Cybersecurity risks are a fundamental type of risk for all organizations to manage. Potential impacts to organizations from cybersecurity risks include higher costs, lower revenue, reputational...
The predominant application architecture for cloud-native applications consists of multiple microservices with a centralized application infrastructure, such as a service mesh, that provides all application services....
This publication provides guidance for federal agencies and organizations to develop and manage a lifecycle approach to building a cybersecurity and privacy learning program (hereafter referred...
The authors, Paul Cichonski of the National Institute of Standards and Technology (NIST), Tom Millar of the United States Computer Emergency Readiness Team (US-CERT), Tim Grance...
This document summarizes research performed by the members of the NIST Cloud Computing Forensic Science Working Group and presents the NIST Cloud Computing Forensic Reference Architecture...
Nelson Mandela famously said, “Remember to celebrate milestones as you prepare for the road ahead.”This year, we celebrated a major milestone that we’re proud of: 50...
The CIA triad represents the three pillars of information security: confidentiality, integrity, and availability, as follows. This series of practice guides focuses on data integrity: the...
Reports on Computer Systems TechnologyThe Information Technology Laboratory (ITL) at the National Institute of Standards and Technology (NIST) promotes the U.S. economy and public welfare by...
This NIST AI report is intended to be a step toward developing a taxonomy and terminol-ogy of dversarial machine learning (AML), which in turn may aid...
Artificial intelligence (AI) technologies have significant potential to transform society andpeople’s lives – from commerce and health to transportation and cybersecurity to the environmentand our planet....
This document provides a new Digital Forensics and Incident Response (DFIR) framework dedicated to Operational Technology. This framework expands the traditional technical steps of IT Incident...
AbstractThis publication describes the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework (NICE Framework), a reference structure that describes the interdisciplinary nature of the cybersecurity...
