Special Publication (NIST SP)

Functional Recovery Performance Targets Workshop Report

September 30, 2025

Author(s)

Lucy Arendt, Katherine Johnson, Siamak Sattar, Michael Valley, Divya Chandrasekhar, Laurie Johnson, Ryan Kersting

Held in October 2024, the Workshop on Functional Recovery Performance Targets was hosted by the National Institute of Standards and Technology (NIST) and

REDUCING THE CYBERSECURITY RISKS OF PORTABLE STORAGE MEDIA IN OT ENVIRONMENTS

September 30, 2025

Author(s)

Michael Powell, Fenimore Philip, Stephanie Saravia

Though portable storage media are convenient, their unregulated use poses cybersecurity risks for organizations utilizing them in their OT environments

TRIP$ - Transportation Risk-Recovery Investment Planning Solutions: Optimizing Earthquake Resilience & Functional Recovery of Highways

September 29, 2025

Author(s)

Aspasia Nikolaou, Angelos Tsatsis, Maria Antoniou, Juan Fung, Yalda Saadat, Fani Gelogoti, Rallis Kourkoulis, Steven McCabe

The United States (US) faces significant challenges in maintaining and modernizing its aging infrastructure, particularly in the transportation sector, which

NIST 2025 Rapid Microbial Testing Methods Workshop Report

September 26, 2025

Author(s)

Jason Kralj, Kirsten Parratt, Tyler Laird, Stephanie Servetas, Nancy Lin, Dawn Henke, Scott Jackson

In 2020, the National Institute of Standards and Technology (NIST)-led Rapid Microbial Testing Methods (RMTM) Consortium was established to develop standards

Report from the 2023 NIST-Hosted Workshop on Collaborative Efforts to Enable Adoption of Rapid Microbial Testing Methods for Advanced Therapy Products

September 26, 2025

Author(s)

Stephanie Servetas, Dawn Henke, Jason Kralj, Kirsten Parratt, Scott Jackson, Nancy Lin

On April 25, 2023, the National Institute of Standards and Technology (NIST) hosted a one-day hybrid workshop focused on bringing together organizations and

Evidence Management Steering Committee Report: Expanded Bibliography

September 26, 2025

Author(s)

NIST/NIJ Evidence Management Steering Committee

In 2018 in conjunction with the National Institute of Justice (NIJ), the National Institute of Standards and Technology (NIST) assembled a group of

Evidence Management Steering Committee Report: Opportunities to Strengthen Evidence Management Processes

September 26, 2025

Author(s)

NIST/NIJ Evidence Management Steering Committee

In 2018 in conjunction with the National Institute of Justice (NIJ), the National Institute of Standards and Technology (NIST) assembled a group of

Evidence Management Steering Committee Report: Results of the 2021 National Evidence Handlers Survey

September 26, 2025

Author(s)

NIST/NIJ Evidence Management Steering Committee

In 2018 in conjunction with the National Institute of Justice (NIJ), the National Institute of Standards and Technology (NIST) assembled a group of

Guidelines for Media Sanitization

September 26, 2025

Author(s)

Ramaswamy Chandramouli, Eric Hibbard

Media sanitization refers to a process that renders access to target data on the media infeasible for a given level of effort. This guide will assist

Face Recognition Technology Evaluation (FRTE): Preparation of Compact Face Images for 2D Barcodes

September 25, 2025

Author(s)

Patrick Grother, Mei Ngan, Austin Hom

Compact face photographs, stored and digitally signed in 2D barcodes, form a low-cost tamper-resistant identity credential. The cryptographic signature allows

NIST 2024 Rapid Microbial Testing Methods Workshop Report

September 25, 2025

Author(s)

Jason Kralj, Nancy Lin, Kirsten Parratt, Stephanie Servetas, Dawn Henke, Scott Jackson

The NIST-led Rapid Microbial Testing Methods (RMTM) Consortium launched in 2020 to develop standards and measurement-based solutions to advance the use of RMTMs

Recommendation for Random Bit Generator (RBG) Constructions

September 25, 2025

Author(s)

Elaine Barker, John Kelsey, Kerry McKay, Allen Roginsky, Meltem Sonmez Turan

The NIST Special Publication (SP) 800-90 series of documents supports the generation of high-quality random bits for cryptographic and non-cryptographic use. SP

Material Challenges in Developing a Sustainable Metal Processing Infrastructure - Workshop Report

September 23, 2025

Author(s)

Andrew Iams, James Zuback, Mark Stoudt, Carelyn Campbell

As metals and manufacturing industries continue to transition towards sustainable and circular principals, innovations are needed to address a variety of

NIST Special Publication 800-227, Recommendations for Key-Encapsulation Mechanisms

September 18, 2025

Author(s)

Gorjan Alagic, Elaine Barker, Lidong Chen, Dustin Moody, Angela Robinson, Hamilton Silberg, Noah Waller

A key-encapsulation mechanism (KEM) is a set of algorithms that can be used by two parties under certain conditions to securely establish a shared secret key

