Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Information Technology Laboratory

Computer Security Division

News and Updates

Keyword

Topic Area

NIST Requests Public Comments on SP 800-135 Revision 1, Recommendation for Existing Application-Specific Key Derivation Functions

July 27, 2023

NIST is in the process of a periodic review and maintenance of its cryptography standards and guidelines. Currently, we are requesting public comments on the

Introduction to Cybersecurity for Commercial Satellite Operations: NIST IR 8270

July 25, 2023

Space operations are vital to advancing the security, economic prosperity, and scientific knowledge of the Nation. However, cyber-related threats to space

Cryptographic Module Validation Program-Approved Security Functions and Methods: Publications Revised to Move Lists Online

July 25, 2023

The NIST Special Publication (SP) 800-140x series supports Federal Information Processing Standards (FIPS) Publication 140-3, Security Requirements for

NIST Announces Additional Digital Signature Candidates for the PQC Standardization Process

July 17, 2023

In response to a September 2022 announcement calling for additional Post-Quantum Cryptography (PQC) Digital Signature Schemes, NIST received 40 candidates that

Five people dressed in business casual and wearing conference badges on lanyards pose with a framed award certificate.

Spotlight: The Runaway Hit for Software Testing

June 30, 2023

It’s a research tool that helps test software more effectively than ever before — including the software that helps keep cars and airplanes operating safely.

NIST to Withdraw Special Publication 800-67 Revision 2

June 29, 2023

NIST will withdraw Special Publication (SP) 800-67 Revision 2, Recommendation for the Triple Data Encryption Algorithm (TDEA) Block Cipher , on January 1, 2024

Status Report on the Final Round of the NIST Lightweight Cryptography Standardization Process: NIST Releases IR 8454

June 16, 2023

NIST announces the publication of NIST Internal Report (NIST IR) 8454, Status Report on the Final Round of the NIST Lightweight Cryptography Standardization

NIST 2022 Cybersecurity & Privacy Annual Report

May 31, 2023

This week, NIST released the newly redesigned and streamlined Special Publication 800-225, Fiscal Year (FY) 2022 Cybersecurity and Privacy Annual Report. In FY

NIST Publishes Recommendations for Federal Vulnerability Disclosure Guidelines: NIST SP 800-216 Now Available

May 24, 2023

Internal and external reporting of security vulnerabilities in software and information systems owned or utilized by the Federal Government is critical to

Guidelines for Managing the Security of Mobile Devices in the Enterprise: NIST Publishes SP 800-124 Revision 2

May 17, 2023

Today mobile devices are ubiquitous, and they are often used to access enterprise networks and systems to process sensitive data. NIST Special Publication (SP)

NIST to Revise SP 800-132, Recommendation for Password-Based Key Derivation – Part 1: Storage Applications

May 11, 2023

In January 2023, NIST's Crypto Publication Review Board initiated a review process for NIST Special Publication (SP) 800-132, Recommendation for Password-Based

NIST Revises SP 800-171 Guidelines for Protecting Sensitive Information

May 10, 2023

Draft Revision 3 aligns the publication’s language with NIST’s 800-53 catalog of cybersecurity safeguards.

Open for Public Comment: Draft NIST SP 800-171, Revision 3, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations

May 10, 2023

The initial public draft (IPD) of NIST Special Publication (SP) 800-171, Revision 3, Protecting Controlled Unclassified Information in Nonfederal Systems and

NIST Updates FIPS 197, Advanced Encryption Standard (AES)

May 9, 2023

Today, NIST has published an update of Federal Information Processing Standards Publication (FIPS) 197, Advanced Encryption Standard (AES). This update makes no

Overview and Considerations of Access Control Based on Attribute Encryption: NIST IR 8450 Draft is Available for Public Comment

May 9, 2023

NIST Internal Report (IR) 8450, Overview and Considerations of Access Control Based on Attribute Encryption, is now available for public review and comment

Decision to Revise NIST SP 800-38A, Recommendation for Block Cipher Modes of Operation: Methods and Techniques

April 28, 2023

In May 2021, NIST's Crypto Publication Review Board initiated a review process for the following two publications: NIST Special Publication (SP) 800-38A

NIST Releases Draft NIST IR 8460: State Machine Replication and Consensus with Byzantine Adversaries

April 26, 2023

Most applications on the internet are run by centralized service providers that are a single point of failure: if the provider crashes or is malicious, users

A Zero Trust Architecture Model for Access Control in Cloud-Native Applications in Multi-Location Environments: NIST SP 800-207A Available for Comment

April 18, 2023

The initial public draft of NIST Special Publication (SP) 800-207A, A Zero Trust Architecture Model for Access Control in Cloud-Native Applications in Multi

Discussion on the Full Entropy Assumption of the SP 800-90 Series: NIST Interagency Report 8427

April 14, 2023

NIST Interagency Report (IR) 8427, Discussion on the Full Entropy Assumption of the SP 800-90 Series, is now available. This report supports the NIST Special

Announcement of Proposal to Revise NIST SP 800-132, Recommendation for Password-Based Key Derivation: Part 1: Storage Applications

March 31, 2023

In January 2023, NIST’s Crypto Publication Review Board initiated a review of NIST Special Publication (SP) 800-132, Recommendation for Password-Based Key