Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Information Technology

Cybersecurity

Overview

With a world-class measurement and testing laboratory encompassing a wide range of areas of computer science, mathematics, statistics, and systems engineering, NIST’s cybersecurity program supports its overall mission to promote U.S. innovation and industrial competitiveness by advancing measurement science, standards, and related technology through research and development in ways that enhance economic security and improve our quality of life.

The need for cybersecurity standards and best practices that address interoperability, usability, and privacy continues to be critical for the nation. NIST’s cybersecurity programs seek to enable greater development and application of practical, innovative security technologies and methodologies that enhance the country’s ability to address current and future computer and information security challenges.

Featured Content

Computer Security Resource Center

Cybersecurity Framework

Privacy Framework

Risk Management Framework

Measurements for Information Security

Cybersecurity Insights Blog

National Cybersecurity Center of Excellence

National Initiative for Cybersecurity Education (NICE)

Small Business Cybersecurity Corner

Cybersecurity Topics

Configuration & vulnerability management

Cryptography

Cybersecurity education & workforce development

Risk management

The Research

Projects & Programs

Exposure Notification – protecting workplaces and vulnerable communities during a pandemic

The goal of this project is to utilize NIST expertise in privacy, cybersecurity, machine learning, wireless technology, ranging, modeling, and hardware and

Trustworthy Networks of Things

NIST is working with industry to design, standardize, test and foster adoption of network-centric approaches to protect IoT devices from the Internet and to

Cryptographic Module Validation Program (CMVP)

What Is The Purpose Of The CMVP? On July 17, 1995, NIST established the Cryptographic Module Validation Program (CMVP) that validates cryptographic modules

Cyber-Physical Systems/Internet of Things for Smart Cities

Smart cities are enabled by cyber-physical systems (CPS), which involve connecting devices and systems – such as Internet of Things (IoT) technologies – in

Additional Resources Links

Publications

Software

Awards

Happy first birthday to the NIST Privacy Framework

In this animated story, experts from across government and private industry explain how NIST’s voluntary Privacy Framework can be used by organizations of any size or type to build trust in their products and services, better communicate their privacy practices, and help meet their compliance obligations. All statistics in the video were taken from Pew Research Center, November 2019, “Americans and Privacy: Concerned, Confused and Feeling Lack of Control Over Their Personal Information.

View video

News

cityscape with icons representing various IOT technologies

Lightweight Crypto, Heavyweight Protection

Logic puzzles, brain teasers and mathematical riddles fascinated me throughout my childhood, so I feel lucky that I ended up with a career that never lacks for mathematical challenges. Part of my job at the National Institute of Standards and Technology (NIST) involves reviewing the cryptographic algorithms developed to protect our information and identifying possible weaknesses that make them

Multiple blue digital images form a mosaic in the shape of the continental USA.

NIST Releases Draft Guidance on Internet of Things Device Cybersecurity

Illustration shows cybersecurity images like laptops and padlocks arranged in a network.