Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search CSRC

Use this form to search content on CSRC pages.

For a phrase search, use " "


Limit results to content tagged with of the following topics:
Showing 776 through 800 of 1405 matching records.
Updates

NIST publishes NISTIR 8322: Workshop Summary Report for “Building the Federal Profile for IoT Device Cybersecurity” Virtual Workshop

January 7, 2021
https://csrc.nist.gov/news/2021/nistir-8322-virtual-workshop-report

NIST publishes NISTIR 8322, Workshop Summary Report for “Building the Federal Profile for IoT Device Cybersecurity” Virtual Workshop.

Publications IR 8322 (Final)

Workshop Summary Report for “Building the Federal Profile For IoT Device Cybersecurity” Virtual Workshop

January 7, 2021
https://csrc.nist.gov/pubs/ir/8322/final

Abstract: This report summarizes the feedback received on the work of the NIST Cybersecurity for IoT program on device cybersecurity at a virtual workshop in July 2020. NISTIR 8259, Foundational Cybersecurity Activities for IoT Device Manufacturers and NISTIR 8259A, IoT Device Cybersecurity Capability Co...

Updates

Securing Picture Archiving and Communication System (PACS)--Cybersecurity for the Healthcare Sector: NIST SP 1800-24

December 21, 2020
https://csrc.nist.gov/news/2020/healthcare-securing-pacs-nist-sp-1800-24

A new NIST Cybersecurity Practice Guide, NIST SP 1800-24, is now available: "Securing Picture Archiving and Communication System (PACS): Cybersecurity for the Healthcare Sector."

Publications SP 1800-24 (Final)

Securing Picture Archiving and Communication System (PACS): Cybersecurity for the Healthcare Sector

December 21, 2020
https://csrc.nist.gov/pubs/sp/1800/24/final

Abstract: Medical imaging plays an important role in diagnosing and treating patients. The system that manages medical images is known as the picture archiving communication system (PACS) and is nearly ubiquitous in healthcare environments. PACS is defined by the Food and Drug Administration (FDA) as a Class...

Updates

Defining IoT Cybersecurity Requirements: Draft Guidance for Federal Agencies and IoT Device Manufacturers (SP 800-213, NISTIRs 8259B/C/D)

December 15, 2020
https://csrc.nist.gov/news/2020/draft-guidance-for-defining-iot-cyber-requirements

Four draft guidance documents on defining IoT cybersecurity requirements--for federal agencies and IoT device manufacturers--are now available for comment through February 26, 2021: Draft SP 800-213 and Draft NISTIRs 8259B/C/D.

Publications IR 8259C (Initial Public Draft)

Creating a Profile Using the IoT Core Baseline and Non-Technical Baseline

December 15, 2020
https://csrc.nist.gov/pubs/ir/8259/c/ipd

Abstract: The core baseline in NISTIR 8259A, IoT Device Cybersecurity Capability Core Baseline and the non-technical baseline in NISTIR 8259B, IoT Manufacturer Non-Technical Supporting Capability Core Baseline can be expanded upon based on more specific contextual information. Using source material with infor...

Updates

Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management: Draft NISTIR 8286A Available for Comment

December 14, 2020
https://csrc.nist.gov/news/2020/draft-nistir-8286a-available-for-comment

Draft NISTIR 8286A, "Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management," is available for comment through February 1, 2021.

Updates

NIST Releases Supplemental Materials for SP 800-53: Analysis of Changes Between Revisions 4 and 5, and Control Mappings

December 10, 2020
https://csrc.nist.gov/news/2020/updates-to-sp-800-53-rev-5-and-800-53b

NIST has issued supplemental materials and errata updates for both SP 800-53 Rev. 5 and SP 800-53B, which were originally published in September 2020. New materials include control mappings and control comparisons.

