Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search CSRC

Use this form to search content on CSRC pages.

For a phrase search, use " "


Limit results to content tagged with of the following topics:
Showing 801 through 825 of 1324 matching records.
Updates

NIST Seeks Comments on Final Public Draft of SP 800-53 Revision 5: Security and Privacy Controls for Information Systems and Organizations

March 16, 2020
https://csrc.nist.gov/news/2020/nist-releases-fpd-sp-800-53-rev-5

NIST has released the Final Public Draft of Special Publication (SP) 800-53 Revision 5, "Security and Privacy Controls for Information Systems and Organizations," for public comment. Comments are due by May 29, 2020.

Publications SP 800-206 (Final)

Annual Report 2018: NIST/ITL Cybersecurity Program

March 13, 2020
https://csrc.nist.gov/pubs/sp/800/206/final

Abstract: Title III of the E-Government Act of 2002, entitled the Federal Information Security Management Act (FISMA) of 2002, requires NIST to prepare an annual public report on activities undertaken in the previous year, and planned for the coming year, to carry out responsibilities under this law. The prim...

Updates

Manufacturing Profile for Cybersecurity Framework Version 1.1: NIST Releases Draft NISTIR 8183 Rev. 1 for Comment

March 4, 2020
https://csrc.nist.gov/news/2020/nist-releases-draft-nistir-8183-rev-1-for-comment

NIST has released Draft NISTIR 8183 Rev. 1, "Cybersecurity Framework Version 1.1 Manufacturing Profile," for public comment. Comments are due by May 4, 2020.

Updates

NIST Publishes NISTIR 8287: A Roadmap for Successful Regional Alliances and Multi-stakeholder Partnerships to Build the Cybersecurity Workforce

February 25, 2020
https://csrc.nist.gov/news/2020/nist-publishes-nistir-8287-roadmap-for-cybersecuri

The National Initiative for Cybersecurity Education, led by the National Institute of Standards and Technology (NIST) is pleased to announce the NIST Internal Report (NISTIR) 8287: A Roadmap for....

Publications IR 8287 (Final)

A Roadmap for Successful Regional Alliances and Multistakeholder Partnerships to Build the Cybersecurity Workforce

February 20, 2020
https://csrc.nist.gov/pubs/ir/8287/final

Abstract: In September 2016, the National Initiative for Cybersecurity Education, led by the National Institute of Standards and Technology in the U.S. Department of Commerce, awarded funding for five pilot programs for Regional Alliances and Multistakeholder Partnerships to Stimulate (RAMPS) Cybersecurity Ed...

Publications Journal Article (Final)

Is Usable Security an Oxymoron?

February 12, 2020
https://csrc.nist.gov/pubs/journal/2020/02/is-usable-security-an-oxymoron/final

Journal: Computer (IEEE Computer) Abstract: Current multipronged cybersecurity measures require the active support and participation of users for their successful deployment. Although no formal definition of usable security exists, it is time to make it a reality for users.

Publications Project Description (Final)

Protecting Information and System Integrity in Industrial Control Systems Environments: Cybersecurity for the Manufacturing Sector

February 7, 2020
https://csrc.nist.gov/pubs/pd/2020/02/07/protecting-information-and-system-integrity-attack/final

Abstract: Manufacturing organizations that rely on industrial control systems (ICS) to monitor and control physical processes that produce goods for public consumption are facing an increasing number of cyber attacks. The U.S. Department of Homeland Security reports that the manufacturing industry is the seco...

Updates

NIST Special Publication 800-161 Revision 1, Pre-Draft Call for Comments

February 4, 2020
https://csrc.nist.gov/news/2020/nist-sp-800-161-rev-1-pre-draft-call-for-comments

NIST is initiating an update of Special Publication (SP) 800-161, "Supply Chain Risk Management Practices for Federal Information Systems and Organizations," seeking preliminary comments on possible clarifications, additions, and removal of information. Comments are due by February 28, 2020.

