What is NIST (National Institute of Standards and Technology)?

US government agency that publishes many security standards: NIST 800-53 (controls), NIST CSF (framework), NVD (vulnerability database), PQC (post-quantum) standards.

Full explanation

NIST publications are US-government references but are adopted globally. NIST 800-53 is the control catalog used by FedRAMP. NIST CSF (Cybersecurity Framework) is a general-purpose risk framework. NIST runs the National Vulnerability Database (NVD), which augments CVE data with CVSS scores.

Example

NIST SP 800-63-3 Digital Identity Guidelines specify password + MFA requirements used in many regulations.

Guide

Password hashing — Argon2id is the answer, here is how

FAQ

Is NIST enforcement-level?

NIST publications are standards. Adoption is via other mechanisms (FISMA, FedRAMP, contract requirements).

What is NIST (National Institute of Standards and Technology)?

Full explanation

Example

Related

FAQ