Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Information Technology

Cybersecurity and privacy

Search Publications

Search Title, Abstract, Conference, Citation, Keyword or Author

Title

Author

NIST Pub Series

Report Number

Published Date

Min

Max

Displaying 1151 - 1175 of 1509

Personal Identity Verification Demonstration Summary

August 31, 2006

Author(s)

Erika McCallister, Hildegard Ferraiolo

This paper provides a summary of the NIST Personal Identity Verification (PIV) Demonstration. The PIV Demonstration took place from May 15 to June 14, 2006. Forty-four companies voluntarily participated through a Cooperative Research and Development

Protecting Sensitive Information Processed and Stored in Information Technology (IT) Systems

August 30, 2006

Author(s)

Shirley M. Radack

This bulletin explains the need for media sanitization, which is the process for removing confidential data from storage media, with reasonable assurance that the data cannot be retrieved and reconstructed. NIST recommendations to help organizations and

Concrete Multiplicative Complexity of Symmetric Functions

August 1, 2006

Author(s)

Joan Boyar, Rene Peralta

The multiplicative complexity of a Boolean function f is defined as the minimum number of binary conjunction (AND) gates required to construct a circuit representing f, when only exclusive-or, conjunction and negation gates may be used. This article

5th Annual PKI R&D Workshop "Making PKI Easy to Use" Proceedings

July 18, 2006

Author(s)

William T. Polk, Nelson E. Hastings, Kent Seamons

NIST hosted the fifth annual Public Key Infrastructure (PKI) Research Workshop on April 4-6, 2006. The two and a half day event brought together PKI experts from academia, industry, and government to explore the remaining challenges in deploying public key

Domain Name System (DNS) Services: NIST Recommendations for Secure Deployment

July 2, 2006

Author(s)

Shirley M. Radack

This bulletin explains the Domain Name System (DNS) infrastructure, and discusses NIST's recommendations to help organizations analyze their operating environments and the threats to their DNS services, and to apply appropriate risk-based security measures

Personal Identity Verification (PIV) of Federal Employees and Contractors

June 26, 2006

Author(s)

National Institute of Standards and Technology (NIST), William I. MacGregor, Ketan Mehta

[Superseded by FIPS 201-2(August 2013): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=914530] This document was developed to satisfy the requirements of HSPD-12, approved by the Secretary of Commerce, and issued on March 2006. This change

The Computational Complexity of Enforceability Validation for Generic Access Control Rules

June 14, 2006

Author(s)

Chung Tong Hu, David R. Kuhn, David F. Ferraiolo

In computer security, many researches have tackled on the possibility of a unified model of access control, which could enforce any access control policies within a single unified system. One issue that must be considered is the efficiency of such systems

Recommendation for Random Number Generation Using Deterministic Random Bit Generators

June 13, 2006

Author(s)

Elaine B. Barker, John M. Kelsey

[Superseded by SP 800-90 Revised (March 2007): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=50814] This Recommendation specifies mechanisms for the generation of random bits using deterministic methods. The methods provided are based on

Power Control in Multihop CSMA

June 1, 2006

Author(s)

Hamid Gharavi, Bo Yan

We have implemented a quantum key distribution (QKD) system with polarization encoding at 850 nm over 1 km of optical fiber. The high-speed management of the bit-stream, generation of random numbers and processing of the sifting algorithm are all handled

An Update on Cryptographic Standards, Guidelines, and Testing Requirements

May 24, 2006

Author(s)

Shirley M. Radack

This bulletin discusses the cryptographic methods that have been used to maintain the confidentiality and integrity of information, to verify that information was not changed after it was sent, and to authenticate the originator of the information. As

Secure Domain Name System (DNS) Deployment Guide

May 16, 2006

Author(s)

Ramaswamy Chandramouli, Scott W. Rose

[Superseded by SP 800-81 Rev. 1 (April 2010): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=905113] We examine the performance of multimodal biometric authentication systems using state-of-the-art Commercial Off-the-Shelf (COTS) fingerprint

Recommendation for Pair-Wise Key Establishment Schemes Using Discrete Logarithm Cryptography

May 3, 2006

Author(s)

Elaine B. Barker, Don Johnson, Miles Smid

[Superseded by SP 800-56A Revised (March 2007): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=150618] This Recommendation specifies key establishment schemes using discrete logarithm cryptography, based on standards developed by the

Recommendation for Key Management - Part 1: General (Revised) (May 2006 edition)

May 1, 2006

Author(s)

