Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search CSRC

Use this form to search content on CSRC pages.

For a phrase search, use " "


Limit results to content tagged with of the following topics:
Showing 251 through 275 of 1250 matching records.
Updates

Second Preliminary Draft of NIST SP 1800-36, Volumes A and D, "Trusted IoT Device Network-Layer Onboarding and Lifecycle Management"

September 26, 2023
https://csrc.nist.gov/news/2023/sp-1800-36-2nd-prelim-draft-vols-a-d

The NCCoE has released the second preliminary drafts of NIST SP 1800-36, Vols. A and D, “Trusted Internet of Things (IoT) Device Network-Layer Onboarding and Lifecycle Management.” The comment period is open now through November 10, 2023.

Publications IR 8476 (Final)

3rd High-Performance Computing Security Workshop: Joint NIST-NSF Workshop Report

September 26, 2023
https://csrc.nist.gov/pubs/ir/8476/final

Abstract: High-performance computing (HPC) is a vital computational infrastructure for processing large data volumes, performing complex simulations, and conducting advanced machine learning model training. As such, HPC is a critical component of scientific discovery, innovation, and economic competitiveness....

Updates

Just Published! Final NIST IR 8441, Cybersecurity Framework Profile for Hybrid Satellite Networks

September 25, 2023
https://csrc.nist.gov/news/2023/final-nist-ir-8441-has-been-published

The NIST National Cybersecurity Center of Excellence (NCCoE) has published Final NIST IR 8441, Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN).

Publications IR 8441 (Final)

Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN)

September 25, 2023
https://csrc.nist.gov/pubs/ir/8441/final

Abstract: The space sector is transitioning towards Hybrid Satellite Networks (HSN) which is an aggregation of independently owned and operated terminals, antennas, satellites, payloads, or other components that comprise a satellite system. The elements of an HSN may have varying levels of assurance.HSNs may...

Project Pages

Telework Cybersecurity and Privacy Resources

https://csrc.nist.gov/projects/telework-working-anytime-anywhere/resources

NIST's telework cybersecurity and privacy resources are listed in the tables below, with common topics that organizations or teleworkers might need, with relevant resources for each ("SP" is a NIST Special Publication). Work is currently underway to improve these resources. Suggestions for enhancements are welcome, as are ideas for other topics related to telework cybersecurity and privacy where additional resources would be helpful. Please send your feedback and input to us at telework@nist.gov. Organization Resources What does my organization need for telework security and...

Publications Other 2309.00724 (Final)

From Compliance to Impact: Tracing the Transformation of an Organizational Security Awareness Program

September 14, 2023
https://csrc.nist.gov/pubs/other/2023/09/14/from-compliance-to-impact-tracing-the-transformati/final

Abstract: There is a growing recognition of the need for a transformation from organizational security awareness programs focused on compliance -- measured by training completion rates -- to those resulting in behavior change. However, few prior studies have begun to unpack the organizational practices of the...

Project Pages

Assured Autonomy and Explainable AI Papers

https://csrc.nist.gov/projects/automated-combinatorial-testing-for-software/autonomous-systems-assurance/assured-autonomy-papers

Our conference and journal papers on assured autonomy and explainable AI. We try to include links to the full papers, but for those not yet linked, please contact us for a copy: kuhn@nist.gov. Papers 2023 Chandrasekaran, J., Lanus, E., Cody, T., Freeman, L.J., Kacker, R., Raunak, M., Kuhn, D.R. From Scoping to Re-engineering: Leveraging Combinatorial Coverage in ML Product Lifecycle (submitted). Olsen, M., Raunak, M. S., & Kuhn, D. R. (2023, June). Predicting ABM Results with Covering Arrays and Random Forests. In International Conference on Computational Science (pp. 237-252). Cham:...

Updates

Comments | NIST IR 8481, Cybersecurity for Research: Findings and Possible Paths Forward

August 31, 2023
https://csrc.nist.gov/news/2023/submit-comments-for-nist-ir-8481

The Initial Public Draft of NIST Interagency Report (IR) 8481, Research for Cybersecurity: Findings and Possible Paths Forward, is available for public comment. Deadline to submit comments is October 31, 2023.

Publications IR 8481 (Initial Public Draft)

Cybersecurity for Research: Findings and Possible Paths Forward

August 31, 2023
https://csrc.nist.gov/pubs/ir/8481/ipd

Abstract: Unmanaged cybersecurity risks can wreak havoc on a community. This is no less true for the U.S. scientific research ecosystem, particularly members of the higher education research community, which can be characterized by its fundamentally open, collaborative culture and web of highly decentralized...

Events

Forum Meeting - August 29, 2023

August 29, 2023 - August 29, 2023
https://csrc.nist.gov/events/2023/forum-meeting-august-29-2023

The Federal Cybersecurity and Privacy Professionals Forum is an informal group sponsored by the National Institute of Standards and Technology (NIST) to promote the sharing of system security and privacy information among federal, state, and local government, and higher education employees. The Forum maintains an extensive e-mail list and holds quarterly meetings to discuss current issues and items of interest to those responsible for protecting non-national security systems. For more information about the Forum and instructions on how to join, see: https://csrc.nist.gov/Projects/forum. A...

