Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Publications

Search Title, Abstract, Conference, Citation, Keyword or Author

Title

Author

NIST Pub Series

NIST Topic Areas

Report Number

Publication Date

Max Publication Date

NIST Authors in Bold

Displaying 1326 - 1350 of 1521

Security Guide for Interconnecting Information Technology Systems

September 1, 2002

Author(s)

Timothy Grance, Joan Hash, Steven Peck, Jonathan Smith, Karen Korow-Diks

The Security Guide for Interconnecting Information Technology Systems provides guidance for planning, establishing, maintaining, & terminating interconnections between information technology (IT) systems that are owned & operated by different organizations

Use of the Common Vulnerabilities and Exposures (CVE) Vulnerability Naming Scheme

September 1, 2002

Author(s)

Peter M. Mell, Timothy Grance

[Superseded by SP 800-51 Rev. 1 (February 2011): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=907934] The Common Vulnerabilities and Exposures (CVE) vulnerability naming scheme is a dictionary of common names for publicly known information

Procedures for Handling Security Patches

August 1, 2002

Author(s)

Peter M. Mell, Miles C. Tracy

[Superseded by SP 800-40 Version 2.0 (November 2005): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=150402] Timely patching is critical to maintain the operational availability, confidentiality, and integrity of IT systems. However, failure

Secure Hash Standard (SHS) [includes Change Notice from 2/25/2004]

August 1, 2002

Author(s)

National Institute of Standards and Technology (NIST), Elaine Barker

[Superseded by FIPS 180-3 (October 2008): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=901372] This standard specifies four secure hash algorithms, SHA-1, SHA-256, SHA-384, and SHA-512. All four of the algorithms are iterative, one-way hash

Security for Telecommuting and Broadband Communications

August 1, 2002

Author(s)

D. Richard Kuhn, Miles C. Tracy, Sheila E. Frankel

[Superseded by SP 800-46 Rev. 1 (June 2009): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=902685] This document introduces broadband communication technologies, and the security considerations associated with them. It discusses the use of a

Setup and Test Procedures dd (GNU Fileutils) 4.0.36 Forensic Tests

August 1, 2002

Author(s)

James R. Lyle

This document describes the testing of dd (GNU fileutils) 4.0.36 as a disk imaging tool on a Linux platform. The Linux version used was Linux version 2.4.2-2 (Red Hat Linux 7.1 2.96-79). The test cases that were applied are described in Disk Imaging Tool

Overview: The Government Smart Card Interoperability Specification

July 1, 2002

Author(s)

James F. Dray Jr., Teresa T. Schwarzhoff

This ITL Bulletin summarizes the Government Smart Card Interoperability Specification, which provides solutions to a number of the interoperability problems associated with smart card technology.

Risk Management Guide for Information Technology Systems

July 1, 2002

Author(s)

G Stoneburner, Alice Y. Goguen, Alexis Feringa

[Superseded by SP 800-30 Revision 1 (September 2012): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=912091] Risk Management is the process of identifying risk, assessing risk, and taking steps to reduce risk to an acceptable level

Contingency Planning Guide for Information Technology Systems

June 13, 2002

Author(s)

Marianne M. Swanson, A Wohl, L Pope, Timothy Grance, Joan Hash, R Thomas

[Superseded by SP 800-34 Revision 1 (May 2010): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=905266] The Contingency Planning Guide for Information Technology (IT) Systems provides instructions, recommendations, and considerations for

Contingency Planning Guide for Information Technology Systems

June 1, 2002

Author(s)

Elizabeth B. Lennon

This ITL Bulletin summarizes NIST SP 800-34, Contingency Planning Guide for Information Technology Systems. It describes the process of developing contingency plans, procedures, and technical measures that can enable a system to be recovered quickly and

Techniques for System and Data Recovery

April 1, 2002

Author(s)

William E. Burr, Joan Hash

The key asset in Federal agencies today is the information and data used to implement, sustain and maintain critical government programs and operations. Current efforts in ensuring that the United States can recover and restore activities which have great

The Keyed-Hash Message Authentication Code (HMAC)

March 6, 2002

Author(s)

National Institute of Standards and Technology (NIST), Elaine Barker, Quynh Dang

[Superseded by FIPS 198-1(July 2008): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=901614] This standard describes a keyed-hash message authentication code (HMAC), a mechanism for message authentication using cryptographic hash functions

Planning Report 02-1: The Economic Impact of Role-Based Access Control

March 1, 2002

Author(s)

Michael P. Gallaher, Alan C. O'Connor, Brian Kropp, Gregory C. Tassey

The National Institute of Standards and Technology (NIST) began working on RBAC in the early 1990s after a study of federal agency security needs identified the need to develop a better method for managing large networked systems and complex access issues

Risk Management Guidance for Information Technology Systems

February 26, 2002

Author(s)

Joan Hash

Risk Management is the process of identifying risk, assessing risk, and taking steps to reduce risk to an acceptable level. Organizations use risk assessment, the first step in the risk management methodology, to determine the extent of the potential

