NIST’s cybersecurity framework (CSF) now explicitly aims to help all organizations — not just those in critical infrastructure, its original target audience — to manage and reduce risks. NIST has updated the CSF’s core guidance and created a suite of resources to help all organizations achieve their cybersecurity goals, with added emphasis on governance as well as supply chains. This update is the
Automated Control-Based AssessmentSupporting Control-Based Risk Management with Standardized Formats Learn More The Open Security Controls Assessment Language (OSCAL) is a NIST-led initiative developed in collaboration with industry to modernize and automate the processes of security and compliance. It provides open, machine-readable formats available in XML, JSON, and YAML that streamline control
国立標準技術研究所(こくりつひょうじゅんぎじゅつけんきゅうしょ、英: National Institute of Standards and Technology, NIST)は、アメリカ合衆国の国立の計量標準研究所、アメリカ合衆国商務省配下の技術部門であり非監督(non-regulatory)機関。1901年から1988年までは国立標準局 (英: National Bureau of Standards, NBS) と称していた。その公式任務は次の通り[1]。 経済的(安全)保障を強化し生活の質を高めるような手法で、計量学や標準規格、産業技術を進歩させることによって、アメリカの技術革新と産業競争力を促進することが目的である。 —NIST 2007会計年度(2006年10月1日-2007年9月30日)の予算は約8億4330万ドルだった。2009年の予算は9億9200万ドルだが、アメリカ復興
The Secretary of Commerce has approved three Federal Information Processing Standards (FIPS) for post-quantum cryptography: FIPS 203, Module-Lattice-Based Key-Encapsulation Mechanism Standard FIPS 204, Module-Lattice-Based Digital Signature Standard FIPS 205, Stateless Hash-Based Digital Signature Standard These standards specify key establishment and digital signature schemes that are designed to
NIST Scraps Passwords Complexity and Mandatory Changes in New Guidelines Using a mixture of character types in your passwords and regularly changing passwords are officially no longer best password management practices according to new guidelines published by the US National Institute of Standards and Technology (NIST). In NIST’s latest version of its Password Guidelines, the leading security stan
NIST Special Publication 800-207 䝊䝻䝖䝷䝇䝖䞉䜰䞊䜻䝔䜽䝏䝱 Scott Rose Oliver Borchert Stu Mitchell Sean Connelly ᮏ᭩䛿䚸௨ୗ䜘䜚↓ᩱ䛷⏝ྍ⬟䛷䛒䜛䠖 https://doi.org/10.6028/NIST.SP.800-207 C O M P U T E R S E C U R I T Y 㑥ヂ䠖PwC䝁䞁䝃䝹䝔䜱䞁䜾ྜྠ♫ ᮏᩥ᭩䛿䚸ཎ䛻ἢ䛳䛶䛷䛝䜛䛰䛡ᛅᐇ䛻⩻ヂ䛩䜛䜘䛖ດ䜑䛶䛔䜎䛩䛜䚸ᛶ䚸 ṇ☜ᛶ䜢ಖド䛩䜛䜒䛾䛷䛿 䛒䜚䜎䛫䜣䚹 ⩻ヂ┘ಟయ䛿䚸ᮏᩥ᭩䛻グ㍕䛥䜜䛶䛔䜛ሗ䜘䜚⏕䛨䜛ᦆኻ䜎䛯䛿ᦆᐖ䛻ᑐ䛧䛶䚸䛔䛛䛺䜛ே ≀䛒䜛䛔䛿ᅋయ䛻䛴䛔䛶䜒㈐௵䜢㈇䛖䜒䛾䛷䛿䛒䜚䜎䛫䜣䚹 NIST Special Publication 800-207 䝊䝻䝖䝷䝇䝖䞉䜰䞊䜻䝔䜽䝏䝱 Scott Ros
Date Published: September 2020 (includes updates as of Dec. 10, 2020) Supersedes: SP 800-53 Rev. 5 (09/23/2020) Planning Note (08/27/2025): On August 27, 2025, NIST issued a minor release of SP 800-53 (Release 5.2.0) that includes: New Control/Control Enhancements: SA-15(13), SA-24, SI-02(07) Revisions to Existing Controls: SI-07(12) Updates to Control Discussion: SA-04, SA-05, SA-08, SA-08(14), S
Date Published: December 16, 2022 Comments Due: April 14, 2023 (public comment period is CLOSED) Email Questions to: [email protected] Author(s) David Temoshok (NIST), Diana Proud-Madruga (Electrosoft), Yee-Yin Choong (NIST), Ryan Galluzzo (NIST), Sarbari Gupta (Electrosoft), Connie LaSalle (NIST), Naomi Lefkovitz (NIST), Andrew Regenscheid (NIST) Announcement NIST requests comments on the draft f
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く