Updates

NIST Releases Draft NISTIR 8276 for Comment, “Key Practices in Cyber Supply Chain Risk Management: Observations from Industry,” and Publishes Cyber SCRM Case Studies

February 4, 2020
https://csrc.nist.gov/news/2020/cyber-scrm-draft-nistir-8276-and-case-studies

Draft NISTIR 8276, "Key Practices in Cyber Supply Chain Risk Management: Observations from Industry” is available for comment; the comment period closes March 4, 2020. Six new Case Studies in Cyber SCRM are also available, along with a "Summary of Findings and Recommendations."

Publications CSWP 11 (Final)

Case Studies in Cyber Supply Chain Risk Management: Summary of Findings and Recommendations

February 4, 2020
https://csrc.nist.gov/pubs/cswp/11/case-studies-in-cscrm-summary-of-findings-and-reco/final

Abstract: This document is part of Case Studies in Cyber Supply Chain Risk Management-new research that builds on the CSD C-SCRM program's 2015 publications aimed at identifying how C-SCRM practices have evolved. For this case study series, NIST conducted interviews with 16 subject matter experts across a div...

Updates

NIST Seeks Comments on Draft Guidance for the National Cybersecurity Online References (OLIR) Program: Draft NISTIR 8278

January 24, 2020
https://csrc.nist.gov/news/2020/nist-releases-draft-nistir-8278-for-comment

NIST has released Draft NISTIR 8278, "National Cybersecurity Online References (OLIR) Program: Guidance for OLIR Users and Developers." Public comments are due by February 24, 2020.

Publications CSWP 10 (Final)

NIST Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management, Version 1.0

January 16, 2020
https://csrc.nist.gov/pubs/cswp/10/nist-privacy-framework-version-10/final

Abstract: This publication describes the voluntary NIST Privacy Framework: A Tool for Improving Privacy through Enterprise Risk Management (Version 1.0). The Privacy Framework is a tool developed in collaboration with stakeholders intended to help organizations identify and manage privacy risk to build innova...

Updates

NIST Publishes "A Taxonomic Approach to Understanding Emerging Blockchain Identity Management Systems"

January 14, 2020
https://csrc.nist.gov/news/2020/nist-publishes-cswp-on-emerging-blockchain-idms

NIST has published the Cybersecurity White Paper "A Taxonomic Approach to Understanding Emerging Blockchain Identity Management Systems."

Updates

NIST Releases Second Draft of NISTIR 8259, "Recommendations for IoT Device Manufacturers"

January 7, 2020
https://csrc.nist.gov/news/2020/nist-releases-second-draft-of-nistir-8259

NIST has released the second public draft of NISTIR 8259, "Recommendations for IoT Device Manufacturers: Foundational Activities and Core Device Cybersecurity Capability Baseline." The public comment period ends February 7, 2020.

Publications Project Description (Final)

Data Confidentiality: Detect, Respond to, and Recover from Data Breaches

December 5, 2019
https://csrc.nist.gov/pubs/pd/2019/12/05/detect-respond-to-and-recover-from-data-breaches/final

Abstract: An organization must protect its information from unauthorized access and disclosure. Data breaches large and small can have far-reaching operational, financial, and reputational impacts. The goal of this project is to provide a practical solution to detect, respond to, and recover from incidents th...

Publications Project Description (Final)

Data Confidentiality: Identifying and Protecting Assets and Data Against Data Breaches

December 5, 2019
https://csrc.nist.gov/pubs/pd/2019/12/05/identifying-and-protecting-assets-and-data-against/final

Abstract: An organization must protect its information from unauthorized access and disclosure. Data breaches large and small can have far-reaching operational, financial, and reputational impacts. The goal of this project is to provide a practical solution to identify and protect the confidentiality of an en...

