Movatterモバイル変換

Current Publications

NIST Series Pubs
- Final Pubs
- Drafts Open for Comment
- Drafts (all)
- View By Series
  - FIPS (standards)
  - SP 800 (guidance)
  - SP 1800 (practice guides)
  - SP (all subseries)
  - IR (interagency/internal reports)
  - CSWP (cybersecurity white papers)
  - ITL Bulletins
Other Pubs

Final:Current list of all published NIST cybersecurity documents. Does not include "Withdrawn" documents. Includes FIPS, Special Publications, NISTIRs, ITL Bulletins, and NIST Cybersecurity White Papers.

Public Drafts:Current list of all draft NIST cybersecurity documents--they are typically posted for public comment. "Current" public drafts are the latest draft versions that have not yet been published as "Final."FIPS:Current Federal Information Processing Standard Publications (FIPS). Includes current (Final and Draft) FIPS.

SP 800 Series:Current NIST Special Publication (SP) 800 series publications, which focus on Computer/Information Security. Includes current (Final and Draft) SP 800 pubs.

All SP Series: Current NIST Special Publications (SP), including SP 800 (Computer/Information Security) and SP 1800 (Cybersecurity Practice Guides) pubs. Also includes SP 500 (Computer Systems Technology) pubs related to cybersecurity and privacy. Includes current (Final and Draft) NIST Special Publications.

NISTIRs:Current list of NIST Interagency or Internal Reports (NISTIR) related to cybersecurity and privacy. Includes current (Final and Draft) NISTIRs.

ITL Bulletins: Current list of NIST Information Technology Laboratory (ITL) Bulletins.White Papers: Consists of NIST Cybersecurity White Papers; NCCoE Project Descriptions, Building Blocks and Use Cases; and other NIST-authored papers that are not part of a formal series. Includes current (Final and Draft) papers.

Journal Articles: NIST-authored articles published in external journals and in the NIST Journal of Research (JRES).

Conference Papers: NIST-authored conference papers related to cybersecurity and privacy.

Books: NIST-authored books, book sections, and encyclopedia entries related to cybersecurity and privacy.

SearchSearch publication record data
(not a full text search)

Sort By

Results View

Items Per Page

Date

Status

Final
Public Draft
Withdrawn

Series

FIPS
SP
IR
CSWP
TN
VTS
AI
GCR
Project Description
ITL Bulletin
Journal Article
Conference Paper
Book
Book Section
Other

Topics

Security and Privacy

cryptography
cybersecurity supply chain risk management
general security & privacy
identity & access management
privacy
- personally identifiable information
- privacy engineering
risk management
security & behavior
security measurement
security programs & operations
systems security engineering
- trustworthiness
zero trust

Technologies

artificial intelligence
big data
biometrics
blockchain
cloud & virtualization
combinatorial testing
complexity
hardware
mobile
networks
quantum information science
servers
smart cards
software & firmware
storage

Applications

communications & wireless
cyber-physical systems
cybersecurity education
cybersecurity framework
cybersecurity workforce
enterprise
forensics
Internet of Things
mathematics
operational technology
positioning navigation & timing
small & medium business
smart grid
telework
voting

Laws and Regulations

executive documents
laws
regulations
- Controlled Unclassified Information
- Federal Acquisition Regulation

Activities and Products

annual reports
conferences & workshops
groups
quick-start guides
reference materials
standards development

Sectors

aerospace
energy
financial services
healthcare
hospitality
manufacturing
public safety
retail
telecommunications
transportation

Match ANY:Match ALL:

Control Family (800-53)

Control Families

AC - Access Control
AT - Awareness and Training
AU - Audit and Accountability
CA - Assessment, Authorization and Monitoring
CM - Configuration Management
CP - Contingency Planning
IA - Identification and Authentication
IR - Incident Response
MA - Maintenance
MP - Media Protection
PE - Physical and Environmental Protection
PL - Planning
PM - Program Management
PS - Personnel Security
PT - PII Processing and Transparency
RA - Risk Assessment
SA - System and Services Acquisition
SC - System and Communications Protection
SI - System and Information Integrity
SR - Supply Chain Risk Management

Match ANY:Match ALL:

Please fix the following:

Final: Published documents.

Public Draft: Documents have been posted as Public Drafts, typically with a public comment period.

Withdrawn: Documents that have been withdrawn, and are no longer current. This includes:
- Final publications that have been withdrawn;
- Public drafts that have been obsoleted by a subsequent draft or final publication;
- Public drafts that have been retired—further development was discontinued.

