Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Information Technology

Cybersecurity

News and Updates

Keyword

Organization

Withdrawal of NIST Special Publication 800-106, Randomized Hashing for Digital Signatures

December 15, 2022

In January 2022, NIST's Crypto Publication Review Board initiated a review process for NIST Special Publication (SP) 800-106, Randomized Hashing for Digital

Announcement of Proposal to Revise FIPS 180-4, Secure Hash Standard (SHS)

December 15, 2022

As a part of the periodic review of NIST’s cryptographic standards and guidelines, NIST's Crypto Publication Review Board announced the review of Federal

National Online Informative References (OLIR) Program: Two Draft NIST IRs Available for Comment

December 8, 2022

NIST is seeking public comments on two draft NIST Internal Reports (NIST IR) for the National Online Informative References (OLIR) Program. This Program is a

Recap and Resources from the NICE K12 Conference

December 8, 2022

The NICE K12 Cybersecurity Education Conference took place this week in St. Louis, Missouri. The conference brought together over 400 participants and featured

Animation shows hands holding a phone showing the word "Connect," then an inbox, then a game screen.

Spotlight: The Cybersecurity and Privacy of BYOD (Bring Your Own Device)

December 1, 2022

The threat to privacy and security is real, but what can device users and IT managers do?

120-Day Cybersecurity Apprenticeship Sprint Ends During National Apprenticeship Week

November 18, 2022

The Cybersecurity Apprenticeship Sprint, a national campaign to promote Registered Apprenticeships to develop the cybersecurity workforce, ended this week

NIST Publishes SP 800-215: Guide to a Secure Enterprise Network Landscape

November 17, 2022

NIST has published Special Publication (SP) 800-215, Guide to a Secure Enterprise Network Landscape. Access to multiple cloud services (e.g., IaaS, SaaS), the

NIST Releases IR 8286D: Using Business Impact Analysis to Inform Risk Prioritization and Response

November 17, 2022

Business impact analyses (BIAs) have been traditionally used for business continuity and disaster recovery (BC/DR) planning to understand the potential impacts

NIST Releases Revised Guidance on Engineering Trustworthy Secure Systems

November 16, 2022

NIST has released a major revision to Special Publication (SP) 800-160 Volume 1, Engineering Trustworthy Secure Systems. This final publication offers

NIST releases NIST IR 8409: Measuring the Common Vulnerability Scoring System Base Score Equation

November 15, 2022

NIST has published NIST Internal Report (IR) 8409, Measuring the Common Vulnerability Scoring System Base Score Equation. Calculating the severity of

De-Identifying Government Data Sets: Third Public Draft Available for Comment

November 15, 2022

NIST has released the third public draft of NIST Special Publication (SP) 800-188, De-Identifying Government Data Sets, for public comment. De-identification

Blue screen covered with lines ending in bright dots

Performance Measurement Guide for Information Security: Annotated Outline Available for Comment

November 14, 2022

Summary NIST has released a working draft of NIST Special Publication (SP) 800-55 Revision 2, Performance Measurement Guide for Information Security. The public

Winners Announced in First Phase of UK-US Privacy-Enhancing Technologies Prize Challenges

November 10, 2022

Winning ideas would tackle financial crime and public health emergencies.

Software Supply Chain and DevOps Security Practices: Implementing a Risk-Based Approach to DevSecOps: Final Project Description Released

November 9, 2022

The National Cybersecurity Center of Excellence (NCCoE) has released the final project description, Software Supply Chain and DevOps Security Practices

Mitigating AI/ML Bias in Context: Final Project Description Released

November 8, 2022

The National Cybersecurity Center of Excellence (NCCoE) has released a new final project description, Mitigating AI/ML Bias in Context: Establishing Practices

Decision to Convert FIPS 198-1 to a NIST Special Publication

November 4, 2022

In August 2021, NIST's Crypto Publication Review Board initiated a review process for Federal Information Processing Standard (FIPS) 198-1 The Keyed-Hash

Draft Project Description for Securing Water and Wastewater Utilities: Cybersecurity for the Water and Wastewater Systems Sector

November 2, 2022

Seeking Feedback The National Cybersecurity Center of Excellence (NCCoE) has published for comment a draft project description, Securing Water and Wastewater