Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search CSRC

Use this form to search content on CSRC pages.

For a phrase search, use " "


Limit results to content tagged with of the following topics:
Showing 1026 through 1050 of 1405 matching records.
Publications Project Description (Final)

Securing Picture Archiving and Communication System (PACS): Cybersecurity for the Healthcare Sector

January 23, 2018
https://csrc.nist.gov/pubs/pd/2018/01/23/securing-pacs-cybersecurity-for-healthcare/final

Abstract: Picture Archiving and Communication System (PACS) is defined by the Food and Drug Administration (FDA) as a Class II device that “provides one or more capabilities relating to the acceptance, transfer, display, storage, and digital processing of medical images. Its hardware components may include wo...

Publications IR 8149 (Final)

Developing Trust Frameworks to Support Identity Federations

January 12, 2018
https://csrc.nist.gov/pubs/ir/8149/final

Abstract: When supported by trust frameworks, identity federations provide a secure method for leveraging shared identity credentials across communities of similarly-focused online service providers. This document explores the concepts around trust frameworks and identity federations and provides topics to co...

Updates

Update to NIST Special Publication 800-160, Systems Security Engineering

January 3, 2018
https://csrc.nist.gov/news/2018/update-to-nist-sp-800-160

As part of its ongoing cybersecurity efforts, NIST has issued the first update to its flagship systems security engineering...

Publications SP 800-160 (Final) (Withdrawn)

Systems Security Engineering: Considerations for a Multidisciplinary Approach in the Engineering of Trustworthy Secure Systems

January 3, 2018

https://csrc.nist.gov/pubs/sp/800/160/upd1/final

Abstract: With the continuing frequency, intensity, and adverse consequences of cyber-attacks, disruptions, hazards, and other threats to federal, state, and local governments, the military, businesses, and the critical infrastructure, the need for trustworthy secure systems has never been more important to t...

Publications IR 8201 (Final)

Internet of Things (IoT) Cybersecurity Colloquium: A NIST Workshop Proceedings

December 22, 2017
https://csrc.nist.gov/pubs/ir/8201/final

Abstract: This report provides an overview of the topics discussed at the “Internet of Things (IoT) Cybersecurity Colloquium” hosted on NIST’s campus in Gaithersburg, Maryland on October 19, 2017. It summarizes key takeaways from the presentations and discussions. Further, it provides information on potential...

Updates

New CSRC Publication Features

December 21, 2017
https://csrc.nist.gov/news/2017/new-csrc-publication-features

We recently added a few new features to CSRC's publications section.

Events

Cybersecurity Framework Webcast

December 20, 2017 - December 20, 2017
https://csrc.nist.gov/events/2017/cybersecurity-framework-webcast

The Framework for Improving Critical Infrastructure Cybersecurity (“The Framework”) provides a common language for understanding, managing, and expressing cybersecurity risk both internally and externally. On December 5, 2017, NIST released a second draft of the Framework (v1.1) and a Roadmap for public review and comment—which seeks to clarify, refine, and enhance the original version of the Framework. Our December NIST webinar will provide an overview of the Framework, cover new updates in version 1.1, and will allow for Q&A from the community.

Publications Project Description (Final)

Mitigating IoT-based Distributed Denial of Service (DDOS)

December 14, 2017
https://csrc.nist.gov/pubs/pd/2017/12/14/mitigating-iotbased-ddos/final

Abstract: The building-block objective is to reduce the vulnerability of Internet of Things (IoT) devices to botnets and other automated distributed threats, while limiting the utility of compromised IoT devices to malicious actors. The primary technical elements of this building block include network gateway...

Updates

University of Maryland’s Supply Chain Management Center published “The Cyber Risk Predictive Analytics Project” report.

December 1, 2017
https://csrc.nist.gov/news/2017/nist-is-pleased-to-announce-the-publication-of-a-r

NIST is pleased to announce the publication of a report by the University of Maryland’s Supply Chain Management Center titled “The Cyber Risk Predictive Analytics Project”.

