Tag Archives: National Institute of Standards and Technology

NIST Seeks Security Platforms for Data-Centric Security Management Project

Data-Centric Security

The National Institute of Standards and Technology (NIST) has asked industry and other interested stakeholders to provide products that could help demonstrate security technologies for a project meant to facilitate data-centric security management. NIST is seeking letters of interest to help the National Cybersecurity Center of Excellence (NCCoE) work with tech companies to address cyber challenges identified in the project titled Data Classification Practices: Facilitating Data-Centric Security Management.

Read More »

DHS Unveils Roadmap for Post-Quantum Cryptography Transition; Secretary Alejandro Mayorkas Quoted

Alejandro Mayorkas

The Department of Homeland Security (DHS) has released a guidance to assist organizations in securing their data and systems and mitigating risks and in preparing for the transition to post-quantum cryptography. The roadmap was developed in collaboration with the Department of Commerce’s National Institute of Standards and Technology.

Read More »

Rep. Eddie Bernice Johnson on NIST’s Efforts to Advance Trustworthy AI

Rep. Eddie Bernice

Rep. Eddie Bernice Johnson, D-Texas, said the federal government should work with the private sector to optimize the benefits of artificial intelligence to society and manage AI-related risks. Johnson, chairwoman of the House Committee on Science, Space and Technology, wrote that the National Institute of Standards and Technology (NIST) has initiated efforts to address AI risks in compliance with the National Artificial Intelligence Initiative Act.

Read More »

Kevin Stine: NIST to Update Cybersecurity Practices for President Biden’s EO

Kevin Stine

Kevin Stine, chief cybersecurity adviser for the National Institute of Standards and Technology (NIST), said the agency will work over the next months to deliver what is required by President Biden's executive order on cybersecurity amid the strict timelines. Stine said NIST will gather feedback and work to improve cybersecurity resources as federal agencies implement new guidelines for critical software in alignment with the EO.

Read More »

OMB Seeks to Ensure Critical Software Security With New Memo

Critical Software

The Office of Management and Budget (OMB) has issued a memorandum that provides agencies 60 days to identify critical software platforms that are in use or in the process of procurement and one year to implement security measures designated by the National Institute of Standards and Technology for the use of all critical software. 

Read More »

NIST Seeks Comments for Draft Publication on Cyber-Resilient Systems

Cybersecurity

The National Institute of Standards and Technology (NIST) seeks comments on a draft publication made to help organizations understand cyber resiliency outcomes from the perspective of a systems engineer. The publication, titled “Developing Cyber-Resilient Systems: A Systems Security Engineering Approach,” tackles how organizations can adopt a cybersecurity strategy that allows for internal system defense, instead of external defense, NIST said.

Read More »

GSA Seeks to Automate Validation of FedRAMP Security Authorization Packages

FedRAMP

The General Services Administration (GSA) will soon issue XML-automated validations to enable cloud services providers seeking an authority to operate to check whether all the required data is included in their security authorization packages prior to submission to the Federal Risk and Authorization Management Program (FedRAMP).

Read More »

Senators Offer Cybersecurity Recommendations for Commerce Department, NIST

Virtual Private Network

Sens. Maria Cantwell, D-Wash., and Roger Wicker, R-Miss., have called on the Department of Commerce (DOC), including the National Institute of Standards and Technology (NIST), to further build up efforts to protect digital systems, connected technologies and the country from cybersecurity threats amid the recent ransomware attacks. 

Read More »

NIST Releases Data Exchange Security Guide

Managing the Security

The National Institute of Standards and Technology has released guidance that outlines a four-pronged approach to protecting the data organizations share with other parties via different channels for information exchange. NIST said Tuesday that the “Managing the Security of Information Exchanges” guide outlines a four-pronged approach and recommends several measures to secure shared data.

Read More »

FedRAMP Issues Updated Guides for Developing Machine-Readable Authorization Packages

FedRAMP

The Federal Risk and Authorization Management Program (FedRAMP) has released updated resources and conversion tools meant to help vendors and other stakeholders advance the digitization of FedRAMP authorization packages for commercial cloud services using a common machine-readable language. FedRAMP is also requesting comments on the machine-readable formats and further guidance.

Read More »