Tag Archives: multifactor authentication

DHS CISO Paul Beckman Advises Use of Multifactor Authentication

Paul Beckman, chief information security officer at the Department of Homeland Security, said agencies must adopt multifactor authentication to prevent unauthorized access, Cyberscoop reported Tuesday. Beckman said at the Zero Trust Security Summit that he uses a second factor as an additional layer of security for email account logins. Second factor examples include authentication text messages.

Read More »

Suzette Kent on Federal Government’s Zero-Trust Architecture Implementation

Suzette Kent, federal chief information officer and a 2020 Wash100 Award winner, said federal agencies are making headway when it comes to implementing multifactor authentication, identity management, mobile security and other components of zero-trust architecture, FedScoop reported Tuesday.

Read More »

DoD Study Examines Compliance of Small, Large Firms With Cyber Standards; Kevin Fahey Quoted

A recent Department of Defense study says small and large contractors are struggling to comply with DoD’s new cybersecurity standards, Defense One reported Monday. “For the most part, the big companies do very well,” Kevin Fahey, assistant defense secretary for acquisition, told reporters at the Pentagon Monday. “But in no case do they meet everything that they thought they met.”

Read More »

Defense Innovation Board Issues White Paper on Zero Trust Architecture

The Defense Innovation Board approved at its quarterly meeting in Silicon Valley a white paper calling for the Pentagon to implement zero trust architecture to counter cybersecurity threats, Fedscoop reported Wednesday. The document titled “The Road to Zero Trust (Security)” notes that ZTA can help the Department of Defense track and block threat actors and manage rules of access for devices and users across the department to facilitate secure data sharing.

Read More »

Jose Arrieta: HHS Eyes Blockchain Tech Partnership With DISA for Identity Verification

Jose Arrieta, chief information officer at the Department of Health and Human Services, said HHS plans to team up with the Defense Information Systems Agency (DISA) to leverage the HHS Accelerate blockchain procurement system in identity management, Federal News Network reported Thursday. Arrieta said he plans to meet with DISA officials to discuss a pilot project to link the blockchain tool to a user’s mobile phone or wearable device to better track behavioral data for identity verification.

Read More »

Michael Duffy on Agencies’ Compliance With DHS Directive on DNS Tampering Campaign

Michael Duffy of the Department of Homeland Security said there are only “a handful” of agencies that still need to comply with the requirements of an emergency directive that DHS released in January to address Domain Name System tampering activities, FCW reported Friday. Duffy, acting deputy director of DHS’ federal network resilience division, said during a Thursday meeting of the Information Security and Privacy Advisory Board that those agencies deal with "external dependencies" on DNS providers that make the process challenging to adopt multifactor authentication.

Read More »

DHS’ Christopher Krebs Issues Directive to Address Domain Name System Tampering Campaign

The Department of Homeland Security has released an emergency directive to guide federal agencies how to address Domain Name System tampering activities. Attackers compromise DNS by targeting user credentials, altering DNS records and accessing valid encryption certificates that allow them to decrypt the redirected traffic, Christopher Krebs, director of DHS’ Cybersecurity and Infrastructure Security Agency, wrote in the directive released Tuesday.

Read More »