Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search CSRC

Use this form to search content on CSRC pages.

For a phrase search, use " "


Limit results to content tagged with of the following topics:
Showing 351 through 375 of 1250 matching records.
Publications Project Description (Final)

Responding to and Recovering from a Cyber Attack: Cybersecurity for the Manufacturing Sector (Rev. 1)

December 22, 2022
https://csrc.nist.gov/pubs/pd/2022/12/22/responding-to-and-recovering-from-a-cyber-attack-m/final

Abstract: The Operational Technology (OT) that runs manufacturing environments play a critical role in the supply chain. Manufacturing organizations rely on OT to monitor and control physical processes that produce goods for public consumption. These same systems are facing an increasing number of cyber attac...

Events

Cybersecurity Measurement Workshop

December 13, 2022 - December 13, 2022
https://csrc.nist.gov/events/2022/cybersecurity-measurement-workshop

For full details of this workshop (virtual), please visit the NIST Event listing at: https://www.nist.gov/news-events/events/2022/12/cybersecurity-measurement-workshop The NIST Cybersecurity Risk Analytics Team is hosting a workshop to provide an overview of the proposed changes for Special Publication 800 – 55, Revision 2, Performance Measurement Guide for Information Security. The purpose of the workshop is to provide clarity, answer questions, and gather stakeholder comments and opinions to ensure that Revision 2 will deliver comprehensive and relevant practices for measurement and...

Publications SP 1800-34 (Final)

Validating the Integrity of Computing Devices

December 9, 2022
https://csrc.nist.gov/pubs/sp/1800/34/final

Abstract: Organizations are increasingly at risk of cyber supply chain compromise, whether intentional or unintentional. Cyber supply chain risks include counterfeiting, unauthorized production, tampering, theft, and insertion of unexpected software and hardware. Managing these risks requires ensuring the int...

Updates

National Online Informative References (OLIR) Program: Two Draft NIST IRs Available for Comment

December 8, 2022
https://csrc.nist.gov/news/2022/nist-releases-two-draft-nist-irs-for-olir

NIST is seeking public comments on two draft NIST Internal Reports (NIST IR) for the National Online Informative References (OLIR) Program.

Events

Federal Cybersecurity & Privacy Professionals Forum Meeting - December 2022

December 6, 2022 - December 6, 2022
https://csrc.nist.gov/events/2022/federal-cybersecurity-privacy-professionals-forum

The Federal Cybersecurity and Privacy Professionals Forum is an informal group sponsored by the National Institute of Standards and Technology (NIST) to promote the sharing of system security and privacy information among federal, state, and local government, and higher education employees. The Forum maintains an extensive e-mail list and holds quarterly meetings to discuss current issues and items of interest to those responsible for protecting non-national security systems. For more information about the Forum and instructions on how to join, see: https://csrc.nist.gov/Projects/forum. A...

Updates

NIST Releases IR 8286D: Using Business Impact Analysis to Inform Risk Prioritization and Response

November 17, 2022
https://csrc.nist.gov/news/2022/nist-releases-nistir-8286d

Business impact analyses (BIAs) have been traditionally used for business continuity and disaster recovery (BC/DR) planning to understand the potential impacts of outages that compromise IT infrastructure.

Publications IR 8286D (Final)

Using Business Impact Analysis to Inform Risk Prioritization and Response

November 17, 2022
https://csrc.nist.gov/pubs/ir/8286/d/final

Abstract: While business impact analysis (BIA) has historically been used to determine availability requirements for business continuity, the process can be extended to provide a broad understanding of the potential impacts of any type of loss on the enterprise mission. The management of enterprise risk requi...

Updates

NIST Workshop on Performance Measurement Guide for Information Security

November 16, 2022
https://csrc.nist.gov/news/2022/workshop-on-performance-measurement-guide-info-sec

The NIST Cybersecurity Risk Analytics Team is hosting a virtual workshop to provide an overview of the proposed changes to Special Publication 800-55, Revision 2, Performance Measurement Guide for Information Security. The workshop will be held on December 13, 2022.

Updates

Software Supply Chain and DevOps Security Practices: Implementing a Risk-Based Approach to DevSecOps: Final Project Description Released

November 9, 2022
https://csrc.nist.gov/news/2022/implementing-a-risk-based-approach-to-devsecops-fi

The National Cybersecurity Center of Excellence (NCCoE) has released the final project description, Software Supply Chain and DevOps Security Practices: Implementing a Risk-Based Approach to DevSecOps.

Publications Project Description (Final)

Mitigating AI/ML Bias in Context: Establishing Practices for Testing, Evaluation, Verification, and Validation of AI Systems

November 9, 2022
https://csrc.nist.gov/pubs/pd/2022/11/09/mitigating-ai-ml-bias-in-context/final

Abstract: Managing bias in an AI system is critical to establishing and maintaining trust in its operation. Despite its importance, bias in AI systems remains endemic across many application domains and can lead to harmful impacts regardless of intent. Bias is also context-dependent. To tackle this complex pr...