Search Results

SearchSearch publication record data
(not a full text search)

Sort By

Results View

Items Per Page

Advanced Search

Date

Status

Final
Public Draft
Withdrawn

Series

FIPS
SP
IR
CSWP
TN
VTS
AI
GCR
Project Description
ITL Bulletin
Journal Article
Conference Paper
Book
Book Section
Other

Topics

Security and Privacy

cryptography
cybersecurity supply chain risk management
general security & privacy
identity & access management
privacy
- personally identifiable information
- privacy engineering
risk management
security & behavior
security measurement
security programs & operations
systems security engineering
- trustworthiness
zero trust

Technologies

artificial intelligence
big data
biometrics
blockchain
cloud & virtualization
combinatorial testing
complexity
hardware
mobile
networks
quantum information science
servers
smart cards
software & firmware
storage

Applications

communications & wireless
cyber-physical systems
cybersecurity education
cybersecurity framework
cybersecurity workforce
enterprise
forensics
Internet of Things
mathematics
operational technology
positioning navigation & timing
small & medium business
smart grid
telework
voting

Laws and Regulations

executive documents
laws
regulations
- Controlled Unclassified Information
- Federal Acquisition Regulation

Activities and Products

annual reports
conferences & workshops
groups
quick-start guides
reference materials
standards development

Sectors

aerospace
energy
financial services
healthcare
hospitality
manufacturing
public safety
retail
telecommunications
transportation

Match ANY:Match ALL:

Control Family (800-53)

Control Families

AC - Access Control
AT - Awareness and Training
AU - Audit and Accountability
CA - Assessment, Authorization and Monitoring
CM - Configuration Management
CP - Contingency Planning
IA - Identification and Authentication
IR - Incident Response
MA - Maintenance
MP - Media Protection
PE - Physical and Environmental Protection
PL - Planning
PM - Program Management
PS - Personnel Security
PT - PII Processing and Transparency
RA - Risk Assessment
SA - System and Services Acquisition
SC - System and Communications Protection
SI - System and Information Integrity
SR - Supply Chain Risk Management

Match ANY:Match ALL:

Please fix the following:

Final: Published documents.

Public Draft: Documents have been posted as Public Drafts, typically with a public comment period.

Showing99 matching records.

