Skip to content
Longterm Wiki
Back

NIST COSAiS: Control Overlays for Securing AI Systems

government
NIST·csrc.nist.gov/projects/cosais

Credibility Rating

5/5
Gold(5)

Gold standard. Rigorous peer review, high editorial standards, and strong institutional reputation.

Rating inherited from publication venue: NIST

This NIST government project is directly relevant to AI safety governance and deployment security, providing official U.S. standards-body guidance for securing AI systems in operational environments.

Metadata

Importance: 55/100guidance documentreference

Summary

The NIST COSAiS project develops security control overlays based on NIST SP 800-53 to address unique security challenges of AI systems, including predictive AI and generative AI. It builds on existing NIST frameworks (SP 800-218A, AI 600-1, AI 100-2) to provide practical, standardized security guidance for organizations deploying AI. The project actively solicits stakeholder feedback through workshops and collaboration channels.

Key Points

  • Develops security control overlays extending NIST SP 800-53 specifically for AI system security contexts
  • Integrates multiple existing NIST AI frameworks including SP 800-218A (secure AI development) and AI 100-2 (adversarial ML)
  • Initially focuses on a predictive AI overlay, with broader coverage of AI system types planned
  • Employs participatory development via workshops, Slack channels, and email feedback solicitation
  • Provides practical compliance-oriented guidance bridging general cybersecurity controls and AI-specific risks

Cited by 1 page

PageTypeQuality
NIST AI Risk Management Framework (AI RMF)Policy60.0

Cached Content Preview

HTTP 200Fetched Mar 15, 20268 KB
**You are viewing this page in an unauthorized frame window.**

This is a potential security issue, you are being redirected to [https://csrc.nist.gov](https://csrc.nist.gov/).

![](https://csrc.nist.gov/dist/uswds/img/icon-dot-gov.svg)

**Official websites use .gov**

A
**.gov** website belongs to an official government
organization in the United States.


![](https://csrc.nist.gov/dist/uswds/img/icon-https.svg)

**Secure .gov websites use HTTPS**

A
**lock** (
LockLocked padlock icon) or **https://** means you’ve safely connected to
the .gov website. Share sensitive information only on official,
secure websites.


[Information Technology Laboratory](https://www.nist.gov/itl)

[Computer Security Resource Center](https://csrc.nist.gov/)

[![CSRC Logo](https://csrc.nist.gov/CSRC/Media/images/nist-logo-csrc-white.svg)](https://csrc.nist.gov/)

[![CSRC Logo](https://csrc.nist.gov/CSRC/Media/images/nist-logo-csrc-white.svg)](https://csrc.nist.gov/)

[Projects](https://csrc.nist.gov/projects)

# SP 800-53 Control Overlays for Securing AI Systems COSAiS

[Share to Facebook](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fcsrc.nist.gov%2Fprojects%2Fcosais) [Share to X](https://x.com/share?url=https%3A%2F%2Fcsrc.nist.gov%2Fprojects%2Fcosais) [Share to LinkedIn](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fcsrc.nist.gov%2Fprojects%2Fcosais&source=csrc.nist.gov) [Share ia Email](mailto:?subject=csrc.nist.gov&body=Check%20out%20this%20site%20https://csrc.nist.gov/projects/cosais)

#### Project Links

[Overview](https://csrc.nist.gov/projects/cosais)[FAQs](https://csrc.nist.gov/Projects/cosais/faqs)[Events](https://csrc.nist.gov/Projects/cosais/events)[Publications](https://csrc.nist.gov/Projects/cosais/publications)

### Overview

expand all collapse all

Recent Updates

**January 8, 2026:** To facilitate discussion at the [Cyber AI Profile Workshop #2](https://www.nccoe.nist.gov/get-involved/attend-events/cyber-ai-workshop-2) on January 14, 2026, an [_**annotated outline (discussion draft) of Control Overlays for Securing AI Systems: Using and Fine-Tuning Predictive AI**_](https://csrc.nist.gov/csrc/media/Projects/cosais/documents/COSAiS-Predictive-AI-annotated-outline-Jan2026.pdf) is available for review. Feedback is welcomed at the workshop, through ongoing engagement in the COSAiS Slack Channel, and by email to [overlays-securing-ai@list.nist.gov](mailto:overlays-securing-ai@list.nist.gov?subject=Comments%20-%20Predictive%20AI%20Overlay%20Annotated%20Outline). Initial feedback on this annotated outline should be submitted by February 13, 2026 to ensure consideration for inclusion in the initial public draft.

**August 14, 2025:** The [NIST SP 800-53 Control Overlays for Securing AI Systems Concept Paper](https://csrc.nist.gov/csrc/media/Projects/cosais/documents/NIST-Overlays-SecuringAI-concept-paper.pdf) is available for comment, and we welcome stakeholders to join the [NIST Overlays Securing AI Systems Slack Collaborati

... (truncated, 8 KB total)
Resource ID: d63d3ee303806c47 | Stable ID: MjY5ZjExYm