NIST, Computer Security Division, Computer Security Resource Center
Quick Resources
Internal Links
- 2008 CSD Annual Report
- 2007 CSD Annual Report
- Cryptographic Hash Function Algorithm Competition
- Computer Security Division Directory
- CSRC Sitemap
- Federal Computer Security Program Manager's Forum
- Federal Desktop Core Configuration (FDCC)
- Federal Information Security Management Act (FISMA) Implementation Project
- Federal Information Systems Security Educators' Association (FISSEA)
- Federal Register Notices
- Glossary of Key Information Security Terms (.pdf)
- National Vulnerability Database (NVD)
- Personal Identity Verification (PIV) of Federal Employees & Contractors
- Security Content Automation Protocol (SCAP)
- Small Business Outreach Center
External Links
groups
- Security Technology
- Systems and Network Security
- Security Management and Assistance
- Security Testing and Metrics
Publications
more publications- Draft Publications
- Federal Information Processing Standards (FIPS) Publications
- Special Publications (SPs)
- NIST Interagency Reports (IRs)
- Information Technology Laboratory (ITL) Security Bulletins
- By Topic Clusters
- By Family
- By Legal Requirements
To receive email notification(s) when new security publications are released, subscribe to the CSRC Publications Mailing List. To learn more, Click Here.
Website Survey:
NOTE: The survey has been taken off-line so it can be updated..
News
- [June 22, 2009] -- Video recordings of the Cryptographic Key Management Workshop that was held on June 8-9, 2009 are available using the “Cryptographic Key Management Workshop”
- [June 16, 2009] -- NIST is proud to announce the release of 2 publications - 1 draft (NIST IR 7502) and 1 final (Special Publication 800-46 Rev. 1). These 2 documents are.......
- [June 10, 2009] -- The mark-up copy of Draft Special Publication 800-53 Rev. 3 is NOW available. Please accept our apologies for the delay of releasing this mark-up copy.
- [June 10, 2009] --NIST announces the adoption of FIPS 186-3, The Digital Signature Standard (see the Federal Register Notice). FIPS 186-3 is a revision of FIPS 186-2. The FIPS specifies three techniques for the generation and verification of digital signatures: DSA, ECDSA and RSA. This revision increases the length of the keys allowed for DSA, provides additional requirements for the use of ECDSA and RSA, and includes requirements for obtaining assurances necessary for valid digital signatures.
- [June 3, 2009] -- NIST announces the release of the final public draft of Special Publication 800-53, Revision 3, Recommended Security Controls for Federal Information Systems and Organizations. The final public draft of Special Publication 800-53, Revision 3, is historic in nature. For the first time, and as part of the ongoing initiative to develop a unified information security framework for the federal government and its contractors, NIST has included security controls in its catalog for both national security and non national security systems. The updated security control catalog incorporates best practices in information security from the United States Department of Defense, Intelligence Community, and Civil agencies, to produce the most broad-based and comprehensive set of safeguards and countermeasures ever developed for information systems.
- [May 15, 2009] -- NIST’s Computer Security Division has released Frequently Asked Questions (FAQs) and Quick Start Guides (QSGs) for Step 1 Categorize and Step 6 Monitor of the Risk Management Framework (RMF). The FAQs and .....
- [May 14, 2009] --NIST announces that its working definition of cloud computing is available. Researchers worked in collaboration with industry and government to draft the.....
- [May 5, 2009] -- NIST announces that Draft Special Publication (SP) 800-117, Guide to Adopting and Using the Security Content Automation Protocol (SCAP), has been released for public comment. SCAP comprises.....
- [March 20, 2009] -- NIST announces the release of the Initial Public Draft (IPD) of Special Publication 800-16, Revision 1, Information Security Training Requirements: A Role- and Performance-Based Model. This publication is.........
NIST Security Events
Protocol for Lightweight Authentication of Identity (PLAID)
July 13-15, 2009
National Institute of Standards and Technology Gaithersburg, MD.
Privilege (Access) Management Workshop
September 1-3, 2009
National Insitute of Standards and Technology Gaithersburg, MD.