Series	Number	TitlePublications	Status	Release Date
SP	1308	NIST Cybersecurity Framework 2.0: Cybersecurity, Enterprise Risk Management, and Workforce Management Quick-Start Guide SP 1308 (2nd Public Draft) NIST Cybersecurity Framework 2.0: Cybersecurity, Enterprise Risk Management, and Workforce Management Quick-Start Guide 11/24/2025 Status:Draft	Draft	11/24/2025
IR	8259 Rev. 1	Foundational Cybersecurity Activities for IoT Product Manufacturers IR 8259 Rev. 1 (2nd Public Draft) Foundational Cybersecurity Activities for IoT Product Manufacturers 9/30/2025 Status:Draft	Draft	9/30/2025
IR	8183 Rev. 2	Cybersecurity Framework 2.0 Manufacturing Profile IR 8183 Rev. 2 (Initial Public Draft) Cybersecurity Framework 2.0 Manufacturing Profile 9/29/2025 Status:Draft	Draft	9/29/2025
SP	800-172 Rev. 3	Enhanced Security Requirements for Protecting Controlled Unclassified Information SP 800-172 Rev. 3 (Final Public Draft) Enhanced Security Requirements for Protecting Controlled Unclassified Information 9/29/2025 Status:Draft	Draft	9/29/2025
SP	800-172A Rev. 3	Assessing Enhanced Security Requirements for Controlled Unclassified Information SP 800-172A Rev. 3 (Initial Public Draft) Assessing Enhanced Security Requirements for Controlled Unclassified Information 9/29/2025 Status:Draft	Draft	9/29/2025
CSWP	48	Mappings of Migration to PQC Project Capabilities to NIST Cybersecurity Framework 2.0 and to Security and Privacy Controls for Information Systems and Organizations CSWP 48 (Initial Public Draft) Mappings of Migration to PQC Project Capabilities to NIST Cybersecurity Framework 2.0 and to Security and Privacy Controls for Information Systems and Organizations 9/18/2025 Status:Draft	Draft	9/18/2025
IR	8588	A Community‐Driven Differential Privacy Deployment Registry IR 8588 (Initial Public Draft) A Community‐Driven Differential Privacy Deployment Registry 9/17/2025 Status:Draft	Draft	9/17/2025
CSWP	37B	Automation of the NIST Cryptographic Module Validation Program: April 2025 Status Report CSWP 37B (Initial Public Draft) Automation of the NIST Cryptographic Module Validation Program: April 2025 Status Report 9/10/2025 Status:Draft	Draft	9/10/2025
SP	800-90A Rev. 2	PRE-DRAFT Call for Comments: Recommendation for Random Number Generation Using Deterministic Random Bit Generators SP 800-90A Rev. 2 (Initial Preliminary Draft) PRE-DRAFT Call for Comments: Recommendation for Random Number Generation Using Deterministic Random Bit Generators 9/04/2025 Status:Draft	Draft	9/04/2025
SP	1331	Quick-Start Guide for Using CSF 2.0 to Improve Management of Emerging Cybersecurity Risks SP 1331 (Initial Public Draft) Quick-Start Guide for Using CSF 2.0 to Improve Management of Emerging Cybersecurity Risks 8/21/2025 Status:Draft	Draft	8/21/2025
CSWP	51	Developing a Transit Cybersecurity Framework Community Profile: Project Update CSWP 51 (Initial Public Draft) Developing a Transit Cybersecurity Framework Community Profile: Project Update 8/20/2025 Status:Draft	Draft	8/20/2025
SP	1800-43	Genomic Data Threat Modeling SP 1800-43 (Initial Public Draft) Genomic Data Threat Modeling 8/05/2025 Status:Draft	Draft	8/05/2025
IR	8536	Supply Chain Traceability: Manufacturing Meta-Framework IR 8536 (2nd Public Draft) Supply Chain Traceability: Manufacturing Meta-Framework 7/31/2025 Status:Draft	Draft	7/31/2025
IR	8579	Developing the NCCoE Chatbot: Technical and Security Learnings from the Initial Implementation IR 8579 (Initial Public Draft) Developing the NCCoE Chatbot: Technical and Security Learnings from the Initial Implementation 7/31/2025 Status:Draft	Draft	7/31/2025
SP	1800-44	Secure Software Development, Security, and Operations (DevSecOps) Practices SP 1800-44 (Initial Public Draft) Secure Software Development, Security, and Operations (DevSecOps) Practices 7/30/2025 Status:Draft	Draft	7/30/2025
CSWP	39	Considerations for Achieving Cryptographic Agility: Strategies and Practices CSWP 39 (2nd Public Draft) Considerations for Achieving Cryptographic Agility: Strategies and Practices 7/17/2025 Status:Draft	Draft	7/17/2025
