Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Publications

Search Title, Abstract, Conference, Citation, Keyword or Author

Published date

And

Title

Author

NIST Pub Series

NIST Topic Areas

Report Number

NIST Authors in Bold

Displaying 1 - 25 of 1190

Workshop Summary Report for "Building the Federal Profile for IoT Device Cybersecurity" Virtual Workshop

January 7, 2021

Author(s)

Katerina N. Megas, Michael J. Fagan, David Lemire

This report summarizes the feedback received on the work of the NIST Cybersecurity for IoT program on device cybersecurity at a virtual workshop in July 2020

Securing Picture Archiving and Communication System (PACS) Cybersecurity for the Healthcare Sector

December 21, 2020

Author(s)

Jennifer L. Cawthra, Sue S. Wang, Bronwyn J. Hodges, Kangmin Zheng, Ryan T. Williams, Jason J. Kuruvilla, Christopher L. Peloquin, Kevin Littlefield, Bob Neimeyer

Medical imaging plays an important role in diagnosing and treating patients. The system that manages medical images is known as the picture archiving

Control Baselines for Information Systems and Organizations

December 11, 2020

Author(s)

Ronald S. Ross, Victoria Y. Pillitteri

This publication provides security and privacy control baselines for the Federal Government. There are three security control baselines (one for each system

Security and Privacy Controls for Information Systems and Organizations

December 10, 2020

Author(s)

Ronald S. Ross, Victoria Y. Pillitteri

This publication provides a catalog of security and privacy controls for information systems and organizations to protect organizational operations and assets

Data Integrity: Detecting and Responding to Ransomware and Other Destructive Events

December 8, 2020

Author(s)

Jennifer L. Cawthra, Michael R. Ekstrom, Lauren N. Lusty, Julian T. Sexton, John E. Sweetnam

Ransomware, destructive malware, insider threats, and even honest mistakes present an ongoing threat to organizations that manage data in various forms

Data Integrity: Identifying and Protecting Assets Against Ransomware and Other Destructive Events

December 8, 2020

Author(s)

Jennifer L. Cawthra, Michael R. Ekstrom, Lauren N. Lusty, Julian T. Sexton, John E. Sweetnam, Anne R. Townsend

Ransomware, destructive malware, insider threats, and even honest user mistakes present ongoing threats to organizations. Organizations' data, such as database

Smart Home Consumers Privacy and Security Perceptions & Practices

December 8, 2020

Author(s)

Julie M. Haney, Susanne M. Furman, Yasemine Acar

Smart home technologies may expose adopters to increased risk to network security, information privacy, and physical safety. However, consumers may lack

Measurements of the Most Significant Software Security Weaknesses

December 7, 2020

Author(s)

Carlos E. Cardoso Galhardo, Peter M. Mell, Irena V. Bojanova, Assane Gueye

In this work, we provide a metric to calculate the most significant software security weaknesses as defined by an aggregate metric of the frequency

An Approach for Detection of Advanced Persistent Threat Attacks

December 1, 2020

Author(s)

Qingtian Zou, Xiaoyan Sun, Peng Liu, Anoop Singhal

Advanced Persistent Threat (APT) campaigns employ sophisticated strategies and tactics to achieve their attack goal. The evolution of APT strategies and tactics

Research Report: User Perceptions of Smart Home Privacy and Security

November 17, 2020

Author(s)

Julie M. Haney, Susanne M. Furman, Yasemin Acar

Smart home technologies may expose adopters to increased risk to network security, information privacy, and physical safety. However, users may lack

Workforce Framework for Cybersecurity (NICE Framework)

November 16, 2020

Author(s)

Rodney J. Petersen, Danielle R. Santos, Karen A. Wetzel, Matthew Smith, Gregory A. Witte

This publication from the National Initiative for Cybersecurity Education (NICE) describes the Workforce Framework for Cybersecurity (NICE Framework), a

Control Baselines for Information Systems and Organizations

October 29, 2020

Author(s)

Ronald S. Ross, Victoria Y. Pillitteri

This publication provides security and privacy control baselines for the Federal Government. There are three security control baselines (one for each system

An Empirical Study on Flow-based Botnet Attacks Prediction

October 22, 2020

Author(s)

Mitsuhiro Hatada, Matthew A. Scholl

In the era of the Internet of Things, botnet threats are rising, which has prompted many studies on botnet detection and measurement. In contrast, this study

The New NIST Phish Scale, Revealing Why End Users Click

October 22, 2020

Author(s)

Shanee T. Dawkins, Kristen Greene, Jody L. Jacobs

Developed based on over 4 years of NIST phishing training data, the NIST Phish Scale is a DIY method for rating human phishing detection difficulty key to