Publications Journal Article (Final)

It Doesn't Have to Be Like This: Cybersecurity Vulnerability Trends

November 28, 2017
https://csrc.nist.gov/pubs/journal/2017/11/cybersecurity-vulnerability-trends/final

Journal: IT Professional Abstract: Given the large and impactful data breaches making headlines in recent years, Internet users naturally wonder: Why is this happening, and how much worse can it get? Here, the authors review trends in vulnerabilities, looking at earlier findings discussed in a previous installment of this column, as...

Publications Project Description (Final)

TLS Server Certificate Management

November 9, 2017
https://csrc.nist.gov/pubs/pd/2017/11/09/tls-server-certificate-management/final

Abstract: This project provides guidance on the governance and management of Transport Layer Security (TLS) server certificates in enterprise environments to reduce outages, improve security, and enable disaster recovery related to certificates. The project will be provided in a freely available NIST Cybersec...

Updates

NIST Releases Draft NISTIR 8193, National Initiative for Cybersecurity Education (NICE) Framework Work Role Capability Indicators: Indicators for Performing Work Roles

November 8, 2017
https://csrc.nist.gov/news/2017/nist-releases-draft-nistir-8193

The national need for a common lexicon to describe & organize the cybersecurity workforce and requisite knowledge, skills, and abilities (KSAs) led to the.....

Publications IR 8193 (Initial Public Draft)

National Initiative for Cybersecurity Education (NICE) Framework Work Role Capability Indicators: Indicators for Performing Work Roles

November 8, 2017
https://csrc.nist.gov/pubs/ir/8193/ipd

Abstract: The national need for a common lexicon to describe and organize the cybersecurity workforce and requisite knowledge, skills, and abilities (KSAs) led to the creation of the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework (NICE Framework). The NICE Framework d...

Publications Journal Article (Final)

SARD: Thousands of Reference Programs for Software Assurance

November 2, 2017
https://csrc.nist.gov/pubs/journal/2017/11/sard-thousands-of-reference-programs-for-software/final

Journal: Journal of Cyber Security and Information Systems Abstract: A corpus of computer programs with known bugs is useful in determining the ability of tools to find bugs. This article describes the content of NIST's Software Assurance Reference Dataset (SARD), which is a publicly available collection of thousands of programs with known weaknesses. SARD has progra...

Events

Cyber Risk Analytics Project Review Workshop

October 26, 2017 - October 26, 2017
https://csrc.nist.gov/events/2017/cyber-risk-analytics-project-review-workshop

The purpose of this workshop is to review with participants, sponsors, and key interested parties the findings and lessons learned from a two-year long NIST and GSA-sponsored Cyber Risk Analytics project. A team composed of professionals from the University of Maryland (UMD), Zurich Insurance, and Beecher Carlson completed the following activities: Developed and field tested, with collaboration of NIST, a secure, online self-assessment tool, based on the Cybersecurity Framework; Created a breach database for survey participants by integrating the breach datasets from Advisen, RBS , the...

Updates

Call for Papers and Presentations for the 5th Annual Hot Topics in the Science of Security (HoTSoS) Symposium

October 25, 2017
https://csrc.nist.gov/news/2017/call-for-papers-presentations-for-5th-annual-hotso

Papers and presentations are solicited for the 5th Annual Hot Topics in the Science of Security (HoTSoS) Symposium, which will be held April 10–11, 2018 at the StateView Hotel in Raleigh, N.C., ......

Publications ITL Bulletin (Final)

NIST Guidance on Application Container Security

October 24, 2017
https://csrc.nist.gov/pubs/itlb/2017/10/application-container-security/final

Abstract: This bulletin summarizes the information found in NIST SP 800-190, Application Container Security Guide and NISTIR 8176, Security Assurance Requirements for Linux Application Container Deployments. The bulletin offers an overview of application container technology and its most notable security chal...

<< first   < previous   30     31     32     33     34     35     36     37     38     39     40     41     42     43     44     45     46     47     48     49     50     51     52     53     54  next >  last >>