Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cyber and Network Security

This page is not currently being maintained and is for archival information only.

Please see our most recent work at our Cybersecurity @ NIST page and our Computer Security Resource Center (CSRC)

Cyber and network security is focused on ensuring three security objectives of information technology systems: confidentiality, integrity, and availability. The Cyber and Network Security Program addresses NIST's statutory responsibilities in the domain and the near- and long-term scientific issues in some of the building blocks of IT and network security - cryptography, security testing and evaluation, access control, internetworking services and protocols (Domain Name System, Border Gateway Protocol, IPv6, Wi-Max, etc.), security metrics, vulnerability analysis, security automation, and security properties. These efforts will provide a more scientific foundation for cybersecurity, while maintaining a focus on near-term security issues in emerging technologies.


  • Security Content Automation Protocol (SCAP)
  • Advanced Algorithm Development
  • Technical Security Guidance Program
  • Security for Internet Systems and IETF
  • Combinatorial Methods for Software
  • IT Product Evaluation/Validation Program
  • Ontology for Mapping Platform Configurations to Security Properties
  • Security Metrics
  • IIP - Robust Inter-Domain Routing
  • IIP - IP Next Generation
  • IIP - Robust Internet Naming
  • Identity Based Encryption
  • Policy Machine

Latest Publications:


Created March 2, 2009, Updated January 28, 2022