CSWP	36E	5G Network Security Design Principles: Applying 5G Cybersecurity and Privacy Capabilities CSWP 36E (Initial Public Draft) 5G Network Security Design Principles: Applying 5G Cybersecurity and Privacy Capabilities 6/17/2025 Status:Draft	Draft	6/17/2025
SP	800-197A	PRE-DRAFT Call for Comments: NIST Launches Development of Cryptographic Accordions SP 800-197A (Initial Preliminary Draft) PRE-DRAFT Call for Comments: NIST Launches Development of Cryptographic Accordions 6/06/2025 Status:Draft	Draft	6/06/2025
SP	800-18 Rev. 2	Developing Security, Privacy, and Cybersecurity Supply Chain Risk Management Plans for Systems SP 800-18 Rev. 2 (Initial Public Draft) Developing Security, Privacy, and Cybersecurity Supply Chain Risk Management Plans for Systems 6/04/2025 Status:Draft	Draft	6/04/2025
IR	7621 Rev. 2	Small Business Cybersecurity: Non-Employer Firms IR 7621 Rev. 2 (Initial Public Draft) Small Business Cybersecurity: Non-Employer Firms 5/01/2025 Status:Draft	Draft	5/01/2025
SP	800-234	High-Performance Computing (HPC) Security Overlay SP 800-234 (Initial Public Draft) High-Performance Computing (HPC) Security Overlay 5/01/2025 Status:Draft	Draft	5/01/2025
CSWP	40	NIST Privacy Framework 1.1 CSWP 40 (Initial Public Draft) NIST Privacy Framework 1.1 4/14/2025 Status:Draft	Draft	4/14/2025
SP	800-81 Rev. 3	Secure Domain Name System (DNS) Deployment Guide SP 800-81 Rev. 3 (Initial Public Draft) Secure Domain Name System (DNS) Deployment Guide 4/10/2025 Status:Draft	Draft	4/10/2025
IR	8214C	NIST First Call for Multi-Party Threshold Schemes IR 8214C (2nd Public Draft) NIST First Call for Multi-Party Threshold Schemes 3/27/2025 Status:Draft	Draft	3/27/2025
SP	1800-33	5G Cybersecurity SP 1800-33 (Initial Public Draft) 5G Cybersecurity 3/18/2025 Status:Draft	Draft	3/18/2025
IR	8323 Rev. 2	PRE-DRAFT Call for Comments: NIST is Aligning the Foundational Positioning, Navigation, and Timing (PNT) Profile (NIST IR 8323) with CSF 2.0 IR 8323 Rev. 2 (Initial Preliminary Draft) PRE-DRAFT Call for Comments: NIST is Aligning the Foundational Positioning, Navigation, and Timing (PNT) Profile (NIST IR 8323) with CSF 2.0 3/12/2025 Status:Draft	Draft	3/12/2025
IR	8546	Cybersecurity Framework Version 2.0 Semiconductor Manufacturing Profile IR 8546 (Initial Public Draft) Cybersecurity Framework Version 2.0 Semiconductor Manufacturing Profile 2/27/2025 Status:Draft	Draft	2/27/2025
IR	8286 Rev. 1	Integrating Cybersecurity and Enterprise Risk Management (ERM) IR 8286 Rev. 1 (Initial Public Draft) Integrating Cybersecurity and Enterprise Risk Management (ERM) 2/26/2025 Status:Draft	Draft	2/26/2025
IR	8286A Rev. 1	Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management IR 8286A Rev. 1 (Initial Public Draft) Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management 2/26/2025 Status:Draft	Draft	2/26/2025
IR	8286C Rev. 1	Staging Cybersecurity Risks for Enterprise Risk Management and Governance Oversight IR 8286C Rev. 1 (Initial Public Draft) Staging Cybersecurity Risks for Enterprise Risk Management and Governance Oversight 2/26/2025 Status:Draft	Draft	2/26/2025
IR	8011 Vol. 1 Rev. 1	Testable Controls and Security Capabilities for Continuous Monitoring: Volume 1 — Overview and Methodology IR 8011 Vol. 1 Rev. 1 (Initial Public Draft) Testable Controls and Security Capabilities for Continuous Monitoring: Volume 1 — Overview and Methodology 2/20/2025 Status:Draft	Draft	2/20/2025
SP	800-38G Rev. 1	Recommendation for Block Cipher Modes of Operation: Methods for Format-Preserving Encryption SP 800-38G Rev. 1 (2nd Public Draft) Recommendation for Block Cipher Modes of Operation: Methods for Format-Preserving Encryption 2/03/2025 Status:Draft	Draft	2/03/2025
CSWP	36D	No SUPI-Based Paging: Applying 5G Cybersecurity and Privacy Capabilities CSWP 36D (Initial Public Draft) No SUPI-Based Paging: Applying 5G Cybersecurity and Privacy Capabilities 1/30/2025 Status:Draft	Draft	1/30/2025
IR	8374 Rev. 1	Ransomware Risk Management: A Cybersecurity Framework 2.0 Community Profile IR 8374 Rev. 1 (Initial Public Draft) Ransomware Risk Management: A Cybersecurity Framework 2.0 Community Profile 1/13/2025 Status:Draft	Draft	1/13/2025