Updates

Building a Cybersecurity and Privacy Learning Program: NIST Releases Draft SP 800-50 Rev. 1

August 28, 2023
https://csrc.nist.gov/news/2023/nist-releases-draft-sp-800-50-rev-1

Draft NIST Special Publication (SP) 800-50r1 (Revision 1), Building a Cybersecurity and Privacy Learning Program, is now available for public comment. The comment period closes on October 27, 2023.

Project Pages

Combinatorial Coverage Measurement

https://csrc.nist.gov/projects/automated-combinatorial-testing-for-software/combinatorial-coverage-measurement/coverage-measurement

Latest research: Combinatorial Frequency Differencing. NIST Cybersecurity Whitepaper.- Describes measures of the frequency of combination coverage and difference between Class and Non-class elements in machine learning classification problems. Illustrates application of these methods for identifying weaknesses in physical unclonable function implementations. Combinatorial Coverage Difference Measurement. NIST Cybersecurity Whitepaper.- Introduces a variety of measures that can be applied to understanding differences in combination coverage. Also see our User Manual for the coverage...

Updates

Cybersecurity and Privacy Mapping Guide: Draft NIST IR 8477 Available for Comment

August 17, 2023
https://csrc.nist.gov/news/2023/draft-nist-ir-8477-available-for-comment

NIST has released the initial public draft (ipd) of a new report for public comment: NIST Internal Report (IR) 8477 ipd, Mapping Relationships Between Documentary Standards, Regulations, Frameworks, and Guidelines: Developing Cybersecurity and Privacy Concept Mappings.

Project Pages

CUI Series: Pre-Draft Call for Comments

https://csrc.nist.gov/projects/protecting-controlled-unclassified-information/call-for-comments

November 1, 2022: NIST issues summary and analysis of responses to the CUI Series pre-draft call for comments. Comments received in response to the pre-draft call for comments on the CUI Series. Submitters’ names and affiliations (when provided) will be included, while contact information will be removed. Date Received From July 19, 2022 Williams International July 19, 2022 Real IT Care July 19, 2022 RSM US LLP July19, 2022 ePlus Technology, Inc July 19, 2022 Mercy Medical Center July 20, 2022 ESN...

Projects

Cybersecurity Framework

https://csrc.nist.gov/projects/cybersecurity-framework

[Redirect to https://www.nist.gov/cyberframework] The Cybersecurity Framework is voluntary guidance, based on existing standards, guidelines, and practices, for critical infrastructure organizations to better manage and reduce cybersecurity risk. In addition to helping organizations manage and reduce risks, it was designed to foster risk and cybersecurity management communications amongst both internal and external organizational stakeholders. *Federal agencies do have requirements to implement the Cybersecurity Framework; see the <U.S. Federal Agency Use FAQs> for more information.

Updates

Introducing the NIST Cybersecurity Framework 2.0 Reference Tool!

August 15, 2023
https://csrc.nist.gov/news/2023/just-released-nist-csf-2-0-reference-tool

Today, NIST is officially unveiling our new Cybersecurity Framework (CSF) 2.0 Reference Tool.

Publications Project Description (Final)

Manufacturing Supply Chain Traceability with Blockchain Related Technology: Reference Implementation

August 14, 2023
https://csrc.nist.gov/pubs/pd/2023/08/14/manufacturing-supply-chain-traceability-with-block/final

Abstract: Manufacturing supply chains are increasingly critical to maintaining the health, security, and the economic strength of the United States. As supply chains supporting Critical Infrastructure become more complex and the origins of products become harder to discern, efforts are emerging that improve t...

Updates

NIST Releases Cybersecurity Framework 2.0 Draft & Implementation Examples

August 8, 2023
https://csrc.nist.gov/news/2023/nist-releases-cybersecurity-framework-2-0-draft

After reviewing more than a year’s worth of community feedback, NIST has released a Draft of The NIST Cybersecurity Framework (CSF) 2.0 for public comment! Please submit comments by November 6, 2023.

Publications Conference Paper (Final)

Peering into the Phish Bowl: An Analysis of Real-World Phishing Cues

August 7, 2023
https://csrc.nist.gov/pubs/conference/2023/08/07/peering-into-the-phish-bowl-an-analysis-of-realwor/final

Conference: USENIX Symposium on Usable Privacy and Security (SOUPS) 2023 Abstract: Organizations use simulated phishing awareness training exercises to help users identify, detect, and defend against the ever-changing phishing threat landscape. Realistic phishing emails are used to test users’ ability to spot a phish from visible cues. However, there are no metrics aimed at classi...

<< first   < previous   1     2     3     4     5     6     7     8     9     10     11     12     13     14     15     16     17     18     19     20     21     22     23     24     25  next >  last >>