NIST

news

NIST Releases Draft Security Feature Recommendations for IoT Devices

Submitted by willirn1 on Thu, 09/26/2019 - 11:29am

NIST Releases Draft Security Feature Recommendations for IoT Devices

"Core Baseline" guide offers practical advice for using everyday items that link to computer networks.

August 01, 2019

file

Tutorial: The Bugs Framework (BF) "Hands-On"

Submitted by Paul E. Black on Tue, 03/07/2017 - 9:23pm. Contributors:

ABSTRACT: Advancements of scientific foundation in cybersecurity rely on the availability of accurate, precise, and non-ambiguous definitions of software weaknesses (bugs) and descriptions of software vulnerabilities. The Bugs Framework (BF) organizes software weaknesses into distinct classes, such as buffer overflow (BOF), injection (INJ), faulty operation (FOP), and control of interaction frequency (CIF).

file

The Bug Framework (BF): A Taxonomy For Precise and Accurate Software Bug Descriptions

Submitted by akarns on Fri, 01/29/2016 - 12:50pm. Contributors:

Abstract:

file

Introducing Combinatorial Testing in a Large Organization: Pilot Project Experience Report

Submitted by rick.kuhn on Sat, 04/26/2014 - 8:17am. Contributors:

Abstract

file

Toward Precise and Accurate Descriptions of Weaknesses

Submitted by Paul E. Black on Fri, 04/25/2014 - 10:20am. Contributor:

Paul Black

Abstract:

MITRE's Common Weakness Enumeration (CWE) http://cwe.mitre.org/ is a list of several hundred classes of weakness that may be found in software. While it is a huge amount of progress over what was available a decade ago, there is still a lot of work to do. We propose some directions to significantly improve CWEs. These directions come from semantic templates, software fault patterns, and other work.

file

Foundations for Innovation in Cyber-Physical Systems

Submitted by Anonymous on Thu, 06/13/2013 - 4:44pm. Contributor:

Shyam Sunder

file

Access Control Policy Tool (ACPT), An Assurance Tool That Combines Symbolic Model Checking with Combinatorial Coverage

Submitted by TimTh on Tue, 05/14/2013 - 4:14pm. Contributor:

Vincent Hu

Presented as part of the 2013 HCSS conference.

ABSTRACT

news

New Reports Define Strategic Vision, Propose R&D Priorities for Future Cyber-Physical Systems

Submitted by Janos.Sztipanovits on Mon, 02/11/2013 - 12:02pm

Three new reports prepared for the National Institute of Standards and Technology (NIST) distill the perspectives of executives and technical experts from industry, academia and government on the "ifs" and the "what's next" of emerging intelligent systems-of-systems technologies.

The three reports are:

file

Maximizing Research Impact

Submitted by Katie Dey on Thu, 12/06/2012 - 10:49pm. Contributor:

Bill Newhouse

file

Foundations for Innovation in Cyber-Physical Systems

Submitted by Helen Gill on Mon, 10/08/2012 - 2:15pm. Contributor:

Shyam Sunder

Cyber-Physical Systems Virtual Organization

Read-only archive of site from September 29, 2023.

NIST Releases Draft Security Feature Recommendations for IoT Devices

NIST Releases Draft Security Feature Recommendations for IoT Devices

Tutorial: The Bugs Framework (BF) "Hands-On"

The Bug Framework (BF): A Taxonomy For Precise and Accurate Software Bug Descriptions

Introducing Combinatorial Testing in a Large Organization: Pilot Project Experience Report

Toward Precise and Accurate Descriptions of Weaknesses

Foundations for Innovation in Cyber-Physical Systems

Access Control Policy Tool (ACPT), An Assurance Tool That Combines Symbolic Model Checking with Combinatorial Coverage

New Reports Define Strategic Vision, Propose R&D Priorities for Future Cyber-Physical Systems

Maximizing Research Impact

Foundations for Innovation in Cyber-Physical Systems