Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search CSRC

Use this form to search content on CSRC pages.

For a phrase search, use " "


Limit results to content tagged with of the following topics:
Showing 1076 through 1100 of 1405 matching records.
Publications Conference Paper (Final)

An Analysis of Vulnerability Trends, 2008-2016

July 25, 2017
https://csrc.nist.gov/pubs/conference/2017/07/25/an-analysis-of-vulnerability-trends-20082016/final

Conference: 2017 IEEE International Conference on Software Quality Reliability and Security (QRS-C 2017) Abstract: Computer security has been a subject of serious study for at least 40 years, and a steady stream of innovations has improved our ability to protect networks and applications. But attackers have adapted and changed methods over the years as well. Where do we stand today in the battle between attacker...

Publications Project Description (Final)

Secure Inter-Domain Routing--Part 1: Route Hijacks

July 6, 2017
https://csrc.nist.gov/pubs/pd/2017/07/06/secure-interdomain-routingpart-1-route-hijacks/final

Abstract: Since the creation of the internet, the Border Gateway Protocol (BGP) has been the default routing protocol to route traffic among organizations (Internet Service Providers (ISPs) and Autonomous Systems (ASes)). While the BGP protocol performs adequately in identifying viable paths that reflect loca...

Events

FISSEA 30th Annual Conference

June 19, 2017 - June 19, 2017
https://csrc.nist.gov/events/2017/fissea-30th-annual-conference

30th Annual FISSEA Conference June 19, 2017 @ NIST - Gaithersburg, MD USA “Securing the Future to Infinity and Beyond: 30 years of Improving Cybersecurity through Awareness, Training, and Education” June 19, 2017 Agenda FISSEA Chairperson (right), and Coordinator (left) 2016 FISSEA Educator of the Year Presented to Prof. Sushil Jajodia Gretchen Morris, 2015 FISSEA Educator of the Year, presented the 2016 FISSEA Educator of the Year award to Prof. Sushil Jajodia, George Mason University on June 19, 2017. The FISSEA Educator of the Year award recognizes an individual who...

Events

Privacy Risk Assessment: A Prerequisite for Privacy Risk Management

June 5, 2017 - June 5, 2017
https://csrc.nist.gov/events/2017/privacy-risk-assessment-a-prerequisite-for-privac

As part of an ongoing series of workshops on privacy engineering and risk management, NIST will host a public workshop on June 5th in Gaithersburg, Maryland on privacy risk assessments. This workshop builds off the concepts introduced in January 2017 in NIST Internal Report 8062 (An Introduction to Privacy Engineering and Risk Management in Federal Systems). Participants will discuss the function of privacy risk assessments as a prerequisite for conducting privacy risk management, and the role of privacy risk models. This discussion will assist NIST in the development of a body of guidance on...

Updates

Open Meeting of the Information Security and Privacy Advisory Board (ISPAB)

June 5, 2017
https://csrc.nist.gov/news/2017/open-meeting-of-the-ispab-(june-2017)

The Information Security and Privacy Advisory Board (ISPAB) will meet June 28-30, 2017. All sessions will be open to the public.

Events

Cybersecurity Framework Workshop 2017

May 16, 2017 - May 17, 2017
https://csrc.nist.gov/events/2017/cybersecurity-framework-workshop-2017

This workshop will offer participants the opportunity to: Share and learn about Cybersecurity Framework users’ experiences that will help others in making effective use of the Framework, Discuss and share their views about proposed updates to the Framework to assist NIST in finalizing Version 1.1 later in 2017, and Learn about new Framework-related policy issues and the progress of others' technical work.

Updates

NIST Releases Draft NIST Interagency Report (NISTIR) 8170, The Cybersecurity Framework: Implementation Guidance for Federal Agencies

May 15, 2017
https://csrc.nist.gov/news/2017/draft-nistir-8170,-cybersecurity-framework-impleme

NISTIR 8170 rovides guidance on how the Framework for Improving Critical Infrastructure Cybersecurity (Cybersecurity Framework) can be used in the U.S. Federal Government in conjunction with the current and planned suite of NIST security and privacy risk management publications.

Updates

DHS Study on Mobile Device Security

May 8, 2017
https://csrc.nist.gov/news/2017/dhs-study-on-mobile-device-security

The Department of Homeland Security (DHS) has published the "Study on Mobile Device Security," a report to Congress that details current and emerging threats to the Federal Government's use of mobile devices. It also recommends security improvements to the mobile device ecosystem.

Publications ITL Bulletin (Final)

Cyber-Threat Intelligence and Information Sharing

May 8, 2017
https://csrc.nist.gov/pubs/itlb/2017/05/cyberthreat-intelligence-and-information-sharing/final

Abstract: This bulletin, based on NIST Special Publication (SP) 800-150, introduces cyber threat intelligence and information sharing concepts, describes the benefits and challenges of sharing, clarifies the importance of trust, and introduces specific data handling considerations. It also desc...

Publications SP 800-121 Rev. 2 (Final) (Withdrawn)

Guide to Bluetooth Security

May 8, 2017

https://csrc.nist.gov/pubs/sp/800/121/r2/final

Abstract: Bluetooth wireless technology is an open standard for short-range radio frequency communication used primarily to establish wireless personal area networks (WPANs), and has been integrated into many types of business and consumer devices. This publication provides information on the security capabil...

Publications ITL Bulletin (Final)

Building the Bridge Between Privacy and Cybersecurity for Federal Systems

April 18, 2017
https://csrc.nist.gov/pubs/itlb/2017/04/building-bridge-bw-privacy-cybersecurity-for-feder/final

Abstract: This bulletin summarizes the information in NISTIR 8062: An Introduction to Privacy Engineering and Risk Management in Federal Information Systems which provides an introduction to the concepts of privacy engineering and risk management for federal information systems. NISTIR 8062 introduces two key...

