Katerina Megas, program manager for National Institute of Standards and Technology's Cybersecurity for Internet of Things program, said in a recent summit that agencies must be aware of challenges that IoT brings in cybersecurity, FCW reported Thursday. Megas leads a program seeking to establish cybersecurity standards that would guide federal agencies' usage of IoT devices.Read More »
The National Institute of Standards and Technology has released an updated draft of its Risk Management Framework designed to guide federal agencies in protecting their information systems.
The agency said Tuesday the update aims to create a better correlation between the risk management processes and activities at the executive level and those at the operational level, as well as standardize critical risk management preparatory activities at all risk management efforts.
The National Institute of Standards and Technology is sourcing for comments to formulate a publication that would inform agencies and organizations on the cybersecurity risks linked with Internet-of-Things devices. With "Considerations for Managing Internet of Things Cybersecurity and Privacy Risks," NIST intends to increase awareness on the effects of IoT devices on privacy and cybersecurity, the agency said Monday.Read More »
The National Defense Industrial Association has found that the revised Defense Federal Acquisition Regulation Supplement and continued development of the National Institute of Standards and Technology cybersecurity framework create burdens on defense contracting, National Defense reported Tuesday. The study, “Implementing Cybersecurity in DoD Supply Chains", describes how defense contractors are responding to increasing regulation requirements.Read More »
The National Institute of Standards and Technology has launched a new project that aims to develop a privacy framework providing organizations access to technologies while ensuring data privacy.Read More »
The National Institute of Standards and Technology has begun to revise two guidance documents meant to help organizations manage the cybersecurity posture of mobile applications.Read More »
The National Institute of Standards and Technology has partnered with the Institute of Electrical and Electronics Engineering in an effort to develop interoperability standards for cloud computing platforms, MeriTalk reported Wednesday. Robert Bohn, NIST’s cloud computing program manager, said at an FCW-hosted Wednesday the agency aims to formulate a concept to support …Read More »
Ron Ross, a senior computer scientist at the National Institute of Standards and Technology, has said federal agencies should address complexity with their technology platforms as they counter cybersecurity threats, MeriTalk reported Thursday. “The adversary works in the world of the stack, and that complexity is where they thrive,” he said …Read More »
The Senate has passed a bipartisan bill that would allot resources to protect the cyber assets of small businesses under the National Institute of Standards and Technology. Senators unanimously voted to pass the NIST Small Business Cybersecurity Act that seeks to address the needs of small businesses in using the …Read More »
The National Institute of Standards and Technology has released the second draft of a handbook that features sample implementations of the Derived Personal Identity Verification Credentials System. The DPC System provides secure access to electronic resources through mobile devices. It is a variant of the PIV system, which was designed in response to a 2004 presidential directive to standardize access security mechanisms in federal agencies.Read More »