NOTICE: Due to a lapse in annual appropriations, most of this website is not being updated. Learn more.

Form submissions will still be accepted but will not receive responses at this time. Sections of this site for programs using non-appropriated funds (such as NVLAP) or those that are excepted from the shutdown (such as CHIPS and NVD) will continue to be updated.

U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

Secure Software Development Practices for Generative AI and Dual-Use Foundation Models: An SSDF Community Profile

Published

Author(s)

Harold Booth, Murugiah Souppaya, Apostol Vassilev, Michael Ogata, Martin Stanley, Karen Scarfone

Abstract

This document augments the secure software development practices and tasks defined in Secure Software Development Framework (SSDF) version 1.1 by adding practices, tasks, recommendations, considerations, notes, and informative references that are specific to AI model development throughout the software development life cycle. These additions are documented in the form of an SSDF Community Profile to support Executive Order (EO) 14110, Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence, which tasked NIST with "developing a companion resource to the [SSDF] to incorporate secure development practices for generative AI and for dual-use foundation models." This Community Profile is intended to be useful to the producers of AI models, the producers of AI systems that use those models, and the acquirers of those AI systems. This Profile should be used in conjunction with NIST Special Publication (SP) 800-218, Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities.
Citation
Special Publication (NIST SP) - 800-218A
Report Number
800-218A
NIST Pub Series
Special Publication (NIST SP)
Pub Type
NIST Pubs

Download Paper

https://doi.org/10.6028/NIST.SP.800-218A
Local Download

Keywords

artificial intelligence, artificial intelligence model, cybersecurity risk management, generative artificial intelligence, secure software development, Secure Software Development Framework (SSDF), software acquisition, software development, software security.
Trustworthy and responsible AI, Securing emerging technologies, Risk management, Cybersecurity and privacy, Artificial intelligence, Applied AI and AI measurement and evaluation

Citation

Booth, H. , Souppaya, M. , Vassilev, A. , Ogata, M. , Stanley, M. and Scarfone, K. (2024), Secure Software Development Practices for Generative AI and Dual-Use Foundation Models: An SSDF Community Profile, Special Publication (NIST SP), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.SP.800-218A, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=958391 (Accessed October 20, 2025)

Issues

If you have any questions about this publication or are having problems accessing it, please contact [email protected].

Created July 26, 2024
Was this page helpful?