Elaine B. Barker, William C. Barker, William E. Burr, William T. Polk, Miles Smid

[Superseded by SP 800-57 Part 1 Revised (March 2007): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=917473] This Recommendation provides cryptographic key management guidance. It consists of three parts. Part 1 provides general guidance and

Electronic Authentication Guideline

April 30, 2006

Author(s)

William E. Burr, Donna F. Dodson, William T. Polk

[Superseded by SP 800-63-1 (December 2011): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=910006] This recommendation provides technical guidance to Federal agencies implementing electronic authentication. The recommendation covers remote

Glossary of Key Information Security Terms

April 25, 2006

Author(s)

Richard L. Kissel

[Superseded by NISTIR 7298 Revision 1: http://www.nist.gov/manuscript-publication-search.cfm?pub_id=907638] This glossary of basic security terms has been extracted from NIST Federal Information Processing Standards (FIPS) and the Special Publication (SP)

Protecting Sensitive Information Transmitted in Public Networks

April 21, 2006

Author(s)

Shirley M. Radack

This bulletin summarizes NIST SP 800-77, Guide to IPsec VPNs, which was issued by NIST to help network architects, network administrators, security staff, technical support staff, and computer security program managers who are responsible for the technical

Targeted Search: Reducing the Time and Cost for Searching for Objects in Multi-Server Networks

April 9, 2006

Author(s)

Allen L. Roginsky

In many applications - including P2P file sharing, content distribution networks, and grid computing - a single object will be searched for in multiple servers. In this paper, we find the provably optimal search method for such applications and develop

PIV Middleware and PIV Card Application Conformance Test Guidance (SP 800-73 Compliance)

April 5, 2006

Author(s)

Ramaswamy Chandramouli, Levent Eyuboglu, Ketan Mehta

[Superseded by SP 800-85A-1 (March 2009): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=902200] This document provides derived test requirements and test assertions for generating conformance tests for the following classes of specification

Cryptographic Hash Standards ? Where Do We Go From Here?

April 1, 2006

Author(s)

William E. Burr

The two most commonly used cryptographic hash functions, MD5 and SHA-1, have been successfully attacked?it is no longer advisable to use them in some applications, although other applications are not affected. Furthermore, these attacks have triggered a

Prevailing Over Wires in Healthcare Environments: Benefits and Challenges

April 1, 2006

Author(s)

David E. Cypher, Nicolas Chevrollier, Nicolas Montavont, Nada T. Golmie

The objectives of this article are to survey the benefits and challenges that poise the deployment and operation of wireless communications in support of healthcare networks. While the main advantages of wireless communications remain to provide ubiquitous

Minimum Security Requirements for Federal Information and Information Systems: Federal Information Processing Standard (FIPS) 200 Approved by the Secretary of Commerce

March 24, 2006

Author(s)

Shirley M. Radack

This bulletin provides information on the applicability and implementation of FIPS 200, Minimum Security Requirements for Federal Information and Information Systems. It advises Federal agencies of the requirements under the Federal Information Security

Interfaces For Personal Identity Verification, 2006 Edition

March 15, 2006

Author(s)

James F. Dray Jr., Scott Guthery, Teresa T. Schwarzhoff

[Superseded by SP 800-73-2 (September 2008): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=901358] This document specifies the PIV data model, Application Programming Interface (API), and card interface requirements necessary to comply with

Collisions and Near-Collisions for Reduced-Round Tiger

March 1, 2006

Author(s)

John M. Kelsey, Stefan Lucks

We describe a collision-finding attack on 16 rounds of the Tiger hash function requiring the time for about 244 compression function invocations. This extends to a collision-finding attack on 17 rounds of the Tiger hash function in time of about 249

Fingerprint Identification and Mobile Handheld Devices: An Overview and Implementation

March 1, 2006

Author(s)

Wayne Jansen, Ronan Daniellou, Nicolas Cilleros

The use of mobile handheld devices within the workplace is expanding rapidly. These devices are no longer viewed as coveted gadgets for early technology adopters, but have instead become indispensable tools that offer competitive business advantages for

Minimum Security Requirements for Federal Information and Information Systems

March 1, 2006

Author(s)

National Institute of Standards and Technology (NIST), Ronald S. Ross, Stuart W. Katzke, L A. Johnson

FIPS 200 is the second standard that was specified by the Federal Information Security Management Act (FISMA). It is an integral part of the risk management framework that the National Institute of Standards and Technology (NIST) has developed to assist

Was this page helpful?