Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search CSRC

Use this form to search content on CSRC pages.

For a phrase search, use " "


Limit results to content tagged with of the following topics:
Showing 801 through 825 of 1405 matching records.
Publications IR 8183 Rev. 1 (Final)

Cybersecurity Framework Version 1.1 Manufacturing Profile

October 7, 2020
https://csrc.nist.gov/pubs/ir/8183/r1/final

Abstract: This document provides the Cybersecurity Framework (CSF) Version 1.1 implementation details developed for the manufacturing environment. The “Manufacturing Profile” of the CSF can be used as a roadmap for reducing cybersecurity risk for manufacturers that is aligned with manufacturing sector goals a...

Events

Workshop on the Automation of the NIST CMVP

October 5, 2020 - October 5, 2020
https://csrc.nist.gov/events/2020/workshop-on-the-automation-of-the-nist-cmvp

(Updated: Friday, September 18, 2020): This workshop was rescheduled from September 1 to Monday, October 5. Workshop Objectives The National Institute of Standards and Technology (NIST) will host a virtual workshop on theAutomation of the NIST Cryptographic Module Validation Program (CMVP) on Monday, October 5, 2020. The number of cryptographic module validations has outstripped the available human resources for timely validation processing. This phenomenon is affecting all stakeholders participating in the CMVP (vendors, labs, and validators alike). The purpose of the workshop is to...

Updates

Securing Data Integrity Against Ransomware Attacks: Draft Paper Available for Comment

October 1, 2020
https://csrc.nist.gov/news/2020/securing-data-integrity-vs-ransomware-draft-paper

NIST's NCCoE has posted a draft paper, "Securing Data Integrity Against Ransomware Attacks: Using the NIST Cybersecurity Framework and NIST Cybersecurity Practice Guides. The public comment period is open through November 13, 2020.

Publications CSWP 17 (Initial Public Draft)

Securing Data Integrity Against Ransomware Attacks: Using the NIST Cybersecurity Framework and NIST Cybersecurity Practice Guides

October 1, 2020
https://csrc.nist.gov/pubs/cswp/17/securing-data-integrity-against-ransomware-attacks/ipd

Abstract: The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) is actively engaged in helping organizations address the challenge of ransomware and other data integrity events through the Data Integrity projects. These projects help organizations...

Publications Journal Article (Final)

Security Awareness Training for the Workforce: Moving Beyond "Check-the-Box" Compliance

October 1, 2020
https://csrc.nist.gov/pubs/journal/2020/10/moving-beyond-checkthebox-compliance/final

Journal: Computer (IEEE Computer) Abstract: Security awareness training requirements set a minimum baseline for introducing security practices to an organization's workforce. But is simple compliance enough to result in behavior change?

Updates

Blockchain Networks: Token Design and Management Overview – Draft NISTIR 8301 Available for Comment

September 29, 2020
https://csrc.nist.gov/news/2020/draft-nistir-8301-on-blockchain-networks

Draft NISTIR 8301, "Blockchain Networks: Token Design and Management Overview," is now available for comment through October 30, 2020.

Events

Challenges with Encrypted Protocols

September 25, 2020 - September 25, 2020
https://csrc.nist.gov/events/2020/challenges-with-encrypted-protocols

(Updated: Friday, September 18, 2020): This workshop was rescheduled from August 13 to Friday, September 25. Workshop Objectives The National Institute of Standards and Technology (NIST) will host a virtual workshop to discuss compliance, operations, and security challenges with modern encrypted protocols on Friday, September 25, 2020. Deployment of these protocols, in particular TLS 1.3, can impact some organizations ability to meet their regulatory, security, and operational requirements. The workshop will investigate the practical and implementable approaches to help those industries...

Updates

Performance Measurement Guide for Information Security: Pre-Draft Call for Comments

September 24, 2020
https://csrc.nist.gov/news/2020/performance-measurement-guide-for-info-security

NIST has posted a call for comments on "Performance Measurement Guide for Information Security" (SP 800-55 Rev. 1), with a comment period open through December 10, 2020. A new "Measurements for Information Security" project is also available.

Updates

Security and Privacy Controls for Information Systems and Organizations: NIST Publishes SP 800-53, Revision 5

September 23, 2020
https://csrc.nist.gov/news/2020/sp-800-53-revision-5-published

NIST Special Publication (SP) 800-53 Revision 5, "Security and Privacy Controls for Information Systems and Organizations," represents a multi-year effort to develop the next generation of controls needed to strengthen and support the Federal Government and critical infrastructure sectors.

Publications SP 800-53 Rev. 5 (Final) (Withdrawn)

Security and Privacy Controls for Information Systems and Organizations

September 23, 2020

https://csrc.nist.gov/pubs/sp/800/53/r5/final

Abstract: This publication provides a catalog of security and privacy controls for information systems and organizations to protect organizational operations and assets, individuals, other organizations, and the Nation from a diverse set of threats and risks, including hostile attacks, human errors, natural d...

Updates

Data Integrity: Recovering from Ransomware and Other Destructive Events--NIST Publishes SP 1800-11

September 22, 2020
https://csrc.nist.gov/news/2020/sp-1800-11-data-integrity-ransomware-recovery

NIST has published Special Publication (SP) 1800-11, "Data Integrity: Recovering from Ransomware and Other Destructive Events."

