X-CGP-ClamAV-Result: CLEAN
X-VirusScanner: Niversoft's CGPClamav Helper v1.25a (ClamAV 1.1.0/26946)
Return-Path: <cgplmgr@cni.org>
Sender: <cgplmgr@cni.org>
To: CNI-ANNOUNCE
Date: Thu, 22 Jun 2023 01:00:10 -0400
Message-ID: <redirect-40868585@cni.org>
X-Original-Return-Path: <cliff@cni.org>
Received: from [69.142.48.149] (account clifford@cni.org HELO [192.168.50.193])
  by cni.org (CommuniGate Pro SMTP 7.1.4)
  with ESMTPSA id 40868566 for cni-announce@cni.org; Thu, 22 Jun 2023 00:33:50 -0400
X-Original-Date: Thu, 22 Jun 2023 00:33:50 -0400
From: Cliff Lynch <cliff@cni.org>
X-Original-To: cni-announce@cni.org
X-Original-Message-ID: <20230622003350029196.e07a4bfb@cni.org>
Subject: NSF Guidelines for Agency Research Security Analytics Practice
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: GyazMail version 1.7.1

The US National Science Foundation (NSF) has very recently published its guidelines for agency research security practices. Basically, this document describes NSF's internal practices for research security  analysis -- who conducts these activities, what resources are used, and how information is validated and shared both within and beyond NSF. This is well worth a look and I think helps substantially with transparency around NSF practices; it should go a considerable distance to addressing some long-standing concerns. 

The announcement is here

https://new.nsf.gov/news/nsf-announces-guidelines-agency-research-security

and the guidelines proper can be found at

https://new.nsf.gov/research-security/guidelines

Note that there is a link to a PDF at the bottom of the guidelines page. 

Clifford Lynch
Director, CNI