024. 
• NIST published Special Publication (SP) 800-223, High-Performance Computing Security: Architecture, Threat Analysis, and Security Posture on February 9, 2024.
• "NIST SP 800-223 (Initial Public Draft): High-Performance Computing (HPC) Security: Architecture, Threat Analysis, and Security Posture" is currently undergoing the comment review phase. 
• NIST has published Interagency Report (IR) 8476, 3rd High-Performance Computing Security Workshop: Joint NIST-NSF Workshop Report, which offers summaries and critical insights from a collaborative workshop hosted by NIST and the National Science Foundation (NSF).