Emerging NIST guidance suggests that the long-standing practice of treating AI as “just software” for cybersecurity purposes is giving way to more novel approaches to managing AI risks.

The National Institute of Standards and Technology (NIST) recently released an official definition of what the federal government will regard as “critical software,” — a key, early stage step to ...

As the agency’s vulnerability database buckles under a flood of submissions, it’s planning to shift some responsibilities to other parties.

Federal agencies will no longer be required to get software attestations of compliance with Secure Software Development ...

On June 2 and 3, the U.S. National Institute of Standards and Technology (NIST) held a workshop focused on the President’s recent Executive Order on Improving the Nation’s Cybersecurity (Order) during ...

Researchers at the National Institute of Standards and Technology (NIST) have released an updated version of a computer system testing tool that can cut costs by more efficiently finding flaws. A ...

In an effort to improve consumers’ ability to make informed decisions about software they purchase, the National Institute of Standards and Technology (NIST) has drafted a set of cybersecurity ...

Combinatorial testing is a method for more effective software testing that the National Institute of Science and Technology (NIST) likes a lot. They ran studies from 1999 to 2004 showing that most ...

Anne Rawland Gabriel is a freelance journalist who specializes in business technology. She is a frequent contributor to the CDW family of technology magazines. The National Institute of Standards and ...

Key recommendations from the NIST’s latest guidance and why they are relevant to modern organizations developing and delivering software. Software supply chain (SSC) attacks continue to be one of the ...