R&D support for secure AI at NIST's NCCoE — a federal contract (USAspending)
Support services for research and development on secure AI at NIST's National Cybersecurity Center of Excellence (NCCoE).
Contract key facts
- RecipientTHE MITRE CORPORATION
- Contract value$4,228,572 (≈$4.2M)
- Awarding agencyDepartment of Commerce
- Awarding sub-agencyNational Institute of Standards and Technology
- Award typeDELIVERY ORDER
- Period of performance2021-09-30 〜 2024-11-30
- Contract ID (PIID)1333ND21FNB770216
Contract scope (original)
NCCOE SECURE ARTIFICIAL INTELLIGENCE R&D SUPPORT SERVICES
Key points
- A services contract supporting research and development on secure AI at NIST-operated NCCoE.
- The source description reads "NCCOE SECURE ARTIFICIAL INTELLIGENCE R&D SUPPORT SERVICES."
- NCCoE is a public-private hub that demonstrates usable security via reference implementations and practice guides.
- NIST is a standards and guidelines body, not a regulator, so its output spreads as a shared industry yardstick.
- Specific methods, target models, and deliverables are not stated in the source, so we do not speculate.
The NCCoE (National Cybersecurity Center of Excellence) is a public-private collaboration hub operated by NIST (the U.S. National Institute of Standards and Technology). Its role is to demonstrate practical cybersecurity through reference implementations and practice guides that organizations can actually use. "Secure AI" here refers to the question of how to protect AI models and the systems built around them from threats such as malfunction, tampering, data leakage, and adversarial inputs. As AI spreads into government, healthcare, and finance, there is growing need to treat the underlying models and data themselves as potential attack surfaces.
What makes this work notable is that it addresses AI not in terms of "capability" but in terms of "robustness and defensibility," approached through the lens of standardization. NIST is not a regulator but a standards and guidelines body, so its output tends to propagate not as a single product but as a shared yardstick the whole industry can reference. If evaluation methods and design best practices for secure AI are consolidated, they can influence not only federal procurement but also how private-sector systems are designed.
The specific research themes, target models, and deliverables of this contract are not stated in the source description, so we do not go further. Viewed across the field, it illustrates how, with the spread of generative AI and machine learning, the focus of security is expanding from "networks and endpoints" toward "the lifecycle of models and data."
Why it matters
As AI spreads, the focus of security is widening from networks and endpoints toward the lifecycle of models and data. NCCoE outputs tend to become shared industry reference points rather than single products, so they can shape the assumptions behind private-sector AI system design as well as federal procurement.
FAQ
What is the NCCoE?
What does "secure AI" mean here?
Sources (primary)
This article is an independent organization based on the U.S. official spending data below. Verify the exact, latest details with the official source.
- USAspending (award details)
- Contract ID (PIID):1333ND21FNB770216