Search CSRC

NIST cybersecurity reference materials include data, models, software, and tools.

This topic includes: NIST's work with Standards Developing Organizations (SDOs), such as ISO, ANSI, IETF, etc.; and  content that is about the topic of standards development. This topic does not refer to NIST cybersecurity standards or their development (e.g., public drafts).

"Cyber-physical systems (CPS) are smart systems that include engineered interacting networks of physical and computational components. These highly interconnected and integrated systems provide new functionalities to improve quality of life and enable technological advances in critical areas, such as personalized health care, emergency response, traffic flow management, smart manufacturing, defense and homeland security, and energy supply and use. In addition to CPS, there are many words and phrases (Industrial Internet, Internet of Things (IoT), machine-to-machine (M2M), smart cities, and...

The Cybersecurity Framework is a voluntary framework for reducing cyber risks to critical infrastructure. It is based on existing standards, guidelines, and practices, and was originally developed with stakeholders in response to Executive Order (EO) 13636 (February 12, 2013).

"General term that encompasses several types of control systems, including supervisory control and data acquisition (SCADA) systems, distributed control systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC) often found in the industrial sectors and critical infrastructures. An ICS consists of combinations of control components (e.g., electrical, mechanical, hydraulic, pneumatic) that act together to achieve an industrial objective (e.g., manufacturing, transportation of matter or energy)." (SP 800-82 Rev. 2)

See the NIST Cybersecurity for IoT Program for details about how the Applied Cybersecurity Division supports the development and application of standards, guidelines, and related tools to improve the cybersecurity of connected devices and the environments in which they are deployed.   [This "Internet of Things" CSRC topic page consolidates content related to IoT that exists on the CSRC website.]

"Small businesses are defined differently depending on the industry sector. For [NISTIR 7621 Rev. 1], the definition of a small business includes for-profit, non-profit, and similar organizations with up to 500 employees. Synonymous with “Small Enterprise or Small Organization”. See the SBA [Small Business Administration] website www.sba.gov for more information." (NISTIR 7621 Rev. 1)

See the CSRC Homepage for additional resources on Telework Cybersecurity. "The ability for an organization’s employees, contractors, business partners, vendors, and other users to perform work from locations other than the organization’s facilities." (SP 800-46 Rev. 2)

Orders and directives originating from the White House and President of the U.S., such as Executive Orders, Presidential Directives, and OMB memoranda.

Laws, Acts of Congress and statutes.

Government regulations, such as those found in the U.S. Code of Federal Regulations.

NIST supports the public safety efforts of FirstNet (First Responder Network Authority), which was created by the Middle Class Tax Relief and Job Creation Act--specifically under the section Public Safety Communications and Electromagnetic Spectrum Auctions (Title VI, Subtitle B of Public Law 112-96; February 22, 2012).