U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cybersecurity Framework Profile for PNT

The national and economic security of the United States is dependent upon reliable Positioning, Navigation, and Timing (PNT) services, a foundational capability in our nation's communication, transportation, financial, and energy infrastructures. Securing the use of PNT services will strengthen the resilience of the nation's critical infrastructures.

Applying the Cybersecurity Framework for the Responsible Use of PNT Services

NIST IR 8323 Foundational PNT Profile: Applying the Cybersecurity Framework for the Responsible Use of PNT Services can be used as part of a risk management program in order to help organizations manage cybersecurity risks to systems, networks, and assets that use PNT services. The PNT Profile provides guidance for establishing risk management approaches to achieve the desired outcomes commensurate with acceptable and responsible levels of risk that result from the disruption or manipulation of PNT data. The PNT Profile is not intended to serve as a solution or compliance checklist that would guarantee the responsible use of PNT services.
Status: Soliciting Comments

The NCCoE has published the draft NIST Internal Report (IR) 8323 Revision 2, Foundational PNT Profile: Applying the Cybersecurity Framework for the Responsible Use of Positioning, Navigation, and Timing (PNT) Services. 

The project team is seeking feedback on specific questions, which can be found in the news announcement. This publication is open for public comment through July 6, 2026. Use the comment form below to submit your feedback.  

NIST IR 8323 Rev. 2 (Initial Public Draft), Foundational PNT Profile: Applying the Cybersecurity Framework for the Responsible Use of Positioning, Navigation, and Timing (PNT) ServicesWeb Version NIST IR 8323 Rev. 2 (Initial Public Draft), Foundational PNT Profile: Applying the Cybersecurity Framework for the Responsible Use of Positioning, Navigation, and Timing (PNT) Services

The PNT Profile was developed using the NIST Cybersecurity Framework (CSF) to support risk management efforts for organizations that rely on PNT services. The profile provides a flexible structure for identifying and mitigating risks to systems, networks, and assets that use PNT signals and data, which are vulnerable to disruptions and manipulations—whether natural, manufactured, intentional, or unintentional.

Designed for broad applicability, the profile serves as a foundation for responsible use of PNT services, helping sector-specific agencies and industries tailor their risk management approaches.

Periodic updates to the NISTIR 8323 Foundational PNT Profile: Applying the Cybersecurity Framework for the Responsible Use of PNT Services enables continued adaptation to address evolving threats and to include the latest innovative and resilient PNT capabilities. By maintaining adaptability, the profile enables users to strengthen their cybersecurity posture while managing risks associated with forming and utilizing PNT signals and data.

Designed for broad applicability, the profile serves as a foundation for responsible use of PNT services, helping sector-specific agencies and industries tailor their risk management approaches.

Join the Community of Interest

Employee speaking on video call with colleagues on online briefing with laptop at home

A Community of Interest (COI) is a group of professionals and advisors who share business insights, technical expertise, challenges, and perspectives to guide NCCoE projects. COIs often include experts, innovators, and everyday users of cybersecurity and privacy technologies. Share your expertise and consider becoming a member of this project's COI. 

Tell us about yourself