SP	800-38D Rev. 1	Pre-Draft Call for Comments: GCM and GMAC Block Cipher Modes of Operation SP 800-38D Rev. 1 (Initial Preliminary Draft) Pre-Draft Call for Comments: GCM and GMAC Block Cipher Modes of Operation 1/06/2025 Status:Draft	Draft	1/06/2025
SP	800-189 Rev. 1	Border Gateway Protocol Security and Resilience SP 800-189 Rev. 1 (Initial Public Draft) Border Gateway Protocol Security and Resilience 1/03/2025 Status:Draft	Draft	1/03/2025
SP	800-197	PRE-DRAFT Call for Comments: NIST Proposes to Standardize a Wider Variant of AES SP 800-197 (Initial Preliminary Draft) PRE-DRAFT Call for Comments: NIST Proposes to Standardize a Wider Variant of AES 12/23/2024 Status:Draft	Draft	12/23/2024
CSWP	35	Cybersecurity Threat Modeling the Genomic Data Sequencing Workflow: An example threat model implementation for genomic data sequencing and analysis CSWP 35 (Initial Public Draft) Cybersecurity Threat Modeling the Genomic Data Sequencing Workflow: An example threat model implementation for genomic data sequencing and analysis 12/16/2024 Status:Draft	Draft	12/16/2024
IR	8467	Genomic Data Cybersecurity and Privacy Frameworks Community Profile IR 8467 (2nd Public Draft) Genomic Data Cybersecurity and Privacy Frameworks Community Profile 12/16/2024 Status:Draft	Draft	12/16/2024
CSWP	38	NIST Privacy Workforce Taxonomy CSWP 38 (Initial Public Draft) NIST Privacy Workforce Taxonomy 11/21/2024 Status:Draft	Draft	11/21/2024
SP	800-157 Rev. 1	Guidelines for Derived Personal Identity Verification (PIV) Credentials SP 800-157 Rev. 1 (Final Public Draft) Guidelines for Derived Personal Identity Verification (PIV) Credentials 11/14/2024 Status:Draft	Draft	11/14/2024
SP	800-217	Guidelines for Personal Identity Verification (PIV) Federation SP 800-217 (Final Public Draft) Guidelines for Personal Identity Verification (PIV) Federation 11/14/2024 Status:Draft	Draft	11/14/2024
IR	8547	Transition to Post-Quantum Cryptography Standards IR 8547 (Initial Public Draft) Transition to Post-Quantum Cryptography Standards 11/12/2024 Status:Draft	Draft	11/12/2024
CSWP	34	Mitigating Cybersecurity and Privacy Risks in Telehealth Smart Home Integration: Healthcare and Public Health Sector Risk Management Approaches CSWP 34 (Initial Public Draft) Mitigating Cybersecurity and Privacy Risks in Telehealth Smart Home Integration: Healthcare and Public Health Sector Risk Management Approaches 11/06/2024 Status:Draft	Draft	11/06/2024
CSWP	36C	Reallocation of Temporary Identities: Applying 5G Cybersecurity and Privacy Capabilities CSWP 36C (Initial Public Draft) Reallocation of Temporary Identities: Applying 5G Cybersecurity and Privacy Capabilities 11/06/2024 Status:Draft	Draft	11/06/2024
CSWP	37	Automation of the NIST Cryptographic Module Validation Program: September 2024 Status Report CSWP 37 (Initial Public Draft) Automation of the NIST Cryptographic Module Validation Program: September 2024 Status Report 10/31/2024 Status:Draft	Draft	10/31/2024
SP	1326	NIST Cybersecurity Supply Chain Risk Management: Due Diligence Assessment Quick-Start Guide SP 1326 (Initial Public Draft) NIST Cybersecurity Supply Chain Risk Management: Due Diligence Assessment Quick-Start Guide 10/30/2024 Status:Draft	Draft	10/30/2024
SP	800-131A Rev. 3	Transitioning the Use of Cryptographic Algorithms and Key Lengths SP 800-131A Rev. 3 (Initial Public Draft) Transitioning the Use of Cryptographic Algorithms and Key Lengths 10/21/2024 Status:Draft	Draft	10/21/2024
IR	8480	Attribute Validation Services for Identity Management: Architecture, Security, Privacy, and Operational Considerations IR 8480 (Initial Public Draft) Attribute Validation Services for Identity Management: Architecture, Security, Privacy, and Operational Considerations 10/07/2024 Status:Draft	Draft	10/07/2024
CSWP	36B	Using Hardware-Enabled Security to Ensure 5G System Platform Integrity: Applying 5G Cybersecurity and Privacy Capabilities CSWP 36B (Initial Public Draft) Using Hardware-Enabled Security to Ensure 5G System Platform Integrity: Applying 5G Cybersecurity and Privacy Capabilities 9/30/2024 Status:Draft	Draft	9/30/2024
