Search Publications

Displaying 126 - 150 of 4383

Greek Translation of the Framework for Improving Critical Infrastructure Cybersecurity

August 11, 2023

Author(s)

Kevin Stine

An Infrastructure for Curating, Querying, and Augmenting Document Data: COVID-19 Case Study

August 8, 2023

Author(s)

Eswaran Subrahmanian, Guillaume Sousa Amaral, Talapady N. Bhat, Mary C. Brady, Kevin G. Brady, Jacob Collard, Sarra Chouder, Philippe Dessauw, Alden A. Dima, John T. Elliott, Walid Keyrouz, Nicolas Lelouche, Benjamin Long, Rachael Sexton, Ram D. Sriram

With the advent of the COVID-19 pandemic, there was the hope that data science approaches could help discover means for understanding, mitigating, and treating the disease. This manifested itself in the creation of the COVID-19 Open Research Dataset (CORD

How to Scale a Phish: An Investigation into the Use of the NIST Phish Scale

August 7, 2023

Author(s)

Shanee Dawkins, Jody Jacobs

Organizations around the world are using the NIST Phish Scale (NPS) in their phishing awareness training programs. As a new metric for measuring human phish-ing detection difficulty of phishing emails, the use of the NPS by phishing training implementers

Peering into the Phish Bowl: An Analysis of Real-World Phishing Cues

August 7, 2023

Author(s)

Lorenzo Neil, Shanee Dawkins, Jody Jacobs, Julia Sharp

Organizations use simulated phishing awareness train-ing exercises to help users identify, detect, and defend against the ever-changing phishing threat landscape. Realistic phishing emails are used to test users' ability to spot a phish from visible cues

Youth understandings of online privacy and security: A dyadic study of children and their parents

August 7, 2023

Author(s)

Olivia Williams, Yee-Yin Choong, Kerrianne Buchanan

With youth increasingly accessing and using the internet, it is important to understand what they know about online privacy and security (OPS), and from where they gain this knowledge in order to best support their learning and online practices. Currently

Critical Software Security Weaknesses

August 1, 2023

Author(s)

Assane Gueye, Carlos Eduardo Cardoso Galhardo, Irena Bojanova

In this work, we append our historical study on the most significant software security weaknesses, re-evaluate our findings, and look closely at the Injection and Memory Corruption/Disclosure weaknesses through the NIST Bugs Framework (BF) lenses. Our goal

CMVP Approved Security Functions

July 25, 2023

Author(s)

Alexander Calis

The approved security functions listed in this publication replace the ones listed in International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 19790 Annex C and ISO/IEC 24759 6.15, within the context of the

CMVP Approved Sensitive Security Parameter Generation and Establishment Methods

July 25, 2023

Author(s)

Alexander Calis

The approved sensitive security parameter generation and establishment methods listed in this publication replace the ones listed in International Organization for Standardization/International Electrotechnical Commission (ISO/IEC) 19790 Annex D and ISO

Introduction to Cybersecurity for Commercial Satellite Operations

July 25, 2023

Author(s)

Matthew Scholl, Theresa Suloway

Space is a newly emerging commercial critical infrastructure sector that is no longer the domain of only national government authorities. Space is an inherently risky environment in which to operate, so cybersecurity risks involving commercial space –

Enabling FAIR Data in Additive Manufacturing to Accelerate Industrialization

July 24, 2023

Author(s)

Shengyen Li, Yan Lu, Kareem Aggour, Peter Coutts, Brennan Harris, Alex Kitt, Afina Lupulescu, Luke Mohr, Mike Vasquez

Additive manufacturing (AM) is an important enabler of Industry 4.0 but there are several hurdles that need to be overcome to fully realize the potential of AM. These challenges include the need for a data infrastructure to enable the scaling of the

'They're not risky' vs 'It can ruin your whole life': How youth/parent dyads differ in their understandings of online risk

July 23, 2023

Author(s)

Olivia Williams, Kerrianne Buchanan, Yee-Yin Choong

Encountering and/or engaging in risky online behavior is an inherent aspect of being an online user. In particular, youth are vulnerable to such risky be-havior, making it important to know how they understand and think about this risk-taking behavior

Parents, passwords, and parenting: How parents think about passwords and are involved in their children's password practices

July 23, 2023

Author(s)

Yee-Yin Choong, Kerrianne Buchanan, Olivia Williams

Though much is known about how adults understand and use passwords, little research attention has been paid specifically to parents or, more importantly, to how parents influence their children's password practices. To better understand both the password

Automated Secure Configuration Guidance from the macOS Security Compliance Project (mSCP)

July 20, 2023

Author(s)

Mark Trapnell, Eric Trapnell, Murugiah Souppaya, Karen Scarfone, Bob Gendler

The macOS Security Compliance Project (mSCP) provides resources that system administrators, security professionals, security policy authors, information security officers, and auditors can leverage to secure and assess macOS desktop and laptop system

Jim, Our Mentor: Inspiring Our Data-driven Sensitivity Analysis for Real-world Problems and Our Lives

July 20, 2023

Author(s)

Yooyoung Lee, Peter Fontana

Jim Filliben has inspired many scientists in a variety of domains across the National Institute of Standard and Technology (NIST) with his statistical data analysis. In our talk we will highlight the impact of his insights and methodologies on our projects