Events

FCSM Forum - Nov 2019

November 19, 2019 - November 19, 2019
https://csrc.nist.gov/events/2019/fcsm-forum-meeting-november-19-2019

Presentations & Speakers at a Glance: .govCAR: Threat-based Approach to Cybersecurity Architecture Reviews, Branko Bokan, DHS; Zero Trust Architecture 101: What it Means for Federal Agencies, Scott Rose, NIST; Identifying Minimum Cybersecurity Features for IoT Devices used by the Federal Government, Michael Fagan, NIST. NOTE: FORUM MEETINGS ARE OPEN TO ONLY FEDERAL/STATE EMPLOYEES, HIGHER EDUCATION EMPLOYEES, AND THEIR DESIGNATED SUPPORT CONTRACTORS. REGISTRANTS MUST USE A .GOV, .EDU, OR .MIL ADDRESS FOR SIGN-UP. SUPPORT CONTRACTORS MUST INDICATE THE AGENCY OR ORGANIZATION THEY...

Publications Other (Final)

Human Factors in Smart Home Technologies Workshop Summary

November 5, 2019
https://csrc.nist.gov/pubs/other/2019/11/05/human-factors-in-smart-home-technologies-works-(2)/final

Abstract: On September 24, 2019, the National Institute of Standards and Technology (NIST) hosted a one- day workshop entitled “Human Factors in Smart Home Technologies.” The workshop addressed human considerations for smart home devices, including usability, user perceptions, and end-user privacy and securit...

Updates

A Taxonomy and Terminology of Adversarial Machine Learning: NIST Releases Draft NISTIR 8269 for Comment

October 30, 2019
https://csrc.nist.gov/news/2019/nist-releases-draft-nistir-8269-for-comment

The NCCoE has released Draft NISTIR 8269, "A Taxonomy and Terminology of Adversarial Machine Learning," for public comment. Comments are due by January 30, 2020.

Publications SP 1500-4 Rev. 2 (Final)

NIST Big Data Interoperability Framework: Volume 4, Security and Privacy Version 3

October 21, 2019
https://csrc.nist.gov/pubs/sp/1500/4/r2/final

Abstract: Big Data is a term used to describe the large amount of data in the networked, digitized, sensor-laden, information-driven world. While opportunities exist with Big Data, the data can overwhelm traditional technical approaches and the growth of data is outpacing scientific and technological advances...

Publications Project Description (Initial Public Draft)

Improving Cybersecurity of Managed Service Providers (Supporting Small- and Medium-Sized Businesses)

October 8, 2019
https://csrc.nist.gov/pubs/pd/2019/10/08/improving-cybersecurity-of-managed-service-provide/ipd

Abstract: MSPs have become an attractive target for cyber criminals. As a result, an MSP could benefit from improving its own cybersecurity through implementing a secure IT architecture that reduces vulnerabilities to attacks such as ransomware. When an MSP is vulnerable to a cyber attack, it also increases t...

Updates

Security Review of Consumer Home IoT Products: Draft NISTIR 8267 Open for Public Comment

October 1, 2019
https://csrc.nist.gov/news/2019/draft-nistir8267-security-review-consumer-home-iot

NIST has released a draft of NISTIR 8267, "Security Review of Consumer Home Internet of Things (IoT) Products," for public comment. The comment period closes November 1, 2019.

Publications IR 8267 (Initial Public Draft)

Security Review of Consumer Home Internet of Things (IoT) Products

October 1, 2019
https://csrc.nist.gov/pubs/ir/8267/ipd

Abstract: This report presents the results of a project that conducted a technical review of security features in different categories of consumer home Internet-of-Things (IoT) devices. The categories of IoT devices included smart light bulbs, security lights, security cameras, doorbells, plugs, thermostats,...

<< first   < previous   21     22     23     24     25     26     27     28     29     30     31     32     33     34     35     36     37     38     39     40     41     42     43     44     45  next >  last >>