NIST

NIST Extends Public Comment Period for NIST 2025-21336

The National Institute of Standards and Technology (NIST) has extended the public comment period for NIST 2025-21336. This notice provides an updated deadline for stakeholders to submit their feedback on the proposed guidelines.

NIST Removes Obsolete Advanced Technology Program Regulations

NIST has removed regulations for the Advanced Technology Program (ATP) and the Technology Innovation Program (TIP). This action is necessary because the underlying statutory authorization has been repealed and the programs are no longer active. The removal aims to prevent public confusion and ensure NIST's regulations are current.

NIST Removes Obsolete Toy Firearm Marking Requirements

NIST is removing its regulation setting forth marking requirements for toy firearms. This action is necessary because statutory amendments made by the CHIPS and Science Act of 2022 rendered the regulation obsolete, transferring authority to the Consumer Product Safety Commission (CPSC). The removal aims to prevent public confusion and improve administrative efficiency.

NIST Extends Public Comment Period for 2025-17840

The National Institute of Standards and Technology (NIST) has extended the public comment period for document 2025-17840. This notice provides an updated deadline for stakeholders to submit their feedback on the proposed regulatory text.

NIST RFI on AI Agents Security Considerations

NIST's Center for AI Standards and Innovation (CAISI) has issued a Request for Information (RFI) seeking stakeholder input on practices for securing AI agent systems. The RFI aims to gather insights on measuring and improving the security of autonomous AI systems, which are vulnerable to various attacks.

NIST Guidelines for API Protection in Cloud-Native Systems

The National Institute of Standards and Technology (NIST) has updated its guidelines for API protection in cloud-native systems. This update, NIST SP 800-228-upd1, provides recommendations for identifying risks and implementing controls throughout the API lifecycle.

NIST CSF 2.0 Cybersecurity Risk Management Guidance

The National Institute of Standards and Technology (NIST) has released version 2.0 of its Cybersecurity Framework (CSF). This updated guidance provides a comprehensive taxonomy for organizations of all sizes and sectors to manage cybersecurity risks, offering a flexible approach to assessing and communicating cybersecurity efforts.

NIST Cybersecurity Framework 2.0 Profiles and Resources

The National Institute of Standards and Technology (NIST) has released updated resources for its Cybersecurity Framework (CSF) 2.0, including organizational profile templates and community profiles. These resources aim to help organizations assess and improve their cybersecurity posture.

NIST Cybersecurity Framework 2.0 Implementation Resources

The National Institute of Standards and Technology (NIST) has released quick start guides and implementation resources for the Cybersecurity Framework (CSF) 2.0. These resources aim to help organizations of all sizes, including small businesses, understand and implement the updated framework.

NIST Cybersecurity Framework (CSF) 2.0 Anniversary and Updates

NIST is celebrating the two-year anniversary of the Cybersecurity Framework (CSF) 2.0. The blog post highlights updates and resources released over the past two years, including expanded guidance on governance and informative references to other standards, emphasizing the framework's widespread adoption and ongoing development.