Publications SP 800-53 Rev. 5 (Final)

Security and Privacy Controls for Information Systems and Organizations

December 10, 2020
https://csrc.nist.gov/pubs/sp/800/53/r5/upd1/final

Abstract: This publication provides a catalog of security and privacy controls for information systems and organizations to protect organizational operations and assets, individuals, other organizations, and the Nation from a diverse set of threats and risks, including hostile attacks, human errors, natural d...

Updates

Cybersecurity Practice Guides for Securing Data Integrity Against Ransomware Attacks

December 8, 2020
https://csrc.nist.gov/news/2020/data-integrity-sp-1800-25-and-sp-1800-26

NIST's NCCoE is publishing two Cybersecurity Practice Guides for data integrity that address identifying and protecting assets against--and detecting and responding to--ransomware and other destructive events. Special Publications (SP) 1800-25 and 1800-26 are now available.

Publications SP 1800-26 (Final)

Data Integrity: Detecting and Responding to Ransomware and Other Destructive Events

December 8, 2020
https://csrc.nist.gov/pubs/sp/1800/26/final

Abstract: Ransomware, destructive malware, insider threats, and even honest mistakes present an ongoing threat to organizations that manage data in various forms. Database records and structure, system files, configurations, user files, application code, and customer data are all potential targets of data cor...

Publications SP 1800-25 (Final)

Data Integrity: Identifying and Protecting Assets Against Ransomware and Other Destructive Events

December 8, 2020
https://csrc.nist.gov/pubs/sp/1800/25/final

Abstract: Ransomware, destructive malware, insider threats, and even honest user mistakes present ongoing threats to organizations. Organizations’ data, such as database records, system files, configurations, user files, applications, and customer data, are all potential targets of data corruption, modificati...

Updates

Safeguarding Containers in Multi-Tenant Cloud Environments: Draft NISTIR 8320A is Available for Comment

December 7, 2020
https://csrc.nist.gov/news/2020/draft-nistir-8320a-safeguarding-containers

The National Cybersecurity Center of Excellence (NCCoE) at NIST has released Draft NISTIR 8320A, "Hardware-Enabled Security: Container Platform Security Prototype." The public comment period closes January 29, 2021.

Publications Journal Article (Final)

An Approach for Detection of Advanced Persistent Threat Attacks

December 1, 2020
https://csrc.nist.gov/pubs/journal/2020/12/an-approach-for-detection-of-advanced-persistent-t/final

Journal: Computer (IEEE Computer) Abstract: Advanced Persistent Threat (APT) campaigns employ sophisticated strategies and tactics to achieve their attack goal. The evolution of APT strategies and tactics compounds the challenge of detecting attack campaigns. This article introduces an approach whose purpose is to assist cybersecurity analyst...

Publications IR 8278A (Final) (Withdrawn)

National Online Informative References (OLIR) Program: Submission Guidance for OLIR Developers

November 20, 2020

https://csrc.nist.gov/pubs/ir/8278/a/final

Abstract: The National Online Informative References (OLIR) Program is a NIST effort to facilitate subject matter experts in defining standardized Online Informative References (OLIRs), which are relationships between elements of their documents and elements of other documents like the NIST Cybersecurity Fram...

Publications IR 8278 (Final) (Withdrawn)

National Online Informative References (OLIR) Program: Program Overview and OLIR Uses

November 20, 2020

https://csrc.nist.gov/pubs/ir/8278/final

Abstract: The National Online Informative References (OLIR) Program is a NIST effort to facilitate subject matter experts in defining standardized Online Informative References (OLIRs), which are relationships between elements of their documents and elements of other documents like the NIST Cybersecurity Fram...

Publications IR 8330 (Final)

Research Report: User Perceptions of Smart Home Privacy and Security

November 17, 2020
https://csrc.nist.gov/pubs/ir/8330/final

Abstract: Smart home technologies may expose adopters to increased risk to network security, information privacy, and physical safety. However, users may lack understanding of the privacy and security implications, while devices fail to provide transparency and configuration options. This results in little me...

