Cyber and Network Security

Cyber and network security is focused on ensuring three security objectives of information technology systems: confidentiality, integrity, and availability. The Cyber and Network Security Program addresses NIST's statutory responsibilities in the domain and the near- and long-term scientific issues in some of the building blocks of IT and network security - cryptography, security testing and evaluation, access control, internetworking services and protocols (Domain Name System, Border Gateway Protocol, IPv6, Wi-Max, etc.), security metrics, vulnerability analysis, security automation, and security properties. These efforts will provide a more scientific foundation for cybersecurity, while maintaining a focus on near-term security issues in emerging technologies.

Programs/Projects:

• Security Content Automation Protocol (SCAP)
• Advanced Algorithm Development
• Technical Security Guidance Program
• Security for Internet Systems and IETF
• Combinatorial Methods for Software
• IT Product Evaluation/Validation Program
• Ontology for Mapping Platform Configurations to Security Properties
• Security Metrics
• IIP - Robust Inter-Domain Routing
• IIP - IP Next Generation
• IIP - Robust Internet Naming
• Identity Based Encryption
• Policy Machine

Latest Publications: