Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Information Technology

Cybersecurity

Search Publications

Search Title, Abstract, Conference, Citation, Keyword or Author

Title

Author

NIST Pub Series

Report Number

Published Date

Min

Max

Displaying 126 - 150 of 2840

Cybersecurity Framework Profile for Liquefied Natural Gas

June 8, 2023

Author(s)

Bill Newhouse, Josephine Long, David Weitzel, Jason Warren, Michael Thompson, Chris Yates, Hillary Tran, Alicia Mink, Aurora Herriott, Tom Cottle

This document is the Cybersecurity Framework Profile developed for the Liquefied Natural Gas (LNG) industry and the subsidiary functions that support the overarching liquefaction process, transport, and distribution of LNG. The LNG Cybersecurity Framework

2022 Cybersecurity & Privacy Annual Report

May 30, 2023

Author(s)

Patrick D. O'Reilly, Kristina Rigopoulos, Larry Feldman, Greg Witte

During Fiscal Year 2022 (FY 2022) – from October 1, 2021, through September 30, 2022 –the NIST Information Technology Laboratory (ITL) Cybersecurity and Privacy Program successfully responded to numerous challenges and opportunities in security and privacy

User Perceptions and Experiences with Smart Home Updates

May 22, 2023

Author(s)

Julie Haney, Susanne M. Furman

Updates may be one of the few tools consumers have to mitigate security and privacy vulnerabilities in smart home devices. However, little research has been undertaken to understand users' perceptions and experiences with smart home updates. To address

Guidelines for Managing the Security of Mobile Devices in the Enterprise

May 17, 2023

Author(s)

Murugiah Souppaya, Gema Howell, Karen Scarfone, Joshua Franklin, Vincent Sritapan

Mobile devices were initially personal consumer communication devices, but they are now permanent fixtures in enterprises and are used to access modern networks and systems to process sensitive data. This publication assists organizations in managing and

Phishing With a Net: The NIST Phish Scale and Cybersecurity Awareness

April 25, 2023

Author(s)

Shanee Dawkins, Jody Jacobs

Orienting an entire organization toward sound security practices is an important, but non-trivial undertaking. A starting point for many organizations is to build a robust security awareness program, training employees to recognize and respond to security

To Everything There Is a Session: A Time to Listen, a Time to Read Multi-session CDs

April 21, 2023

Author(s)

Dianne Dietrich, Alexander Nelson

When the cost of CD burners dropped precipitously in the late 1990s, consumers had access to the CD-R, a format with far greater storage capacity than floppy disks. Multiple session standards allowed users the flexibility to add subsequent content to an

Users Are Not Stupid: Six Cyber Security Pitfalls Overturned

March 16, 2023

Author(s)

Julie Haney

The skilled and dedicated professionals who strive to improve cyber security may unwittingly fall victim to misconceptions and pitfalls that hold customers and users back from reaching their full potential of being active partners in security. These

Getting Started with the NIST Cybersecurity Framework: A Quick Start Guide (Ukrainian Translation)

March 14, 2023

Author(s)

Amy Mahn, Jeffrey Marron, Stephen Quinn, Daniel Topper

Empirical Validation of Automated Vulnerability Curation and Characterization

February 23, 2023

Author(s)

Ahmet Okutan, Peter Mell, Medhi Mirakhorli, Igor Khokhlov, Joanna Santos, Danielle Gonzalez, Steven Simmons

Prior research has shown that public vulnerability systems such as US National Vulnerability Database (NVD) rely on a manual, time-consuming, and error-prone process which has led to inconsistencies and delays in releasing final vulnerability results. This

Digital Twin-Based Cyber-Attack Detection Framework for Cyber-Physical Manufacturing Systems

February 23, 2023

Author(s)

Efe Balta, Michael Pease, James Moyne, Kira Barton, Dawn Tilbury

Smart manufacturing (SM) systems utilize run-time data to improve productivity via intelligent decision-making and analysis mechanisms on both machine and system levels. The increased adoption of cyber-physical systems in SM leads to the comprehensive

Bug, Fault, Error, or Weakness: Demystifying Software Security Vulnerabilities

February 1, 2023

Author(s)

Irena Bojanova, Carlos Eduardo Cardoso Galhardo

In this work, we define the notions of software bug, weakness, and vulnerability in the context of cybersecurity and elucidate their causal relations.

They're phishing for you: be the one that got away

February 1, 2023

Author(s)

Michael Galler

Cybersecurity has been a topic of increasing importance to the building services community for several years. While fully securing large and complex building systems can be complicated, some basic precautions can easily be applied to any system, and some

Handout: Users Are Not Stupid: 6 Cybersecurity Pitfalls Overturned

January 30, 2023

Author(s)

Julie Haney, Susanne M. Furman

The cybersecurity community tends to focus and depend on technology to solve today's cybersecurity problems, often without taking into consideration the human element - the key individual and social factors impacting cybersecurity adoption. This handout