Publications Project Description (Final)

Software Supply Chain and DevOps Security Practices: Implementing a Risk-Based Approach to DevSecOps

November 9, 2022
https://csrc.nist.gov/pubs/pd/2022/11/09/implementing-a-riskbased-approach-to-devsecops/final

Abstract: DevOps brings together software development and operations to shorten development cycles, allow organizations to be agile, and maintain the pace of innovation while taking advantage of cloud-native technology and practices. Industry and government have fully embraced and are rapidly implementing the...

Updates

Mitigating AI/ML Bias in Context: Final Project Description Released

November 8, 2022
https://csrc.nist.gov/news/2022/mitigating-aiml-bias-in-context-final-pd

The National Cybersecurity Center of Excellence (NCCoE) has released a new final project description, Mitigating AI/ML Bias in Context: Establishing Practices for Testing, Evaluation, Verification, and Validation of AI Systems.

Publications Project Description (Final) (Withdrawn)

Responding to and Recovering from a Cyber Attack: Cybersecurity for the Manufacturing Sector

November 3, 2022

https://csrc.nist.gov/pubs/pd/2022/11/03/responding-to-and-recovering-from-a-cyber-attack-m/final

Abstract: The Operational Technology (OT) that runs manufacturing environments play a critical role in the supply chain. Manufacturing organizations rely on OT to monitor and control physical processes that produce goods for public consumption. These same systems are facing an increasing number of cyber attac...

Publications CSWP 27 (Final) (Withdrawn)

Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN): Final Annotated Outline

November 3, 2022

https://csrc.nist.gov/pubs/cswp/27/csf-profile-for-hybrid-satellite-networks-annotate/final

Abstract: The objective of this Cybersecurity Profile is to identify an approach to assess the cybersecurity posture of Hybrid Satellite Networks (HSN) systems that provide services such as satellite-based systems for communications, position, navigation, and timing (PNT), remote sensing, weather monitoring,...

Updates

Draft Project Description for Securing Water and Wastewater Utilities: Cybersecurity for the Water and Wastewater Systems Sector

November 2, 2022
https://csrc.nist.gov/news/2022/draft-pd-securing-water-wastewater-utilities

The National Cybersecurity Center of Excellence (NCCoE) has published for comment a draft project description, Securing Water and Wastewater Utilities: Cybersecurity for the Water and Wastewater Systems Sector.

Updates

Open for Public Comment: Draft NIST IR 8406, Cybersecurity for the Liquefied Natural Gas Industry: A Cybersecurity Framework Profile

October 17, 2022
https://csrc.nist.gov/news/2022/draft-nist-ir-8406

The NCCoE has released an initial public draft of NIST Interagency Report (IR) 8406, Cybersecurity Framework Profile for Liquefied Natural Gas. The comment period is open through November 17, 2022.

Updates

NIST Releases 2021 Cybersecurity and Privacy Program Annual Report

October 13, 2022
https://csrc.nist.gov/news/2022/2021-cybersecurity-privacy-program-annual-report

NIST Special Publication (SP) 800-220, 2021 Cybersecurity and Privacy Program Annual Report, was recently published...

Project Pages

Papers

https://csrc.nist.gov/projects/enhanced-distributed-ledger-technology/papers

Application in distributed systems J.F. DeFranco, D.F. Ferraiolo, D. R. Kuhn, and J.D. Roberts, "A Trusted Federated System to Share Granular Data Among Disparate Database Resources", IEEE Computer, Mar, 2021. D.F. Ferraiolo, J.F. DeFranco, D. R. Kuhn, and J.D. Roberts, "A New Approach to Data Sharing and Distributed Ledger Technology: A Clinical Trial Use Case", IEEE Network, Jan, 2021. Foundations and background Kuhn, D. R. (2022). A Data Structure for Integrity Protection with Erasure Capability. NIST CSWP 25 (final version of Kuhn 2018 paper below) Kuhn, R., Yaga, D., & Voas,...

Publications SP 800-220 (Final)

Fiscal Year 2021 Cybersecurity and Privacy Annual Report

September 26, 2022
https://csrc.nist.gov/pubs/sp/800/220/final

Abstract: During Fiscal Year 2021 (FY 2021) – from October 1, 2020, through September 30, 2021 – the NIST Information Technology Laboratory (ITL) Cybersecurity and Privacy Program successfully responded to numerous challenges and opportunities in security and privacy. This annual report highlights the FY 2021...

<< first   < previous   3     4     5     6     7     8     9     10     11     12     13     14     15     16     17     18     19     20     21     22     23     24     25     26     27  next >  last >>