Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Information Technology / Cybersecurity

Securing emerging technologies

Search Publications

Search Title, Abstract, Conference, Citation, Keyword or Author

Title

Author

NIST Pub Series

Report Number

Published Date

Min

Max

Displaying 1 - 17 of 17

Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations

November 1, 2024

Author(s)

Jon Boyens, Angela Smith, Nadya Bartol, Kris Winkler, Alex Holbrook, Matthew Fallon

Organizations are concerned about the risks associated with products and services that may potentially contain malicious functionality, are counterfeit, or are vulnerable due to poor manufacturing and development practices within the supply chain. These

Secure Software Development Practices for Generative AI and Dual-Use Foundation Models: An SSDF Community Profile

July 26, 2024

Author(s)

Harold Booth, Murugiah Souppaya, Apostol Vassilev, Michael Ogata, Martin Stanley, Karen Scarfone

This document augments the secure software development practices and tasks defined in Secure Software Development Framework (SSDF) version 1.1 by adding practices, tasks, recommendations, considerations, notes, and informative references that are specific

Perfect cheating is impossible for single-qubit position verification

June 28, 2024

Author(s)

Carl A. Miller, Yusuf Alnawakhtha

In quantum position verification, a prover certifies her location by performing a quantum computation and returning the results (at the speed of light) to a set of trusted verifiers. One of the very first protocols for quantum position verification was

Layered Security Guidance for Data Asset Management in Additive Manufacturing

November 23, 2023

Author(s)

Fahad Milaat, Joshua Lubell

Manufacturing industries are increasingly adopting additive manufacturing (AM) technologies to produce functional parts in critical systems. However, the inherent complexity of both AM designs and AM processes render them attractive targets for cyber

Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN)

September 25, 2023

Author(s)

Dan Mamula, Karri Meldorf, Joseph Brule, O'Ryan Lattin, John Wiltberger, Sam Sepassi, Rory Jennings, Chris Thorpe, John Dombrowski, Jim McCarthy

The space sector is transitioning towards Hybrid Satellite Networks (HSN) which is an aggregation of independently owned and operated terminals, antennas, satellites, payloads, or other components that comprise a satellite system. The elements of an HSN

Introduction to Cybersecurity for Commercial Satellite Operations

July 25, 2023

Author(s)

Matthew Scholl, Theresa Suloway

Space is a newly emerging commercial critical infrastructure sector that is no longer the domain of only national government authorities. Space is an inherently risky environment in which to operate, so cybersecurity risks involving commercial space –

Profile of the IoT Core Baseline for Consumer IoT Products

September 20, 2022

Author(s)

Katerina N. Megas, Michael Fagan, Jeffrey Marron, Paul Watrobski, Barbara Bell Cuthill

This publication documents the consumer profile of NIST's Internet of Things (IoT) core baseline and identifies cybersecurity capabilities commonly needed for the consumer IoT sector (i.e., IoT products for home or personal use). It can also be a starting

Workshop Summary Report for "Building on the NIST Foundations: Next Steps in IoT Cybersecurity"

September 20, 2022

Author(s)

Katerina N. Megas, Michael Fagan, Barbara Bell Cuthill, Brad Hoehn, David Lemire, Rebecca Herold

This report summarizes the feedback received on the work of the NIST Cybersecurity for the Internet of Things (IoT) program on IoT product cybersecurity criteria at a virtual workshop in June 2022. The purpose of this workshop was to obtain feedback on

PION: Password-based IoT Onboarding Over Named Data Networking

August 11, 2022

Author(s)

Davide Pesavento, Junxiao Shi, Kerry McKay, Lotfi Benmohamed

While the IoT market continues to grow, securing IoT systems remains a challenge as successful cyberattacks keep escalating. Named Data Networking (NDN) offers a number of advantages over traditional IP-based communications and is considered a promising

Cybersecurity Supply Chain Risk Management for Systems and Organizations

May 5, 2022

Author(s)

Jon Boyens, Angela Smith, Nadya Bartol, Kris Winkler, Alexander Holbrook, Matthew Fallon

[Superseded by SP 800-161r1-upd1 (Nov 2024): https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=958681] Organizations are concerned about the risks associated with products and services that may contain potentially malicious functionality, are

Client-side XSLT, Validation and Data Security

November 22, 2021

Author(s)

Wendell Piez

Client-side XSLT (CSX) is often used in scenarios where data (in XML) from a remote server is provided to a user who processes it in some way, for example rendering it locally for display. That is, the server provides the data and the client does the work