& Information Systems Digest

4 June 2024

CSIAC collects and publishes articles related to our technical focus areas on the web to share with the DoD community.

Software Transparency in SaaS Environments

Acknowledging key differences between SaaS and non-SaaS software, this paper discusses the value of SBOM-driven transparency for SaaS and offers recommendations for advancing transparency in SaaS software.

Click HERE for more information.


NIST Finalizes Updated Guidelines for Protecting Sensitive Information

Contractors and other organizations that do business with the federal government now have clearer, more straightforward guidance for protecting the sensitive data they handle. The National Institute of Standards and Technology (NIST) has finalized its updated guidelines for protecting this data, known as controlled unclassified information (CUI), in two publications:  Protecting Controlled Unclassified Information in Nonfederal…


Featured Notable Technical Inquiry

Current Landscape and Technologies of Binary Code Scanning Tools

This technical inquiry report provides information on the current landscape and technologies used to scan firmware samples for detection of cyber vulnerabilities.  The aim of this research is to identify and describe what binary code scanning (also called binary code analysis [BCA]) tools exist to scan firmware samples for the detection of cybervulnerabilities.  The Cybersecurity & Information Systems Information Analysis Center subject matter experts researched…

Learn More


CSIAC hosts live online technical presentations featuring a DoD research and engineering topic within our technical focus areas.



Staying Ahead of the Curve: Planning for the Migration to Post-Quantum Cryptography

This webinar will explore cryptographic discovery (inventory) and interoperability and performance of the post-quantum cryptographic (PQC) algorithms being standardized by the National Institute of Standards and Technology (NIST) as framed by the following two publications drafted with industry experts in NIST’s National Cybersecurity Center of Excellence Migration to PQC project: NIST SP 1800-38B, Migration to…



Systems Thinking Training

REGISTRATION IS NOW CLOSED.  THIS CLASS IS COMPLETELY FULL. Cybersecurity professionals know that the human element is a wild card in even the best-designed systems. As a complex socio-technical system with human and engineered components,…

Gartner Security & Risk Management Summit

In today’s rapidly evolving digital landscape, cybersecurity resilience underscores the importance of adapting and fortifying your organization’s defenses against an array of cyberthreats. Cybersecurity leaders must navigate a complex and ever-changing environment where cyberattacks can…

The 92nd Military Operations Research Symposium (MORS)

For over 55 years, the annual Military Operations Research Symposium (MORS) has been the opportunity for the national security community to exchange information, examine research, and discuss critical national security topics. Held in notable locations,…

Graph Exploitation Symposium 2024

The symposium brings together leading experts from universities, industry, and government to explore the state of the art and define a future roadmap in network science. The themes of this year’s symposium are domain-informed models…

Voice From the Community

Dr. Donna Ann Dulo

Computer Scientist, Aerospace Software Safety Engineer

Dr. Donna A. Dulo is the Chief of Cyber & Software Testing and a Test Director at the US Air Force Air Mobility Command Test & Evaluation Squadron. She provides cyber security and software safety analysis  for Air Force aircraft and weapon systems. Her focus is to ensure the cyber security, safety, reliability, and resilience of avionics systems to fulfill her squadron’s mission “To determine and communicate the operational impact of fielding mobility air forces capabilities, ensuring proven solutions in warfighter’s hands”.

Want to be featured in our Digest?

Submit your "Voice From the Community"