Events

Quest Baldrige Cybersecurity Pre-Conference Workshop

April 2, 2017 - April 2, 2017
https://csrc.nist.gov/events/2017/quest-baldrige-cybersecurity-pre-conference-worksh

On April 2, 2017, the Quest Baldrige Cybersecurity Pre-Conference Workshop will educate participants how to better assess organizational cybersecurity. NIST developed the Baldrige Cybersecurity Excellence Builder self-assessment tool based on the Cybersecurity Framework as well as the Baldrige National Performance Excellence Program. The interactive workshop will help participants use the Baldrige Cybersecurity Excellence Builder to: assess the effectiveness and efficiency of cybersecurity practices, assess cybersecurity results, and identify priorities for improving cybersecurity risk...

Publications Other (Final)

Baldrige Cybersecurity Excellence Builder: Key questions for improving your organization's cybersecurity performance

April 2, 2017
https://csrc.nist.gov/pubs/other/2017/04/02/baldrige-cybersecurity-excellence-builder-v10/final

Abstract: The Baldrige Cybersecurity Excellence Builder is a voluntary self-assessment tool that enables organizations to better understand the effectiveness of their cybersecurity risk management efforts. It helps your organization identify strengths and opportunities for improvement in managing cybersecurit...

Updates

Status of NIST SP 800-53, Revision 5

March 31, 2017
https://csrc.nist.gov/news/2017/status-of-nist-sp-800-53,-revision-5

What is the current status of release of Draft Special Publication 800-53 Revision 5? This news item will explain the current status of this document.

Updates

National Cybersecurity Center of Excellence Capabilities Assessment for Securing Manufacturing Industrial Control Systems for Manufacturing Sector

March 23, 2017
https://csrc.nist.gov/news/2017/nccoe-capabilities-assessment-for-securing-manufac

NIST's NCCoE invites organizations to provide products and technical expertise to support and demonstrate security platforms for the Capabilities Assessment for Securing Manufacturing Industrial Control Systems. Participation is open to all interested organizations.

Updates

FINAL PUBLIC DRAFT Cybersecurity Framework Manufacturing Profile

March 20, 2017
https://csrc.nist.gov/news/2017/draft-cybersecurity-framework-manufacturing-profil

The Final Public Draft Cybersecurity Framework Manufacturing Profile is now available for public comment.

Publications ITL Bulletin (Final)

Fundamentals of Small Business Information Security

March 13, 2017
https://csrc.nist.gov/pubs/itlb/2017/03/fundamentals-of-small-business-information-securit/final

Abstract: This bulletin summarizes the information in NISTIR 7621, Revision 1: Small Business Information Security: The Fundamentals. The bulletin presents the fundamentals of a small business information security program.

Publications Project Description (Final)

Capabilities Assessment for Securing Manufacturing Industrial Control Systems

March 9, 2017
https://csrc.nist.gov/pubs/pd/2017/03/09/securing-manufacturing-ics/final

Abstract: Industrial Control Systems (ICS) monitor and control physical processes in many different industries and sectors. Cyber attacks against ICS devices present a real threat to organizations that employ ICS to monitor and control manufacturing processes. The NIST Engineering Laboratory (EL), in conjunct...

Updates

Open Meeting of the Information Security and Privacy Advisory Board (ISPAB)

March 1, 2017
https://csrc.nist.gov/news/2017/ispab-march-2017

The Information Security and Privacy Advisory Board (ISPAB) will meet March 29-31, 2017. All sessions will be open to the public.

Publications Conference Paper (Final)

Be Prepared: How US Government Experts Think About Cybersecurity

February 26, 2017
https://csrc.nist.gov/pubs/conference/2017/02/26/be-prepared-how-us-government-experts-think-about/final

Conference: NDSS Symposium 2017 Abstract: Online security experiences, perceptions, and behaviors are key to understanding users security practices. Users express that they are concerned about online security, but they also express frustration in navigating the often confusing and mentally taxing cybersecurity world. Thi...

Publications ITL Bulletin (Final)

Guide for Cybersecurity Incident Recovery

February 17, 2017
https://csrc.nist.gov/pubs/itlb/2017/02/guide-for-cybersecurity-incident-recovery/final

Abstract: This bulletin summarizes the information presented in NIST Special Publication (SP) 800-184, Guide for Cybersecurity Event Recovery. The publication provides organizations with strategic guidance for planning, playbook developing, testing and improvements of recovery planning following a cybers...

Events

FCSM Forum - Feb 2017

February 14, 2017 - February 14, 2017
https://csrc.nist.gov/events/2017/federal-computer-security-managers-forum-februa

Presentations & Speakers at a Glance: New Cybersecurity Codes for IT, Cybersecurity & Cyber Functions, Bill Newhouse, NIST and Jodi Guss, OPM; Using Privacy Risk Management to Improve Privacy in Federal Systems, Ellen Nadeau, NIST NOTE: FORUM MEETINGS ARE OPEN TO ONLY FEDERAL/STATE EMPLOYEES, HIGHER EDUCATION EMPLOYEES, AND THEIR DESIGNATED SUPPORT CONTRACTORS. REGISTRANTS MUST USE A .GOV, .EDU, OR .MIL ADDRESS FOR SIGN-UP. SUPPORT CONTRACTORS MUST INDICATE THE AGENCY OR ORGANIZATION THEY SUPPORT. The Federal Computer Security Program Managers Forum (the "Forum") is an informal...

<< first   < previous   32     33     34     35     36     37     38     39     40     41     42     43     44     45     46     47     48     49     50     51     52     53     54     55     56  next >  last >>