The Secure and Trustworthy Cyberspace (SaTC) program, under NSF solicitation 24-504, aims to support research in cybersecurity and privacy, addressing the fragility and vulnerabilities of today’s increasingly networked and distributed systems. This program is a multidisciplinary initiative seeking transformative approaches to design, build, and operate cyber systems securely, while also enhancing privacy. The SaTC program aligns with several national strategies, including the Federal Cybersecurity Research and Development Strategic Plan and the National Privacy Research Strategy. The program is open for proposals at any time, allowing flexibility for interested researchers to apply when ready.

The SaTC program welcomes proposals under three designations: CORE, EDU, and TTP. The CORE designation is for general cybersecurity and privacy research projects. EDU-designated proposals focus specifically on cybersecurity education and workforce development, supporting activities like curricular development and teacher training. The TTP (Transition to Practice) designation is aimed at transitioning successful cybersecurity research into operational environments, bridging the gap between academic research and practical implementation. Each designation has specific project sizes: Small projects (up to $600,000 over three years), Medium projects ($600,001 to $1,200,000 over four years), and EDU projects (up to $400,000, or $500,000 for projects involving collaboration between cybersecurity and education experts).

The program spans a broad range of research topics, including cryptographic techniques, cyber-physical systems, data science, and AI security, as well as social, behavioral, and economic aspects of cybersecurity. SaTC is also interested in more applied topics such as intrusion detection, human-centric computing, information integrity, and secure software design. Of particular note, the solicitation highlights emerging areas such as quantum computing security, generative AI security, and supply chain security. The NSF encourages interdisciplinary collaboration, and proposals may focus on advancing cybersecurity research within a single discipline or across multiple disciplines.

Eligibility for this program includes institutions of higher education and non-profit organizations associated with educational or research activities within the U.S. Each institution can submit multiple proposals, and individual researchers are allowed to participate as a PI or co-PI on up to four proposals per year, with specific limits on CORE, TTP, and EDU proposals. Proposals from Minority Serving Institutions (MSIs) are particularly encouraged to apply. All proposals must include a “Relevance to Secure and Trustworthy Cyberspace” section that discusses the potential impact of the research in terms of the SaTC program's goals.

Proposals should be prepared in accordance with NSF’s Proposal and Award Policies and Procedures Guide, with the option to submit through Research.gov or Grants.gov. The submission requirements vary depending on the project size and designation, but in general, proposals must include a detailed project description, a budget justification, and supplementary documents such as a data management plan. Medium projects involving more than one investigator must also provide a collaboration plan. Proposals for the TTP designation must include an implementation plan for transitioning the research to practice, while EDU proposals must include specific plans for assessing the effectiveness of educational activities.

The NSF reviews proposals based on intellectual merit and broader impacts, which include the project's potential to advance cybersecurity and privacy and to benefit society. Reviewers will also consider factors like collaboration effectiveness, the proposed project's scalability, and how well it aligns with SaTC’s objectives. For Medium projects, there is an additional requirement for a Broadening Participation in Computing (BPC) plan, which must address goals, strategies, intended populations, and evaluation methods to support underrepresented groups in computing fields.

The estimated funding for this solicitation is $69 million annually, with about 90 awards anticipated across all categories. Awards may be in the form of either standard or continuing grants, depending on the project type and duration. Grant recipients are expected to participate in bi-annual SaTC Principal Investigator meetings, which provide an opportunity for funded researchers to engage with peers and federal representatives, sharing insights and advancements in cybersecurity research. Reporting requirements include annual progress reports and a final report at the project's conclusion, documenting outcomes and any significant findings.

For further inquiries about the SaTC program, applicants are advised to contact program directors listed in the solicitation, or visit the SaTC program page for additional resources and updates.