Guidelines on Firewalls and Firewall Policy

January 1, 2002

Author(s)

John P. Wack, Ken Cutler, Jamie Pole

[Superseded by SP 800-41 Rev. 1 (September 2009): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=901083] This document provides introductory information about firewalls and firewall policy. It addresses concepts relating to the design

Failure Modes in Medical Device Software: an Analysis of 15 Years of Recall Data

December 5, 2001

Author(s)

Dolores R. Wallace, D. Richard Kuhn

Most complex systems today contain software, and systems failures activated by software faults can provide lessons for software development practices and software quality assurance. This paper presents an analysis of software-related failures of medical

Recommendation for Block Cipher Modes of Operation Methods and Techniques

December 1, 2001

Author(s)

Morris J. Dworkin

This recommendation defines five confidentiality modes of operation for use with an underlying symmetric key block cipher algorithm: Electronic Codebook (ECB), Cipher Block Chaining (CBC), Cipher Feedback (CFB), Output Feedback (OFB), and Counter (CTR)

Underlying Technical Models for Information Technology Security

December 1, 2001

Author(s)

G Stoneburner

Underlying Technical Models for Information Technology Security provides a description of the technical foundations, termed models, that underlie secure information technology (IT). The intent is to provide, in a concise form, the models that should be

Intrusion Detection Systems

November 1, 2001

Author(s)

Rebecca Bace, Peter Mell

[Superseded by NIST SP 800-94, Guide to Intrusion Detection and Prevention Systems (IDPS), http://www.nist.gov/manuscript-publication-search.cfm?pub_id=50951] Intrusion detection systems (IDSs) are software or hardware systems that automate the process of

Security Self-Assessment Guide for Information Technology Systems

November 1, 2001

Author(s)

Marianne M. Swanson

[Withdrawn December 19, 2007; Superseded by SP 800-53 (Feb. 2005), http://www.nist.gov/manuscript-publication-search.cfm?pub_id=918658, and SP 800-53A (July 2008), http://www.nist.gov/manuscript-publication-search.cfm?pub_id=51209] Self-assessments provide

Guidelines on Active Content and Mobile Code

October 17, 2001

Author(s)

Wayne Jansen

[Superseded by SP 800-28 Version 2 (March 2008): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=152039] Active content technologies allow code, in the form of a script, macro, or other kind of portable instruction representation, to execute

Planning Report 01-2: The Economic Impacts of NIST's Data Encryption Standard (DES) Program

October 1, 2001

Author(s)

David Leech, Michael Chinworth

[Prepared by TASC, Inc. for NIST] This report examines the evolution and economic significance of NISTs Data Encryption Standard (DES) Program. DES was developed by the National Institute of Standards and Technology (NIST, formerly the National Bureau of

Report on the Second Modes of Operation Workshop

October 1, 2001

Author(s)

Morris J. Dworkin

NIST sponsored a public workshop for the analysis of block cipher modes of operation on August 24, 2001, in Goleta, California. This report summarizes the presentations and discussions at that workshop.

Security Self-Assessment Guide for Information Technology Systems

September 5, 2001

Author(s)

Marianne M. Swanson, Elizabeth B. Lennon

This ITL Bulletin summarizes Special Publication (SP) 800-26, Security Self-Assessment Guide for Information Technology Systems. Adequate security of information and the systems that process it is a fundamental management responsibility. Agency officials

The Policy Machine for Security Policy Management

July 17, 2001

Author(s)

Chung Tong Hu, Deborah A. Frincke, David F. Ferraiolo

Many different access controls policies and models have been developed to suit a variety of goals: these include Role-Based Access Control, One-directional Information Flow, Chinese Wall, Clark-Wilson, N-person Control, and DAC, in addition to more

Was this page helpful?