IR	8446	Bridging the Gap between Standards on Random Number Generation: Comparison of SP 800-90 Series and AIS 20/31 IR 8446 (Initial Public Draft) Bridging the Gap between Standards on Random Number Generation: Comparison of SP 800-90 Series and AIS 20/31 9/16/2024 Status:Draft	Draft	9/16/2024
CSWP	36A	Protecting Subscriber Identifiers with Subscription Concealed Identifier (SUCI): Applying 5G Cybersecurity and Privacy Capabilities CSWP 36A (Initial Public Draft) Protecting Subscriber Identifiers with Subscription Concealed Identifier (SUCI): Applying 5G Cybersecurity and Privacy Capabilities 8/15/2024 Status:Draft	Draft	8/15/2024
CSWP	36	Applying 5G Cybersecurity and Privacy Capabilities: Introduction to the White Paper Series CSWP 36 (Initial Public Draft) Applying 5G Cybersecurity and Privacy Capabilities: Introduction to the White Paper Series 8/15/2024 Status:Draft	Draft	8/15/2024
SP	800-224	Keyed-Hash Message Authentication Code (HMAC): Specification of HMAC and Recommendations for Message Authentication SP 800-224 (Initial Public Draft) Keyed-Hash Message Authentication Code (HMAC): Specification of HMAC and Recommendations for Message Authentication 6/28/2024 Status:Draft	Draft	6/28/2024
TN	2283	Cybersecurity for the Water and Wastewater Sector: Build Architecture. Operational Technology Remote Access TN 2283 (Initial Public Draft) Cybersecurity for the Water and Wastewater Sector: Build Architecture. Operational Technology Remote Access 6/12/2024 Status:Draft	Draft	6/12/2024
Other		Proposal of Requirements for an Accordion Mode: Discussion Draft for the NIST Accordion Mode Workshop 2024 Other (Initial Preliminary Draft) Proposal of Requirements for an Accordion Mode: Discussion Draft for the NIST Accordion Mode Workshop 2024 4/10/2024 Status:Draft	Draft	4/10/2024
CSWP	33	Product Development Cybersecurity Handbook: Concepts and Considerations for IoT Product Manufacturers CSWP 33 (Initial Public Draft) Product Development Cybersecurity Handbook: Concepts and Considerations for IoT Product Manufacturers 4/03/2024 Status:Draft	Draft	4/03/2024
CSWP	32	NIST Cybersecurity Framework 2.0: A Guide to Creating Community Profiles CSWP 32 (Initial Public Draft) NIST Cybersecurity Framework 2.0: A Guide to Creating Community Profiles 2/26/2024 Status:Draft	Draft	2/26/2024
SP	800-60 Rev. 2	Guide for Mapping Types of Information and Systems to Security Categories SP 800-60 Rev. 2 (Initial Working Draft) Guide for Mapping Types of Information and Systems to Security Categories 1/31/2024 Status:Draft	Draft	1/31/2024
SP	800-100 Rev. 1	PRE-DRAFT Call for Comments \| Information Security Handbook: A Guide for Managers SP 800-100 Rev. 1 (Initial Preliminary Draft) PRE-DRAFT Call for Comments \| Information Security Handbook: A Guide for Managers 1/09/2024 Status:Draft	Draft	1/09/2024
SP	1800-38	Migration to Post-Quantum Cryptography: Preparation for Considering the Implementation and Adoption of Quantum Safe Cryptography SP 1800-38 (Initial Preliminary Draft) Migration to Post-Quantum Cryptography: Preparation for Considering the Implementation and Adoption of Quantum Safe Cryptography 12/19/2023 Status:Draft	Draft	12/19/2023
SP	800-79 Rev. 3	Guidelines for the Authorization of PIV Card and Derived PIV Credential Issuers SP 800-79 Rev. 3 (Initial Public Draft) Guidelines for the Authorization of PIV Card and Derived PIV Credential Issuers 12/13/2023 Status:Draft	Draft	12/13/2023
IR	8496	Data Classification Concepts and Considerations for Improving Data Protection IR 8496 (Initial Public Draft) Data Classification Concepts and Considerations for Improving Data Protection 11/15/2023 Status:Draft	Draft	11/15/2023
SP	800-92 Rev. 1	Cybersecurity Log Management Planning Guide SP 800-92 Rev. 1 (Initial Public Draft) Cybersecurity Log Management Planning Guide 10/11/2023 Status:Draft	Draft	10/11/2023
IR	8481	Cybersecurity for Research: Findings and Possible Paths Forward IR 8481 (Initial Public Draft) Cybersecurity for Research: Findings and Possible Paths Forward 8/31/2023 Status:Draft	Draft	8/31/2023