Addressing Visibility Challenges with TLS 1.3 within the Enterprise

September 17, 2025

Author(s)

William Newhouse

The Transport Layer Security (TLS) protocol is widely deployed to secure network traffic. TLS 1.3 has been strengthened so that even if a TLS-enabled server is

Certification of Standard Reference Material® 3666: Albumin and Creatinine in Frozen Human Urine - INCLUDES UPDATES AS OF 07-02-2025

September 2, 2025

Author(s)

Ashley Green, Johanna Camara, Nathanael Heckert

The National Institute of Standards and Technology (NIST) Standard Reference Material® (SRM®) 3666 Albumin and Creatinine in Frozen Human Urine is a secondary

Assessing support structures for early career researchers at NIST

August 29, 2025

Author(s)

Justyna Zwolak, Robert Dalka

This report summarizes the findings of the workforce preparation assessment initiative at the National Institute of Standards and Technology (NIST) using the

Certification of 3180 Series Standard Reference Materials® Anions in Solution

August 26, 2025

Author(s)

Brian Lang, Thomas Vetter, John Molloy, Antonio Possolo

The 3180 series Standard Reference Materials (SRMs) are single anion solutions intended for use as primary calibration standards for the quantitative

Protecting Controlled Unclassified Information (CUI): NIST Special Publication 800-171, Revision 3 Small Business Primer

August 13, 2025

Author(s)

Daniel Eliot

This introductory guide provides small businesses with a high level overview of NIST Special Publication (SP) 800-171 Revision 3, Protecting Controlled

NIST SP 800-63C-4:Digital Identity Guidelines - Federation and Assertions

August 1, 2025

Author(s)

Justin Richer, James L. Fenton, Naomi Lefkovitz, David Temoshok, Ryan Galluzzo, Andrew Regenscheid, Yee-Yin Choong

This guideline focuses on the use of federated identity and the use of assertions to implement identity federations. Federation allows a given credential

NIST SP 800-63B-4:Digital Identity Guidelines - Authentication and Authenticator Management

August 1, 2025

Author(s)

David Temoshok, Yee-Yin Choong, Andrew Regenscheid, Ryan Galluzzo, James L. Fenton, Justin Richer, Naomi Lefkovitz

This guideline focuses on the authentication of subjects who interact with government information systems over networks to establish that a given claimant is a

NIST SP 800-63A-4:Digital Identity Guidelines - Identity Proofing and Enrollment

August 1, 2025

Author(s)

David Temoshok, Yee-Yin Choong, Ryan Galluzzo, Marie LaSalle, Andrew Regenscheid, Christine Abruzzi, James L. Fenton, Naomi Lefkovitz

This guideline focuses on identity proofing and enrollment for use in digital authentication. During the process of identity proofing, an applicant provides

NIST SP 800-63-4: Digital Identity Guidelines

August 1, 2025

Author(s)

David Temoshok, Yee-Yin Choong, Ryan Galluzzo, Marie LaSalle, Andrew Regenscheid, Diana Proud-Madruga, Sarbari Gupta, Naomi Lefkovitz

These guidelines cover identity proofing, authentication, and federation of users (such as employees, contractors, or private individuals) interacting with

Estimating How Big: The Metric Estimation Game

July 30, 2025

Author(s)

Elizabeth Benham, Kristen Dill, Dinelka Jagoda, Maryanne Amanze, Yoon Thwel

The metric system (International System of Units, SI) is easy to use and learn. The Metric System Estimation Game is a fun, hands-on activity that helps

NIST SP 1181 - Unit Pricing Guide - A Best Practice Approach to Unit Pricing (2025 Ed.)

July 9, 2025

Author(s)

John McGuire, David Sefcik, Katrice Lippa, Scott Dolan, Isabel Baucom

This guide was developed to provide retailers with information about the best practice requirements for the unit pricing of commodities. The guide consists of

Guidelines for API Protection for Cloud-Native Systems

June 27, 2025

Author(s)

Ramaswamy Chandramouli, Zack Butcher

Modern enterprise IT systems rely on a family of application programming interfaces (APIs) for integration to support organizational business processes. Hence

A method for assessing and communicating the quality of evidence used in establishing community resilience frameworks

June 18, 2025

Author(s)

Michael Gerst, Maria Dillard

Community resilience refers to the concept of a community being able to prepare, respond, recover, and adapt to disruptions in a way that does not compromise

Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities (Spanish translation)

June 16, 2025

Author(s)

Karen Scarfone, Murugiah Souppaya, Donna Dodson

Few software development life cycle (SDLC) models explicitly address software security in detail, so secure software development practices usually need to be

Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities (Portuguese translation)

June 16, 2025

Author(s)

Karen Scarfone, Murugiah Souppaya, Donna Dodson

Few software development life cycle (SDLC) models explicitly address software security in detail, so secure software development practices usually need to be

Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities (French translation)

June 16, 2025

Author(s)

Karen Scarfone, Murugiah Souppaya, Donna Dodson

Few software development life cycle (SDLC) models explicitly address software security in detail, so secure software development practices usually need to be