Security, Privacy, and Trust in Cyberspace | 25 515

Frequently Asked Questions (FAQs) - NSF SaTC 2.0 (Security, Privacy, and Trust in Cyberspace)

1) What is the SaTC 2.0 program?

SaTC 2.0 is the National Science Foundation (NSF) Security, Privacy, and Trust in Cyberspace program. It is a discretionary grant opportunity focused on strengthening trust in modern cyberspace, including security, privacy, and resilience in the presence of malicious intent.

2) What does NSF mean by "trust" in SaTC 2.0?

In SaTC 2.0, "trust" is a broad concept that includes security, privacy, and resilience. The program emphasizes not only technical protections, but also the social and technical conditions that shape how trust is formed, maintained, and potentially eroded in systems people rely on.

3) What types of harms or risks is the program trying to address?

The solicitation highlights outcomes such as disruption of critical systems, theft of intellectual property and sensitive data, privacy violations affecting individuals and governments, amplification of social inequities, and broader risks to livelihoods and reputations. It also emphasizes that persistent attacks can erode public confidence in digital decisions and processes.

4) Is SaTC 2.0 only about finding vulnerabilities and patching systems?

No. While technical vulnerabilities matter, SaTC 2.0 also emphasizes understanding how trust works across social and technical dimensions. This can include helping people and institutions better understand cyber risk, improving public awareness, and contributing to developing a well-trained security and privacy workforce.

5) Which NSF directorates participate in SaTC 2.0?

SaTC 2.0 spans multiple NSF directorates, including Computer and Information Science and Engineering (CISE), Mathematical and Physical Sciences (MPS), Social, Behavioral and Economic Sciences (SBE), and STEM Education (EDU).

6) Does SaTC 2.0 support multidisciplinary proposals?

Yes. The program is positioned as multidisciplinary and can support proposals grounded in computing and systems research, formal methods and mathematical foundations, human factors and organizational behavior, or education and workforce development, as long as they align with the goal of building trustworthy cyber ecosystems.

7) What proposal designations (tracks) are available under SaTC 2.0?

Proposals must be submitted under one of three designations: Research (RES), Education (EDU), or Seedling (SEED). Each designation has its own budget and duration limits.

8) What are the budget and duration limits for the Research (RES) designation?

RES proposals may request up to $1,200,000 total for up to four years.

9) Are there extra requirements for larger RES proposals?

Yes. RES proposals requesting more than $600,000 have additional requirements, including plans related to Broadening Participation in Computing and collaboration.

10) What is the optional Transition to Education (TTE) plan for RES proposals?

RES projects may include an optional Transition to Education (TTE) plan intended to help translate research ideas into educational activities or materials alongside the research effort. The TTE amount is capped at $50,000 and must be included within the overall RES budget request (it is not an add-on above the RES maximum).

11) What are the budget and duration limits for the Education (EDU) designation?

EDU awards may request up to $500,000 for up to three years.

12) Can EDU proposals request more than $500,000?

Yes, in a specific case: projects that are primarily education research may request up to an additional $100,000 beyond the $500,000 cap when there is clear collaboration between cybersecurity subject matter experts and education researcher(s) on the PI team.

13) What is the Seedling (SEED) designation and what are its limits?

SEED supports smaller, focused efforts tied to special topics announced through accompanying Dear Colleague Letters. SEED proposals may request up to $300,000 for up to two years.

14) What organizations are eligible to apply?

Eligibility is limited to (1) U.S.-based, non-profit, non-academic organizations connected to research or education (such as museums, observatories, labs, and professional societies) and (2) accredited U.S. institutions of higher education, including community colleges and four-year universities.

15) Are for-profit organizations eligible to apply or lead proposals?

The opportunity description limits eligibility to U.S.-based, non-profit, non-academic organizations connected to research or education and accredited U.S. institutions of higher education. It also states that individuals primarily employed by for-profit non-academic organizations are not eligible to serve as PI, co-PI, or other senior/key personnel.

16) Who is eligible to serve as PI, co-PI, or other senior/key personnel?

At the time of submission, individuals serving as PI, co-PI, or other senior/key personnel must hold either (a) a tenured or tenure-track position, or (b) a primary, full-time paid research or teaching appointment, at a U.S.-based campus of an eligible organization.

17) Are people based at overseas branch campuses eligible to serve as PI or co-PI?

No. The opportunity states that individuals based at overseas branch campuses of U.S. universities are not eligible to serve as PI, co-PI, or other senior/key personnel.

18) Can a proposal include work at an international branch campus of a U.S. institution?

Yes, but if funding would go to an international branch campus of a U.S. institution (including through subawards or consultants), the proposal must clearly explain why the overseas work is beneficial and why the activities cannot be performed at the U.S. campus.

19) What is the Funding Opportunity Number for this NSF solicitation?

The Funding Opportunity Number is 25-515.

20) What type of funding instrument is used?

The listing describes the funding instrument as a grant.

21) What is the focus area of this opportunity?

The opportunity is focused on science and technology research and development (R&D), specifically aimed at improving security, privacy, and trust in cyberspace.

22) What is the posted award ceiling?

The posted award ceiling aligns with the Research (RES) track maximum of $1,200,000.

23) What is the closing date listed for this opportunity?

The original closing date listed is 2025-09-29.

24) Which CFDA numbers are associated with this opportunity?

The opportunity lists CFDA numbers 47.049, 47.070, 47.075, and 47.076.

25) What kinds of project outcomes are SaTC 2.0 teams expected to connect to?

SaTC 2.0 is positioned for teams that can connect rigorous research and/or education efforts to measurable improvements in cybersecurity and privacy outcomes, while also addressing the human, organizational, and societal factors that determine whether people actually trust and safely rely on cyber systems.