Search CSRC

Application Containers are slowly finding adoption in enterprise IT infrastructures. To address security concerns associated with deployment of application container platforms, NIST Special Publication 800-190 (2nd Draft), Application Container Security Guide, identified security threats

NIST requests public comments on the release of Draft Special Publication (SP) 800-70 Revision 4, National Checklist Program for IT Products: Guidelines for Checklist Users and Developers. 

NIST requests comments on the current plan for use and deprecation of the Tripe Data Encryption Algorithm (TDEA).

NIST is seeking comments on Draft NIST IR 8179, Criticality Analysis Process Model.

NIST Releases Special Publication 800-192, Verification and Test Methods for Access Control Policies/Models

NIST Releases Special Publication 800-12 Revision 1, An Introduction to Information Security

NIST Special Publication 800-63-3, Digital Identity Guidelines is now final

NIST is pleased to announce the final publication of NIST Interagency Report (NISTIR) 8011, Automation Support for Security Control Assessments, Volumes 1 and 2.

The Information Security and Privacy Advisory Board (ISPAB) will meet June 28-30, 2017. All sessions will be open to the public.

NIST announces the public comment release of Draft Special Publication 800-193,  Platform Firmware Resiliency Guidelines. The platform is a collection of fundamental hardware and firmware components needed to boot and operate a computer system.

As the world rapidly embraces the Internet of Things, properly securing medical devices has grown challenging for most healthcare delivery organizations (HDOs).......

NISTIR 8170 rovides guidance on how the Framework for Improving Critical Infrastructure Cybersecurity (Cybersecurity Framework) can be used in the U.S. Federal Government in conjunction with the current and planned suite of NIST security and privacy risk management publications.

The Department of Homeland Security (DHS) has published the "Study on Mobile Device Security," a report to Congress that details current and emerging threats to the Federal Government's use of mobile devices. It also recommends security improvements to the mobile device ecosystem.

SP 800-121 Rev. 2 has been approved as final & is now available.

NIST releases a draft whitepaper "Profiles for the Lightweight Cryptography Standardization Process".

Recent Cryptanalysis of FF3 - Special Publication 800-38G

NIST announces the public comment release of Draft Special Publication (SP) 800-190, Application Container Security Guide.

What is the current status of release of Draft Special Publication 800-53 Revision 5?  This news item will explain the current status of this document.

NISTIR 8114, Report on Lightweight Cryptography has been approved as final and is now available.

NIST's NCCoE invites organizations to provide products and technical expertise to support and demonstrate security platforms for the Capabilities Assessment for Securing Manufacturing Industrial Control Systems. Participation is open to all interested organizations.

The Final Public Draft Cybersecurity Framework Manufacturing Profile is now available for public comment.

The Information Security and Privacy Advisory Board (ISPAB) will meet March 29-31, 2017. All sessions will be open to the public.

On Thursday, February 23rd, Google announced  that a team of researchers from the CWI Institute in Amsterdam and Google have successfully demonstrated an attack on the SHA-1 hash algorithm by creating two files that hash to the same value. 

NIST has launched a beta site for a new version of CSRC.nist.gov: https://beta.csrc.nist.rip.  It will be available alongside http://csrc.nist.rip for several months as we continue to fix issues, implement enhanced functionality, and migrate existing content. Your feedback is welcome!

NCCoE Released Draft Special Publication 1800-7, Situational Awareness for Electric Utilities for public comment.