Computer Security Resource Center

Computer Security Resource Center

For 20 years, the Computer Security Resource Center (CSRC) has provided access to NIST's cybersecurity- and information security-related projects, publications, news and events.   CSRC supports stakeholders in government, industry and academia—both in the U.S. and internationally.

In this major update to CSRC:

 

Recent News

NISTIR 8322 Virtual Workshop Report January 7, 2021
NIST publishes NISTIR 8322, Workshop Summary Report for “Building the Federal Profile for IoT Device Cybersecurity” Virtual Workshop.
Healthcare--Securing PACS: NIST SP 1800-24 December 21, 2020
A new NIST Cybersecurity Practice Guide, NIST SP 1800-24, is now available:  "Securing Picture Archiving and Communication System (PACS): Cybersecurity for the Healthcare Sector."
Draft Guidance for IoT Device Cybersecurity December 15, 2020
Four draft guidance documents on defining IoT cybersecurity requirements--for federal agencies and IoT device manufacturers--are now available for comment through February 12, 2021:  Draft SP 800-213 and Draft NISTIRs...
NIST Publishes NISTIR 8246: CVMAP for CNAs, ADPs December 15, 2020
A new publication formalizes the Common Vulnerabilities and Exposures (CVE) entry metadata submission process that's used in conjunction with the National Vulnerability Database (NVD).
Draft NISTIR 8286A Available for Comment December 14, 2020
Draft NISTIR 8286A, "Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management," is available for comment through February 1, 2021.

View All News

Upcoming Events

Virtual Workshop on Improving the Security of DevOps Practices January 21, 2021
The purpose of this workshop is to discuss the National Institute of Standards and Technology’s (NIST’s) proposed approach for helping industry and government improve the security of their DevOps practices. During this...
DevSecOps and Zero Trust Architecture (ZTA) for Multi-Cloud Environments January 27, 2021
This 1-day virtual conference will focus on DevSecOps and ZTA as foundational approaches in multi-cloud environments. They facilitate rapid secure application development, promote interoperability, and mitigate threats in a...
2nd Open Security Controls Assessment Language (OSCAL) Workshop February 2, 2021 - February 3, 2021
The National Institute of Standards and Technology will be hosting on Tuesday, February 2 and Wednesday, February 3, 2021, the second workshop in a new series focusing on the Open Security Controls Assessment Language...
Federal Computer Security Managers' Forum - 1/2 Day Meeting - February 2021 February 23, 2021
NOTE:  THIS MEETING IS OPEN TO ONLY FEDERAL/STATE EMPLOYEES, HIGHER EDUCATION EMPLOYEES, AND THEIR DESIGNATED SUPPORT CONTRACTORS.  REGISTRANTS MUST USE A .GOV, .EDU, OR .MIL ADDRESS FOR SIGN-UP.  SUPPORT CONTRACTORS MUST...
Information Security and Privacy Advisory Board (ISPAB) - March 2021 Meeting March 3, 2021 - March 4, 2021
The Information Security and Privacy Advisory Board (ISPAB) is authorized by 15 U.S.C. 278g-4, as amended, and advises the National Institute of Standards and Technology (NIST), the Secretary of Homeland Security (DHS), and...

View All Events