Cybersecurity Framework Version 1.1 Manufacturing Profile

October 7, 2020

Author(s)

Keith A. Stouffer, Timothy A. Zimmerman, CheeYee Tang, Michael J. Pease, Jeffrey A. Cichonski, John McCarthy

This document provides the Cybersecurity Framework (CSF) Version 1.1 implementation details developed for the manufacturing environment. The "Manufacturing

Formal Verification of Bootstrapping Remote Secure Key Infrastructures (BRSKI) Protocol Using AVISPA

October 7, 2020

Author(s)

Monika Singh, Mudumbai Ranganathan

The last decade has seen significant growth in the number of IoT devices. These devices can connect to each other and networks. The process through which a new

Security Awareness Training for the Workforce: Moving Beyond "Check-the-box" Compliance

October 1, 2020

Author(s)

Julie M. Haney, Wayne Lutters

Security awareness training requirements set a minimum baseline for introducing security practices to an organization's workforce. But is simple compliance

It's the Company, the Government, You and I: User Perceptions of Responsibility for Smart Home Privacy and Security

September 25, 2020

Author(s)

Julie M. Haney, Yasemin Acar, Susanne M. Furman

Smart home technology exposes adopters to increased risk to network security, information privacy, and physical safety. However, users may lack understanding of

Security and Privacy Controls for Information Systems and Organizations

September 23, 2020

Author(s)

Ronald S. Ross

This publication provides a catalog of security and privacy controls for information systems and organizations to protect organizational operations and assets

Data Integrity Recovering from Ransomware and Other Destructive Events

September 22, 2020

Author(s)

Anne R. Townsend, Timothy J. McBride, Lauren N. Lusty, Julian T. Sexton, Michael R. Ekstrom

Businesses face a near-constant threat of destructive malware, ransomware, malicious insider activities, and even honest mistakes that can alter or destroy

Towards Usable Updates for Smart Home Devices

September 17, 2020

Author(s)

Julie M. Haney, Susanne M. Furman

Smart home device updates are important tools for users to remediate security vulnerabilities and protect devices from future attacks. However, no prior

Mobile Device Security: Corporate-Owned Personally-Enabled (COPE)

September 15, 2020

Author(s)

Gema E. Howell, Kaitlin R. Boeckl, Naomi B. Lefkovitz, Ellen M. Nadeau, Joshua M. Franklin, Behnam Shariati, Jason Ajmo, Christopher J. Brown, Spike E. Dog, Frank Javar, Michael Peck, Kenneth F. Sandlin

Mobile devices provide access to vital workplace resources while giving employees the flexibility to perform their daily activities. Securing these devices is

2019 NIST/ITL Cybersecurity Program Annual Report

August 24, 2020

Author(s)

Patrick D. O'Reilly, Kristina G. Rigopoulos, Larry Feldman, Gregory A. Witte

During Fiscal Year 2019 (FY 2019), from October 1, 2018 through September 30, 2019, the NIST Information Technology Laboratory (ITL) Cybersecurity and Privacy

On Data Integrity Attacks against Industrial Internet of Things

August 24, 2020

Author(s)

Hansong Xu, Wei Yu, Xing Liu, David W. Griffith, Nada T. Golmie

Industrial Internet of Things (IIoT) is predicted to drive the fourth industrial revolution through massive interconnection of industrial devices, such as

ARES: Automated Risk Estimation in Smart Sensor Environments

August 17, 2020

Author(s)

Athanasios Dimitriadis, Jose L. Flores, Boonserm Kulvatunyou, Nenad Ivezic, Ioannis Mavridis

Industry 4.0 adoption demands integrability, interoperability, composability, and security. Currently, integrability, interoperability and composability are