SP	1800-40	Automation of the NIST Cryptographic Module Validation Program SP 1800-40 (Initial Preliminary Draft) Automation of the NIST Cryptographic Module Validation Program 6/07/2023 Status:Draft	Draft	6/07/2023
IR	8460	State Machine Replication and Consensus with Byzantine Adversaries IR 8460 (Initial Public Draft) State Machine Replication and Consensus with Byzantine Adversaries 4/26/2023 Status:Draft	Draft	4/26/2023
SP	1800-39	Implementing Data Classification Practices SP 1800-39 (Initial Preliminary Draft) Implementing Data Classification Practices 4/25/2023 Status:Draft	Draft	4/25/2023
IR	8320D	Hardware-Enabled Security: Hardware-Based Confidential Computing IR 8320D (Initial Public Draft) Hardware-Enabled Security: Hardware-Based Confidential Computing 2/23/2023 Status:Draft	Draft	2/23/2023
IR	8214B	Notes on Threshold EdDSA/Schnorr Signatures IR 8214B (Initial Public Draft) Notes on Threshold EdDSA/Schnorr Signatures 8/12/2022 Status:Draft	Draft	8/12/2022
SP	1800-33	5G Cybersecurity SP 1800-33 (Initial Preliminary Draft) 5G Cybersecurity 4/25/2022 Status:Draft	Draft	4/25/2022
IR	8320C	Hardware-Enabled Security: Machine Identity Management and Protection IR 8320C (Initial Public Draft) Hardware-Enabled Security: Machine Identity Management and Protection 4/20/2022 Status:Draft	Draft	4/20/2022
Project Description		Secure IPv6-Only Implementation in the Enterprise Project Description (Initial Public Draft) Secure IPv6-Only Implementation in the Enterprise 12/09/2021 Status:Draft	Draft	12/09/2021
CSWP	22	Combination Frequency Differencing CSWP 22 (Initial Public Draft) Combination Frequency Differencing 12/06/2021 Status:Draft	Draft	12/06/2021
SP	800-140F Rev. 1	CMVP Approved Non-Invasive Attack Mitigation Test Metrics: CMVP Validation Authority Updates to ISO/IEC 24759 SP 800-140F Rev. 1 (Initial Public Draft) CMVP Approved Non-Invasive Attack Mitigation Test Metrics: CMVP Validation Authority Updates to ISO/IEC 24759 8/20/2021 Status:Draft	Draft	8/20/2021
CSWP	19	Combinatorial Coverage Difference Measurement CSWP 19 (Initial Public Draft) Combinatorial Coverage Difference Measurement 6/22/2021 Status:Draft	Draft	6/22/2021
IR	8335	Identity as a Service for Public Safety Organizations IR 8335 (Initial Public Draft) Identity as a Service for Public Safety Organizations 6/16/2021 Status:Draft	Draft	6/16/2021
IR	8336	Background on Identity Federation Technologies for the Public Safety Community IR 8336 (Initial Public Draft) Background on Identity Federation Technologies for the Public Safety Community 6/09/2021 Status:Draft	Draft	6/09/2021
IR	8334	Using Mobile Device Biometrics for Authenticating First Responders IR 8334 (Initial Public Draft) Using Mobile Device Biometrics for Authenticating First Responders 6/02/2021 Status:Draft	Draft	6/02/2021
CSWP	18	Establishing Confidence in IoT Device Security: How do we get there? CSWP 18 (Initial Public Draft) Establishing Confidence in IoT Device Security: How do we get there? 5/14/2021 Status:Draft	Draft	5/14/2021
Other		Toward a PEC Use-Case Suite Other (Initial Preliminary Draft) Toward a PEC Use-Case Suite 1/21/2021 Status:Draft	Draft	1/21/2021
IR	8259C	Creating a Profile Using the IoT Core Baseline and Non-Technical Baseline IR 8259C (Initial Public Draft) Creating a Profile Using the IoT Core Baseline and Non-Technical Baseline 12/15/2020 Status:Draft	Draft	12/15/2020
CSWP	17	Securing Data Integrity Against Ransomware Attacks: Using the NIST Cybersecurity Framework and NIST Cybersecurity Practice Guides CSWP 17 (Initial Public Draft) Securing Data Integrity Against Ransomware Attacks: Using the NIST Cybersecurity Framework and NIST Cybersecurity Practice Guides 10/01/2020 Status:Draft	Draft	10/01/2020
SP	800-46 Rev. 3	PRE-DRAFT Call for Comments: Guide to Enterprise Telework Security SP 800-46 Rev. 3 (Initial Preliminary Draft) PRE-DRAFT Call for Comments: Guide to Enterprise Telework Security 9/10/2020 Status:Draft	Draft	9/10/2020
