Lock

SP 800-53 Control Overlays for Securing AI Systems COSAiS

Overview

August 14, 2025: The NIST SP 800-53 Control Overlays for Securing AI Systems Concept Paper is available for comment, and we welcome stakeholders to join the NIST Overlays Securing AI Systems Slack Collaboration to engage in facilitated discussions with the NIST principal investigators and other subgroup members, share ideas, provide real-time feedback, and contribute to overlay development.

Feedback about the concept paper and questions about the development of the overlays can be sent to [email protected].

The Control Overlays for Securing AI Systems (COSAiS) project will develop a series of overlays for securing AI systems using the NIST Special Publication (SP) 800-53 controls. The control overlays will also leverage NIST SP 800-218A, Draft NIST AI 800-1, and NIST AI 100-2e2025.

The control overlays are an implementation-focused series of guidelines that address use cases involving different types of AI systems and specific AI system components (e.g., training and test data, model weights and configuration settings). The overlays are focused on protecting the confidentiality, integrity, and availability of information and users for each of the following proposed use cases:

Adapting and Using Generative AI – Assistant/Large Language Model (LLM)
Using and Fine-Tuning Predictive AI
Using AI Agent Systems (AI Agents) – Single Agent
Using AI Agent Systems (AI Agents) – Multi-Agent
Security Controls for AI Developers

Learn more about the audience, purpose, and draft description of each use case in the concept paper and here.

Relationship between NIST cybersecurity and AI publications, and the Overlays for Security AI Systems Project

Collaborate on Slack

SLACK provides an open community of interest to share ideas and feedback for the development of the control overlays for securing AI systems. The NIST Overlays Securing AI Systems Slack Collaboration page provides information about joining the community and the Code of Conduct.