Publications SP 1800-11 (Final)

Data Integrity: Recovering from Ransomware and Other Destructive Events

September 22, 2020
https://csrc.nist.gov/pubs/sp/1800/11/final

Abstract: Businesses face a near-constant threat of destructive malware, ransomware, malicious insider activities, and even honest mistakes that can alter or destroy critical data. These data corruption events could cause a significant loss to a company’s reputation, business operations, and bottom line. The...

Updates

Securing Home IoT Devices Using MUD: Final Public Draft of SP 1800-15 Now Available

September 16, 2020
https://csrc.nist.gov/news/2020/final-public-draft-of-sp-1800-15-now-available

NIST has released the final public draft of NIST Cybersecurity Practice Guide SP 1800-15, "Securing Small-Business and Home Internet of Things (IoT) Devices: Mitigating Network-Based Attacks Using Manufacturer Usage Description (MUD)." The comment period closes October 16, 2020.

Updates

Mobile Device Security: Corporate-Owned Personally-Enabled (COPE)--NIST Publishes SP 1800-21

September 15, 2020
https://csrc.nist.gov/news/2020/mobile-device-security-cope-sp-1800-21

The NIST Cybersecurity Practice Guide on "Mobile Device Security: Corporate-Owned Personally-Enabled (COPE)" has been published as SP 1800-21.

Publications SP 1800-21 (Final)

Mobile Device Security: Corporate-Owned Personally-Enabled (COPE)

September 15, 2020
https://csrc.nist.gov/pubs/sp/1800/21/final

Abstract: Mobile devices provide access to vital workplace resources while giving employees the flexibility to perform their daily activities. Securing these devices is essential to the continuity of business operations. While mobile devices can increase efficiency and productivity, they can also leave sensi...

Updates

Securing Property Management Systems: Draft SP 1800-27 Available for Comment

September 14, 2020
https://csrc.nist.gov/news/2020/draft-sp-securing-property-management-systems

The National Cybersecurity Center of Excellence has released Draft NIST Cybersecurity Practice Guide (SP 1800-27), "Securing Property Management Systems," for public comment. The comment period closes on October 28, 2020.

Updates

Improving Enterprise Patching for General IT Systems: Preliminary Draft of SP 1800-31A Available for Comment

September 10, 2020
https://csrc.nist.gov/news/2020/improving-enterprise-patching-for-general-it-sys

A preliminary draft of Volume A of SP 1800-31A, "Improving Enterprise Patching for General IT Systems," is available for comment through October 9, 2020.

Updates

Draft White Paper: Trusted Internet of Things (IoT) Device Network-Layer Onboarding and Lifecycle Management

September 8, 2020
https://csrc.nist.gov/news/2020/trusted-iot-device-onboarding-and-lcm

A draft white paper, "Trusted Internet of Things (IoT) Device Network-Layer Onboarding and Lifecycle Management," is available for comment through October 8, 2020.

Publications IR 8272 (Final) (Withdrawn)

Impact Analysis Tool for Interdependent Cyber Supply Chain Risks

August 25, 2020

https://csrc.nist.gov/pubs/ir/8272/final

Abstract: As awareness of cybersecurity supply chain risks grows among federal agencies, there is a greater need for tools that evaluate the impacts of a supply chain-related cyber event. This can be a difficult activity, especially for those organizations with complex operational environments and supply chai...

Updates

NIST Publishes 2019 NIST/ITL Cybersecurity Program Annual Report

August 24, 2020
https://csrc.nist.gov/news/2020/2019-nist-itl-cybersecurity-program-annual-report

NIST has published its 2019 Annual Report for the NIST/ITL Cybersecurity Program, in Special Publication (SP) 800-211.

Publications SP 800-211 (Final)

2019 NIST/ITL Cybersecurity Program Annual Report

August 24, 2020
https://csrc.nist.gov/pubs/sp/800/211/final

Abstract: During Fiscal Year 2019 (FY 2019), from October 1, 2018 through September 30, 2019, the NIST Information Technology Laboratory (ITL) Cybersecurity and Privacy Program successfully responded to numerous challenges and opportunities in security and privacy. This annual report highlights the FY 2019 re...

Publications SP 1500-16 (Final)

Improving Veteran Transitions to Civilian Cybersecurity Roles: Workshop Report

August 20, 2020
https://csrc.nist.gov/pubs/sp/1500/16/final

Abstract: The shortage of cybersecurity professionals is a significant risk to The United States of America’s overall national security and economic prosperity. The U.S. branches of the military provide training and education in cybersecurity, and some transitioning military are well versed in risk management...

Project Pages

FISSEA Security Awareness and Training Contest Winners

https://csrc.nist.gov/projects/fissea/contests-and-awards/fissea-sate-winners

Contest Winners for 2020: Winners (selected by impartial judging committee prior to conference): Poster: Deborah Coleman, U.S. Department of Education Motivational Item: United States Postal Service, CISO Website: IHS OIT Division of Information Security Newsletter: National Institutes of Health – Cyber Safety Awareness Campaign Video: CMS/OIT Information Security & Privacy Group (ISPG) Blog: Cofense Podcast: CMS/OIT Information Security & Privacy Group (ISPG) Security Training Scenarios: Media Pro Contest Winners for 2019: Winners (selected by impartial judging...

Updates

Zero Trust Architecture: NIST Publishes SP 800-207

August 11, 2020
https://csrc.nist.gov/news/2020/zero-trust-architecture-nist-publishes-sp-800-207

NIST publishes Special Publication (SP) 800-207, "Zero Trust Architecture."

<< first   < previous   21     22     23     24     25     26     27     28     29     30     31     32     33     34     35     36     37     38     39     40     41     42     43     44     45  next >  last >>