CSWP	16	Trusted Internet of Things (IoT) Device Network-Layer Onboarding and Lifecycle Management CSWP 16 (Initial Public Draft) Trusted Internet of Things (IoT) Device Network-Layer Onboarding and Lifecycle Management 9/08/2020 Status:Draft	Draft	9/08/2020
Project Description		Improving Cybersecurity of Managed Service Providers (Supporting Small- and Medium-Sized Businesses) Project Description (Initial Public Draft) Improving Cybersecurity of Managed Service Providers (Supporting Small- and Medium-Sized Businesses) 10/08/2019 Status:Draft	Draft	10/08/2019
IR	8267	Security Review of Consumer Home Internet of Things (IoT) Products IR 8267 (Initial Public Draft) Security Review of Consumer Home Internet of Things (IoT) Products 10/01/2019 Status:Draft	Draft	10/01/2019
Project Description		Continuous Monitoring for IT Infrastructure: Techniques for auditing user activity and detecting irregular activity events within small and medium-size businesses Project Description (Initial Public Draft) Continuous Monitoring for IT Infrastructure: Techniques for auditing user activity and detecting irregular activity events within small and medium-size businesses 6/17/2019 Status:Draft	Draft	6/17/2019
Other		An Application of Combinatorial Methods for Explainability in Artificial Intelligence and Machine Learning Other (Initial Public Draft) An Application of Combinatorial Methods for Explainability in Artificial Intelligence and Machine Learning 5/22/2019 Status:Draft	Draft	5/22/2019
IR	8213	A Reference for Randomness Beacons: Format and Protocol Version 2 IR 8213 (Initial Public Draft) A Reference for Randomness Beacons: Format and Protocol Version 2 5/06/2019 Status:Draft	Draft	5/06/2019
Project Description		Security for IoT Sensor Networks: Building Management Case Study Project Description (Initial Public Draft) Security for IoT Sensor Networks: Building Management Case Study 2/01/2019 Status:Draft	Draft	2/01/2019
Other		Internet of Things (IoT) Trust Concerns Other (Initial Public Draft) Internet of Things (IoT) Trust Concerns 10/17/2018 Status:Draft	Draft	10/17/2018
SP	800-71	Recommendation for Key Establishment Using Symmetric Block Ciphers SP 800-71 (Initial Public Draft) Recommendation for Key Establishment Using Symmetric Block Ciphers 7/02/2018 Status:Draft	Draft	7/02/2018
IR	8193	National Initiative for Cybersecurity Education (NICE) Framework Work Role Capability Indicators: Indicators for Performing Work Roles IR 8193 (Initial Public Draft) National Initiative for Cybersecurity Education (NICE) Framework Work Role Capability Indicators: Indicators for Performing Work Roles 11/08/2017 Status:Draft	Draft	11/08/2017
Project Description		Privileged Account Management: Securing Privileged Accounts for the Financial Services Sector Project Description (Initial Public Draft) Privileged Account Management: Securing Privileged Accounts for the Financial Services Sector 10/12/2017 Status:Draft	Draft	10/12/2017
Project Description		Authentication for Law Enforcement Vehicle Systems Project Description (Initial Public Draft) Authentication for Law Enforcement Vehicle Systems 9/13/2016 Status:Draft	Draft	9/13/2016
IR	8144	Assessing Threats to Mobile Devices & Infrastructure: the Mobile Threat Catalogue IR 8144 (Initial Public Draft) Assessing Threats to Mobile Devices & Infrastructure: the Mobile Threat Catalogue 9/12/2016 Status:Draft	Draft	9/12/2016
Project Description		Securing Non-Credit Card, Sensitive Consumer Data: Consumer Data Security for the Retail Sector Project Description (Initial Public Draft) Securing Non-Credit Card, Sensitive Consumer Data: Consumer Data Security for the Retail Sector 5/09/2016 Status:Draft	Draft	5/09/2016
SP	800-154	Guide to Data-Centric System Threat Modeling SP 800-154 (Initial Public Draft) Guide to Data-Centric System Threat Modeling 3/14/2016 Status:Draft	Draft	3/14/2016

View All Publications

Current Publications

NIST Series Pubs
- Final Pubs
- Drafts Open for Comment
- Drafts (all)
- View By Series
  - FIPS (standards)
  - SP 800 (guidance)
  - SP 1800 (practice guides)
  - SP (all subseries)
  - IR (interagency/internal reports)
  - CSWP (cybersecurity white papers)
  - ITL Bulletins
Other Pubs