Advanced communications
-Open Radio Access Network (Open-RAN)
-Quantum communications
-Spectrum sharing
-Wireless (RF)
Artificial intelligence
-AI measurement and evaluation
-Autonomous systems
--Automated vehicles
--Autonomous laboratories
-Applied AI
-Fundamental AI
-Hardware for AI
-Machine learning
-Trustworthy and responsible AI
Bioscience
-Bioeconomy
--Biological data
-Bioimaging
-Bioinformatics
-Biomanufacturing
-Biomaterials
-Biometrology
-Biosecurity
--Biosurveillance
--Genomic cybersecurity
--Nucleic acid sequence screening
-Cell measurements
-Engineering / synthetic biology
--Biofabrication
--Cell-free systems
--Genome engineering
--Protein engineering
-Gene delivery systems
-Genome editing
-Genomics
-Glycomics
-Metabolomics
-Microbial measurements
-Proteomics
Buildings and Construction
-Building codes and standards
-Building control systems
-Building damage and repair
-Building economics
-Building materials
-Energy efficiency
-Heating, ventilation and air conditioning equipment
-Indoor air quality
-Structural engineering
-Thermal comfort
Chemistry
-Analytical chemistry
-Chemical engineering and processing
-Chemical thermodynamics and chemical properties
-Molecular characterization
-Theoretical chemistry and modeling
-Thermochemical properties
Electronics
-Electromagnetics
-Flexible electronics
-Magnetoelectronics
-Optoelectronics
-Organic electronics
-Semiconductors
-Sensors
-Superconducting electronics
Energy
-Alternative energy
-Conventional energy
-Electric power / smart grid
-Fuels
Environment
-Air / water / soil quality
-Climate Measurements
-Environmental health
-Greenhouse gas measurements
-Marine science
-Sustainability
Fire
-Fire detection
-Fire dynamics and science
-Fire fighting
-Fire modeling
-Fire risk reduction
-Materials flammability
-Structural fire resistance
-Wildland urban interface fire
Forensic Science
-Digital evidence
-Drugs and toxicology
-Firearms and toolmarks
-Forensic biometrics
-Forensic genetics
-Trace evidence
Health
-Biopharmaceuticals
-Cell and gene therapy
-Clinical diagnostics
--Cancer
--Medical imaging
-Food and nutrition
-Human microbiome
-Precision medicine
-Regenerative medicine and advanced therapy
--Flow cytometry
Information technology
-Biometrics
-Cloud computing and virtualization
-Complex systems
-Computational science
-Conformance testing
-Cyber-physical systems
--Smart cities
-Cybersecurity and privacy
--Cryptography
--Cybersecurity education and workforce development
--Cybersecurity measurement
--Identity and access management
--Privacy engineering
--Risk management
--Securing emerging technologies
--Trustworthy networks
--Trustworthy platforms
-Data and informatics
--Human language technology
--Information retrieval
--Natural language processing
-Digital twins
-Federal information processing standards (FIPS)
-Health IT
-Internet of Things (IoT)
-Interoperability testing
-Location based services
-Mobile
-Networking
--Mobile and wireless networking
--Network management and monitoring
--Network modeling and analysis
--Network security and robustness
--Network test and measurement
--Next generation networks
--Protocol design and standardization
--Software defined and virtual networks
-Software research
--Software testing
-Usability and human factors
--Accessibility
-Video analytics
-Virtual / augmented reality
-Visualization research
-Voting systems
Infrastructure
Manufacturing
-Additive manufacturing
-Factory communications
-Factory operations planning and control
-Interoperability in manufacturing
-Machining
-Manufacturing economics
-Manufacturing quality assurance
-Manufacturing systems design and analysis
-Monitoring, diagnostics and prognostics
-Process improvement
-Process measurement and control
-Product data
-Robotics
--Agility and adaptability
--Collaborative robots
--Dexterous grasping
--Manipulation
--Mobility and industrial autonomous vehicles
--Navigation / actuation / control
--Sensing and perception
-Supply chain
-Sustainable manufacturing
-Systems engineering
-Systems integration
-Technology commercialization
Materials
-Ceramics
-Composites
-Concrete / cement
-Materials characterization
--Composition and structure
--Mechanical properties
--Thermal properties
-Metals
-Modeling and computational material science
-Polymers
-Superconductors
Mathematics and statistics
-Experiment design
-Image and signal processing
-Modeling and simulation research
-Numerical methods and software
-Statistical analysis
-Uncertainty quantification
Metrology
-Amount of substance
-Dimensional metrology
-Electrical / electromagnetic metrology
-Flow metrology and rheology
-Force metrology
-Humidity metrology
-Ionizing radiation metrology
-Mass metrology
-Metric
-Optical / photometry / laser metrology
-Pressure and vacuum metrology
-Thermometry metrology
-Time and frequency metrology
-Weights and measures
Nanotechnology
-Nanobiotechnology
-Nanochemistry
-Nanoelectronics
-Nanofabrication / manufacturing
--Lithography
--Self-assembly
-Nanofluidics
-Nanomagnetics
-Nanomaterials
-Nanomechanics
-Nanometrology
-Nanophotonics
-Nanophysics
-Nanoplasmonics
Neutron research
Performance excellence
-Assessment tools and services
-Baldrige award
-Baldrige examiners
-Baldrige Framework and Criteria
-Best practices
-Leadership development
Physics
-Atomic / molecular / quantum
-Biological physics
-Condensed matter
-Electron physics
-Magnetics
-Nuclear physics
-Optical physics and communications
-Quantum information science
-Radiation
-Spectroscopy
-Thermodynamics
-Time and frequency
Public safety
-Chemical / Biological / Radiological / Nuclear / Explosives (CBRNE)
-First responder preparedness
-Law enforcement
-Public safety communications research
-Response robots
Resilience
-Community resilience
--Recovery
--Resilience metrics
-Disaster and failure studies
-Earthquake risk reduction
-Resilience economics
-Resilient materials
-Windstorm impact reduction
Standards
-Accreditation
-Calibration services
-Conformity assessment
-Documentary standards
-Frameworks
-Quality assurance
-Reference data
-Reference instruments
-Reference materials
-Standards education
Technology transfer
Transportation
-Aerospace
-Automotive