Take a sneak peek at the new NIST.gov and let us know what you think!
(Please note: some content may not be complete on the beta site.).

View the beta site
NIST logo

Publications Portal

You searched on: Topic Area: Cybersecurity Sorted by: title

Displaying records 121 to 130 of 141 records.
Resort by: Date / Title


121. Static Analysis is not enough: The Role of Architecture and Design in Software Assurance
Topic: Cybersecurity
Published: 12/1/2014
Author: Walter R. (Walt) Houser
Abstract: Static analysis testing of software source code is necessary but not sufficient. Over 40 percent of the Common Weakness Enumeration (CWE) are likely to be introduced in the architecture and design phase of the development life cycle. By their ver ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=916027

122. Supplemental Guidance on Ongoing Authorization: Transitioning to Near Real-Time Risk Management
Topic: Cybersecurity
Published: 6/3/2014
Authors: Kelley L Dempsey, Ronald S Ross, Kevin Mcguire Stine
Abstract: Office of Management and Budget (OMB) Memorandum M-14-03, Enhancing the Security of Federal Information and Information Systems, reminds Federal agencies that, "Our nation's security and economic prosperity depend on ensuring the confidentiality, int ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=916095

123. Supplemental Information for the Interagency Report on Strategic U.S. Government Engagement in International Standardization to Achieve U.S. Objectives for Cybersecurity
Series: NIST Interagency/Internal Report (NISTIR)
Report Number: 8074 Volume 2
Topic: Cybersecurity
Published: 12/23/2015
Authors: Michael D Hogan, Elaine M Newton
Abstract: This report provides background information and analysis in support of NISTIR 8074 Volume 1, Interagency Report on Strategic U.S. Government Engagement in International Standardization to Achieve U.S. Objectives for Cybersecurity. It provides a curr ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=919771

124. Tailoring Security Controls for Industrial Control Systems
Series: ITL Bulletin
Topic: Cybersecurity
Published: 11/16/2015
Authors: Victoria Y Pillitteri, Larry Feldman, Gregory A. Witte
Abstract: This bulletin summarizes the information presented in NIST SP 800-82, Rev 2: Guide to Industrial Control Systems (ICS) Security written by Keith Stouffer, Victoria Pillitteri, Suzanne Lightman, Marshall Abrams and Adam Hahn. The publication provides ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=919782

125. Technical Guide to Information Security Testing and Assessment
Series: Special Publication (NIST SP)
Report Number: 800-115
Topic: Cybersecurity
Published: 9/30/2008
Authors: Murugiah P Souppaya, Karen Ann Scarfone
Abstract: The purpose of this document is to assist organizations in planning and conducting technical information security tests and examinations, analyzing findings, and developing mitigation strategies. The guide provides practical recommendations for desig ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=152164

126. The Economic Benefits from Improved Cyber Security Infrastructure
Topic: Cybersecurity
Published: 5/22/2013
Author: Gregory C. Tassey
Abstract: Leading government officials have warned that a "cyber 9/11" could happen at any time. A coordinated terrorist cyber attack on a massive scale could potentially shut down the domestic economy. Even without such a pervasive assault, banks, utilities ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=913775

127. The Future of Cybersecurity Education
Topic: Cybersecurity
Published: 8/19/2014
Authors: Ernest Leroy McDuffie, V. P. Piotrowski
Abstract: By fostering public-private partnerships in cybersecurity education, the US government is motivating federal agencies, industry, and academia to work more closely together to defend cyberspace.
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=917265

128. The NIST Definition of Cloud Computing
Series: Special Publication (NIST SP)
Report Number: 800-145
Topic: Cybersecurity
Published: 9/28/2011
Authors: Peter M Mell, Timothy Grance
Abstract: Cloud computing is a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=909616

129. The Policy Machine: a Novel Architecture and Framework for Access Control Policy Specification and Enforcement
Topic: Cybersecurity
Published: 4/1/2011
Authors: David F Ferraiolo, Vijay (Vijay) Atluri, Serban Ilie Gavrila
Abstract: The ability to control access to sensitive data in accordance with policy is perhaps the most fundamental security requirement. Despite over four decades of security research, the limited ability for existing access control mechanisms to generically ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=905440

130. The Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.0
Series: Special Publication (NIST SP)
Report Number: 800-126
Topic: Cybersecurity
Published: 11/5/2009
Authors: Stephen D Quinn, David Anthony Waltermire, Christopher S. Johnson, Karen Ann Scarfone, John Franklin Banghart
Abstract: This document defines the technical specification for Version 1.0 of the Security Content Automation Protocol (SCAP). SCAP consists of a suite of specifications for standardizing the format and nomenclature by which security software communicates inf ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=904075



Search NIST-wide:


(Search abstract and keywords)


Last Name:
First Name:







Special Publications:

Looking for a NIST Special Publication (NIST SP Series)? Place the series number and dash in the report number field (Example: 800-) and begin your search.

  • SP 250-XX: Calibration Services
  • SP 260-XX: Standard Reference Materials
  • SP 300-XX: Precision Measurement and Calibration
  • SP 400-XX: Semiconductor Measurement Technology
  • SP 480-XX: Law Enforcement Technology
  • SP 500-XX: Computer Systems Technology
  • SP 700-XX: Industrial Measurement Series
  • SP 800-XX: Computer Security Series
  • SP 823-XX: Integrated Services Digital Network Series