U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Usable Cybersecurity


Make it easy to do the right thing, hard to do the wrong thing, and easy to recover when the wrong thing happens. Championing the human in cybersecurity.

The National Institute of Standards and Technology (NIST) Usable Cybersecurity team brings together experts in diverse disciplines to work on projects aimed at understanding and improving the usability of cybersecurity software, hardware, systems, and processes. Our goal is to provide actionable guidance for policymakers, system engineers and security professionals so that they can make better decisions that enhance the usability of cybersecurity in their organizations.

Recent Media

Image of kids and passwords
NIST Study on Kids’ Passwords Shows Gap Between Knowledge of Password Best Practices and Behavior
Staff spotlight NIST's human factors scientist
Staff Spotlight: NIST’s Human Factors Scientist

Training session image

Blog - Security Awareness Training for the Workforce


phish scale image

The Phish Scale: NIST-Developed Method Helps IT Staff See Why Users Click on Fraudulent Emails

Podcast - The Phish Scale. A New Method For Training Employees







Created November 17, 2016, Updated August 11, 2021