Tag Archives: National Institute of Standards and Technology

FedRAMP’s Ashley Mahan on Increase in Cloud Services Reuse

Ashley Mahan

Ashley Mahan, director of the General Services Administration’s (GSA) Federal Risk and Authorization Management Program (FedRAMP), said that FedRAMP saw a 50 percent rise in government agencies reusing certified cloud services in fiscal year 2020 as those organizations continue to work to meet the telework requirements during the COVID-19 pandemic.

Read More »

NIST, FedRAMP Developing Programming Language to Help Automate Cloud Security Assessments

Cloud Security

The Federal Risk Authorization Management Program (FedRAMP) is working with the National Institute of Standards and Technology (NIST) to implement a universal programming language that can help accelerate cloud certification and drive automation in government operations. “What normally would take an assessor weeks to do, an OSCAL tool can perform in seconds,” said David Waltermire

Read More »

Former NIST Exec Donna Dodson Honored for Federal Cybersecurity Accomplishments

Donna Dodson

Donna Dodson, a 33-year veteran of the National Institute of Standards and Technology (NIST), has been selected for the Partnership for Public Service's Samuel J. Heyman Service to America Medal in recognition of her efforts to help public and private sector organizations address cyber threats. Dodson was recognized among 11 medalists 

Read More »

DOE Allots Funds to Help NIST Bolster Energy, Maritime Cybersecurity; Sean Plankey Quoted

Dept. of Energy

The Department of Energy has agreed to invest $3 million in research and development of tools and methods that support energy and maritime cybersecurity. DOE said Monday its Office of Cybersecurity, Energy Security and Emergency Response partnered with the National Institute of Standards and Technology to bolster cybersecurity in maritime transportation and energy grids.

Read More »

NIST Releases Draft Guidance on Data Integrity, Ransomware Protection

Data Integrity

The National Institute of Standards and Technology (NIST) has released a draft guidance to help agencies ensure the integrity of their data against ransomware threats in line with recognized cybersecurity requirements. The effort comes as part of NCCoE’s data integrity projects to improve understanding of architectures, capabilities and other resources to support a comprehensive data integrity strategy.

Read More »

NIST Announces New Round of SBIR Efforts; Mojdeh Bahar Quoted

Mojdeh Bahar

The National Institute of Standards and Technology (NIST) has selected 19 small businesses to develop new technologies through grants totaling over $4.4 million in value. The awardees will address various technology needs under phases one and two of the agency's Small Business Innovation Research (SBIR) program, NIST said Thursday.

Read More »

National Security Agency Launches the Center for Cybersecurity Standards; Neal Ziring Quoted

NSA

The National Security Agency (NSA) has launched a new office that will support NSA's mission to implement cybersecurity across critical systems. The Center for Cybersecurity Standards will coordinate with standardization entities regarding security requirements needed to protect national security systems, NSA said Tuesday.

Read More »

DoD Seeks Feedback on Interim Rule for CMMC Implementation

Cyber Workforce

The Department of Defense (DoD) is seeking comments on an interim rule to implement the Cybersecurity Maturity Model Certification framework and an assessment methodology as part of efforts to better protect unclassified data within the DoD supply chain and evaluate vendors’ implementation of cyber requirements. DoD introduced the interim rule as an amendment. 

Read More »

NIST Introduces New Method to Assess Phishing Cases

The Phish Scale

The National Institute of Standards and Technology (NIST)  has created a new method that organizations may use to protect themselves from phishing, a cyber attack that uses emails with malicious links potentially containing malware. The method, known as The Phish Scale, is designed to inform explanations behind the click rates of links found in phishing emails.

Read More »

NIST Releases Report on Forensic Science Concerns in Cloud Environments; Martin Herman Quoted

Cloud-Based

The National Institute of Standards and Technology (NIST) has issued a new report on forensic science challenges faced by law enforcement officers, auditors and other professionals in cloud environments. The report enumerated 62 cloud-related forensic challenges and one of those listed challenges is associated with data custodians at cloud service providers. 

Read More »