Other

Ordered t-way Combinations for Testing State-based Systems

June 13, 2022

Author(s)

D. Richard Kuhn, M S Raunak, Raghu N. Kacker

Fault detection often depends on the specific order of inputs that establish states which eventually lead to a failure. However, beyond basic structural

Initial Summary Analysis of Responses to the Request for Information Evaluating and Improving Cybersecurity Resources: The Cybersecurity Framework and Cybersecurity Supply Chain Risk Management

June 3, 2022

Author(s)

Cherilyn Pascoe

On February 22, 2022, NIST issued a public Request for Information (RFI), "Evaluating and Improving NIST Cybersecurity Resources: The Cybersecurity Framework

A Data Structure for Integrity Protection with Erasure Capability

May 20, 2022

Author(s)

D. Richard Kuhn

This document describes a data structure, referred to as a data block matrix, that supports the ongoing addition of hash-linked records while also allowing for

Getting Started with Cybersecurity Risk Management Ransomware

February 23, 2022

Author(s)

Bill Fisher, William C. Barker, Karen Scarfone

Quick start guide for NISTIR 8374.

Benefits of an Updated Mapping between the NIST Cybersecurity Framework and the NERC Critical Infrastructure Protection Standards

September 29, 2021

Author(s)

Jeffrey Marron, Avi Gopstein, Daniel Bogle

This white paper highlights a recent mapping effort between the North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP)

Filing Rate and Transfer Rate at NIST: An examination of invention disclosures, patent applications, and invention licenses

May 28, 2021

Author(s)

Michael J. Hall

This paper applies technology-transfer efficiency metrics—filing rate and transfer rate— proposed in the academic literature on technology transfer to data on

Getting Ready for Post-Quantum Cryptography: Exploring Challenges Associated with Adopting and Using Post-Quantum Cryptographic Algorithms

April 28, 2021

Author(s)

Murugiah Souppaya, William Polk, William Barker

Cryptographic technologies are used throughout government and industry to authenticate the source and protect the confidentiality and integrity of information

NIST-NOAA Survey Instrument for Business Disruption and Recovery Associated With Extreme Events: General Instrument Applied to the Greater Charleston, SC Small- and Medium-Sized Business Community Post-Hurricane Irma

September 30, 2020

Author(s)

Jennifer F. Helgeson, Eleanor D. Pierel, Kirstin Dow

To gather more in-depth information about how disasters affect businesses, the National Institute of Standards and Technology (NIST) and the National Oceanic

Eliciting Lessons from Small- and Medium-Sized Enterprises (SMEs) for Natural Disaster Resilience Planning and Recovery During the COVID-19 Pandemic: SME Complex Event Resilience

September 30, 2020

Author(s)

Jennifer F. Helgeson, Juan F. Fung, Yating Zhang, Alfredo R. Roa Henriquez, Ariela Zycherman, Claudia Nierenberg, David T. Butry, Donna H. Ramkissoon

Small and medium-sized enterprises (SMEs) make up 44% of U.S. economic activities and are the lifeline for many local economies, employing 59 million people in

On the nature of the non-equilibrium phase transition in the non-Markovian driven Dicke model

September 23, 2020

Author(s)

Rex Lundgren, Alexey Gorshkov, Mohammad Maghrebi

The Dicke model famously exhibits a phase transition to a superradiant phase with a macroscopic population of photons and is realized in multiple settings in

Mitigating the Risk of Software Vulnerabilities by Adopting a Secure Software Development Framework (SSDF)

April 23, 2020

Author(s)

Donna F. Dodson, Murugiah Souppaya, Karen Scarfone

Few software development life cycle (SDLC) models explicitly address software security in detail, so secure software development practices usually need to be