Advanced communications
-Optical communications
-Quantum communications
-Wireless (RF)
Bioscience
-Biomaterials
-Biomolecular characterization
-Bioprocessing
-Cell biology
-Engineering / synthetic biology
-Genomics
-Glycomics
-Metabolomics
-Microbial measurements
-Proteomics
Buildings and Construction
-Building codes and standards
-Building control systems
-Building damage and repair
-Building economics
-Building materials
-Heating, ventilation and air conditioning equipment
-Indoor air quality
-Resilient buildings
-Structural engineering
-Sustainable buildings
Chemistry
-Analytical chemistry
-Chemical engineering and processing
-Chemical thermodynamics and chemical properties
-Molecular characterization
-Theoretical chemistry and modeling
-Thermochemical properties
Electronics
-Electromagnetics
-Flexible electronics
-Magnetoelectronics
-Optoelectronics
-Organic electronics
-Semiconductors
-Sensors
-Superconducting electronics
Energy
-Alternative energy
-Conventional energy
-Electric power / smart grid
-Energy efficiency
-Fuels
-Sustainability
Environment
-Air / water / soil quality
-Environmental health
-Greenhouse gas measurements
-Marine science
Fire
-Emergency building evacuation
-Fire detection
-Fire dynamics and science
-Fire fighting
-Fire modeling
-Fire risk reduction
-Materials flammability
-Structural fire resistance
-Wildland urban interface fire
Forensic Science
-Ballistics
-Digital evidence
-DNA and biological evidence
-Drugs and toxicology
-Fingerprints and pattern evidence
-Trace evidence
Health
-Clinical diagnostics
-Dentistry
-Food and nutrition
-Medical imaging
-Pharmaceuticals
-Precision medicine
-Regenerative medicine
Information technology
-Artificial intelligence
-Biometrics
-Cloud computing and virtualization
-Complex systems
-Computational science
-Conformance testing
-Cyber-physical systems
--Smart cities
-Cybersecurity
--Configuration and vulnerability management
--Cryptography
--Cybersecurity education and workforce development
--Risk management
-Data and informatics
--Human language technology
--Information retrieval
--Natural language processing
-Data enry
-Federal information standards (FIPS)
-Health IT
-Identity and access management
-Internet of Things (IoT)
-Interoperability testing
-Mobile
-Networking
--Mobile and wireless networking
--Network management and monitoring
--Network modeling and analysis
--Network security and robustness
--Network test and measurement
--Next generation networks
--Protocol design and standardization
--Software defined and virtual networks
-Privacy
-Software research
--Software assurance
--Software performance
--Software testing
-Usability and human factors
--Accessibility
-Video analytics
-Visualization research
-Voting systems
Infrastructure
Manufacturing
-Additive manufacturing
-Biomanufacturing
-Factory communications
-Factory operations planning and control
-Interoperability in manufacturing
-Machining
-Manufacturing systems design and analysis
-Monitoring, diagnostics and prognostics
-Process improvement
-Process measurement and control
-Product data
-Quality assurance
-Robotics in manufacturing
--Agility and adaptability
--Collaborative robots
--Dexterous grasping
--Industrial autonomous vehicles
--Mobile manipulators
--Navigation / actuation / control
--Sensing and perception
-Supply chain
-Sustainable manufacturing
-Systems engineering
-Systems integration
-Technology commercialization
Materials
-Ceramics
-Composites
-Concrete / cement
-Materials characterization
--Composition and structure
--Magnetic properties
--Mechanical properties
--Thermal properties
-Metals
-Modeling and computational material science
-Polymers
-Superconductors
Mathematics and Statistics
-Experiment design
-Image and signal processing
-Mathematical knowledge management
-Modeling and simulation research
-Numerical methods and software
-Statistical analysis
-Uncertainty quantification
Metrology
-Acoustic / vibration metrology
-Amount of substance
-Dimensional metrology
-Electrical / electromagnetic metrology
-Flow metrology and rheology
-Force metrology
-Humidity metrology
-Ionizing radiation metrology
-Mass metrology
-Metric
-Optical / photometry / laser metrology
-Pressure and vacuum metrology
-Thermometry metrology
-Time and frequency metrology
-Weights and measures
Nanotechnology
-Nanobiotechnology
-Nanochemistry
-Nanoelectronics
-Nanofabrication / manufacturing
--Lithography
--Self-assembly
-Nanofluidics
-Nanomagnetics
-Nanomaterials
-Nanomechanics
-Nanometrology
-Nanophotonics
-Nanophysics
-Nanoplasmonics
Neutron research
Performance excellence
-Assessment tools and services
-Baldrige award
-Baldrige examiners
-Baldrige Framework and Criteria
-Best practices
-Leadership development
Physics
-Atomic / molecular / quantum
-Biological physics
-Condensed matter
-Electron physics
-Magnetics
-Nuclear physics
-Optical physics
-Quantum information science
-Radiation
-Spectroscopy
-Thermodynamics
-Time and frequency
Public safety
-Chemical / Biological / Radiological / Nuclear / Explosives (CBRNE)
-First responder preparedness
-Law enforcement
-Physical security
-Public safety communications research
-Response robots
--Aerial
--Aquatic and underwater
--Ground
Resilience
-Community resilience
-Disaster and failure studies
-Earthquake risk reduction
-Resilient materials
-Windstorm impact reduction
Standards
-Accreditation
-Calibration services
-Conformity assessment
-Documentary standards
-Frameworks
-Reference data
-Reference instruments
-Reference materials
-Standards education
Transportation
-Aerospace
-Automotive
-Rail