Computer Security Division

The Computer Security Division is one of six technical divisions in the Information Technology Laboratory.

The Computer Security Division (CSD) develops cybersecurity standards, guidelines, tests, and metrics to protect federal information systems. CSD helps to develop innovative security technologies that enhance the nation’s ability to address current and future computer and information security challenges. CSD’s research focuses on cryptography, automation, identity and access management, the Internet of Things, and public safety networks. The Division maintains a Computer Security Resource Center (CSRC), which provides access to NIST's cybersecurity- and information security-related projects, publications, news, and events. CSRC supports U.S. and international stakeholders in government, industry, and academia.

Image Representing Quantum Resistant Cryptography — Credit: Shutterstock

Post-Quantum Cryptography

Some engineers predict quantum computers will be a reality within the next 20 years. But it takes at least 20 years to deploy modern public key cryptography infrastructure. NIST is creating cryptographic systems that are secure against both quantum and present-day computers, while also interacting with existing communication protocol networks.

Image Representing Vulnerability Management and Security Automation — Credit: Shutterstock

National Vulnerability Database

The National Vulnerability Database grants access to the U.S. Government’s repository of vulnerability management data, represented using the Security Automation Protocol. The data enables automation of vulnerability management, security measurement, and compliance. Users also have access to security checklist references, security-related software flaws, misconfigurations, product names, and impact metrics.

Image Representing Security Conformance, Testing and Validation — Credit: Shutterstock

Security Testing, Validation and Measurement

NIST verifies cryptographic modules based on cryptographic standards through the Cryptographic Module Validation Program. Modules validated as conforming to specific standards are accepted by federal agencies for the protection of sensitive information.

For more information regarding the Computer Security Division, visit our group pages and our Computer Security Resource Center.

News and Updates

NIST Releases First 3 Finalized Post-Quantum Encryption Standards

August 13, 2024

NIST is encouraging computer system administrators to begin transitioning to the new standards as soon as possible.

NIST Publishes Automated Vehicles Workshop Report

June 4, 2024

NIST held a virtual workshop in September 2023 on Standards and Performance Metrics for On-Road Automated Vehicles, attracting over 600 attendees from industry

NIST Finalizes Updated Guidelines for Protecting Sensitive Information

May 14, 2024

Contractors and other organizations that do business with the federal government now have clearer, more straightforward guidance for protecting sensitive data.

NIST Automated Vehicles Team Visits Virginia Tech Transportation Institute to Discuss Collaborative Efforts

March 1, 2024

On February 28-29, 2024, the NIST Automated Vehicles team , representing multiple NIST laboratories, visited the Virginia Tech Transportation Institute (VTTI)

Software

Biometric Testing Software

NIST/ITL has had a long history of supporting biometric data interchange formats by developing conformance testing software. These suites of software are

Awards

2023 - Gold Medal Award---Dylan Yaga

For improving law enforcement, DHS, and U.S. Border Patrol operations by identifying over 1,000 errors in biometric data exchange standards.

Angela Robinson Receives 2023 Women in Technology Rising Star Award

Congratulations to Angela Robinson (CSD) for receiving the 2023 Women in Technology Rising Star Award on May 18th. This category honors a

Jeffrey M. Voas receives the Distinguished Career Award in Computer Science from Ram Sriram

Jeff Voas Wins 2023 Distinguished Career Award in Computer Science

Congratulations to Jeff Voas (CSD) for winning the 2023 Distinguished Career Award in Computer Science for foundational contributions in

Raghu Kacker (ACMD) and D. Richard Kuhn (CSD) awarded the ICST Most Influential Paper Award (MIP)

Congratulations to Raghu Kacker (ACMD) and D. Richard Kuhn (CSD) for recently winning the Most Influential Paper Award (MIP) award for a

Press Coverage

NIST Updates Risk Management Framework

GCN

May 10, 2018

The National Institute of Standards and Technology is updating its Risk Management Framework to help public- and private-sector organizations better protect

NIST document provides definitions for fog and mist computing

OpenGov Asia

April 24, 2018

A recently released document from the U.S. Commerce Department’s National Institute of Standards and Technology (NIST) strives to provide a definition that can

NIST initiates first call for lightweight cryptography to protect IoT devices

OpenGov Asia

April 23, 2018

The U.S. Commerce Department's National Institute of Standards and Technology(NIST) recently kicked off an effort to strengthen the cryptographic defense of

Show and Tell for Emerging Tech

GCN

April 11, 2018

NIST received more than 200 pages of comments on its draft Blockchain Technology Overview, according to NIST computer scientist Dylan Yaga.