Updates

Updated Workforce Framework for Cybersecurity: NIST SP 800-181 Revision 1

November 16, 2020
https://csrc.nist.gov/news/2020/updated-workforce-framework-for-cybersecurity

NIST's National Initiative for Cybersecurity Education (NICE) has released an update of its Workforce Framework for Cybersecurity (NICE Framework) in Special Publication 800-181 Revision 1.

Publications SP 800-181 Rev. 1 (Final)

Workforce Framework for Cybersecurity (NICE Framework)

November 16, 2020
https://csrc.nist.gov/pubs/sp/800/181/r1/final

Abstract: This publication from the National Initiative for Cybersecurity Education (NICE) describes the Workforce Framework for Cybersecurity (NICE Framework), a fundamental reference for describing and sharing information about cybersecurity work. It expresses that work as Task statements and describes Know...

Updates

Cybersecurity Profile for the Responsible Use of Positioning, Navigation, and Timing (PNT) Services: Draft NISTIR 8323 Available for Comment

October 22, 2020
https://csrc.nist.gov/news/2020/draft-cybersecurity-profile-for-pnt-services

In response to Executive Order 13905, NIST is releasing Draft NISTIR 8323, "Cybersecurity Profile for the Responsible Use of Positioning, Navigation, and Timing (PNT) Services." The public comment period closes November 23, 2020; all relevant comment received will be posted publicly.

Publications Project Description (Final)

Implementing a Zero Trust Architecture

October 21, 2020
https://csrc.nist.gov/pubs/pd/2020/10/21/implementing-a-zero-trust-architecture/final

Abstract: The proliferation of cloud computing, mobile device use, and the Internet of Things has dissolved conventional network boundaries. The workforce is more distributed, with remote workers who need access to resources anytime, anywhere, and on any device, to support the mission. Enterprises must evolve...

Updates

Integrating Cybersecurity and Enterprise Risk Management (ERM): NISTIR 8286

October 13, 2020
https://csrc.nist.gov/news/2020/integrating-cybersecurity-and-enterprise-risk-mgmt

NISTIR 8286, "Integrating Cybersecurity and Enterprise Risk Management (ERM)," is now available.

Publications IR 8286 (Final) (Withdrawn)

Integrating Cybersecurity and Enterprise Risk Management (ERM)

October 13, 2020

https://csrc.nist.gov/pubs/ir/8286/final

Abstract: The increasing frequency, creativity, and severity of cybersecurity attacks means that all enterprises should ensure that cybersecurity risk is receiving appropriate attention within their enterprise risk management (ERM) programs. This document is intended to help individual organizations within an...

Events

Considerations in Migrating to PQC Algorithms

October 7, 2020 - October 7, 2020
https://csrc.nist.gov/events/2020/considerations-in-migrating-to-pqc-algorithms

(Updated: Friday, September 18, 2020): This workshop was rescheduled from August 24 to Wednesday, October 7. Workshop Objectives The National Institute of Standards and Technology (NIST) will host a virtual workshop on Wednesday, October 7, 2020. The purpose of the workshop is to discuss the challenges and investigate the practical and implementable approaches to ease the migration from the current set of public key cryptographic algorithms to replacement algorithms that are resistant to quantum computer based attacks. This effort complements the NIST post-quantum cryptography (PQC)...

Updates

Cybersecurity Framework Version 1.1 Manufacturing Profile: NISTIR 8183 Revision 1

October 7, 2020
https://csrc.nist.gov/news/2020/cybersecurity-framework-v1-1-manufacturing-profile

NIST has published NISTIR 8183 Revision 1, "Cybersecurity Framework Version 1.1 Manufacturing Profile."

<< first   < previous   20     21     22     23     24     25     26     27     28     29     30     31     32     33     34     35     36     37     38     39     40     41     42     43     44  next >  last >>