Tag Archives: National Institute of Standards and Technology

Senators Offer Cybersecurity Recommendations for Commerce Department, NIST

Cybersecurity Threats

Sens. Maria Cantwell, D-Wash., and Roger Wicker, R-Miss., have called on the Department of Commerce (DOC), including the National Institute of Standards and Technology (NIST), to further build up efforts to protect digital systems, connected technologies and the country from cybersecurity threats amid the recent ransomware attacks. 

Read More »

NIST Releases Data Exchange Security Guide

Managing the Security

The National Institute of Standards and Technology has released guidance that outlines a four-pronged approach to protecting the data organizations share with other parties via different channels for information exchange. NIST said Tuesday that the “Managing the Security of Information Exchanges” guide outlines a four-pronged approach and recommends several measures to secure shared data.

Read More »

FedRAMP Issues Updated Guides for Developing Machine-Readable Authorization Packages

Updated OSCAL

The Federal Risk and Authorization Management Program (FedRAMP) has released updated resources and conversion tools meant to help vendors and other stakeholders advance the digitization of FedRAMP authorization packages for commercial cloud services using a common machine-readable language. FedRAMP is also requesting comments on the machine-readable formats and further guidance.

Read More »

Former NIST Official Laurie Locascio Nominated Commerce Undersecretary for Standards, Technology

Laurie Locascio

The White House has named Laurie Locascio, a 28-year veteran of the National Institute of Standards and Technology (NIST) and current vice president of research at the University of Maryland, as President Biden's pick for commerce undersecretary for standards and technology. She also teaches at the university's bioengineering and pharmacology departments. 

Read More »

NIST Seeks to Improve Software Supply Chain Security With Two Guidelines

Supply Chain Security

The National Institute of Standard and Technology (NIST) has issued two documents meant to improve the integrity and security of the software supply chain in accordance with an executive order seeking to strengthen U.S. cybersecurity. NIST developed the two documents by hosting virtual workshops and seeking position papers to seek feedback and insights from the public.

Read More »

NIST Seeks Public Feedback on Draft About Commercial Satellite Cybersecurity

Commercial Satellite

The National Institute of Standards and Technology (NIST) asks the public to comment on a new draft document about the cybersecurity of commercial satellite activities. The document, titled “Introduction to Cybersecurity for Commercial Satellite Operations,” tackles how to manage cybersecurity risks of crewless space activities while considering space vehicle requirements.

Read More »

NIST Provides Funds for Phase 3 Comms Interoperability Project Under DHS SBIR Program

Comms Interoperability

The National Institute of Standards and Technology (NIST) has awarded Catalyst Communications Technologies a $2.9 million contract to commercialize an interoperable communications system under a program run by the Department of Homeland Security (DHS). The company will commercialize its product developed through the Small Business Innovation and Research (SBIR) program of DHS' Science and Technology (DHS S&T) Directorate. 

Read More »

FDA Encourages NIST to Consider Importance of 3rd-Party Software in Device Security

Food and Drug

The Food and Drug Administration (FDA) has advised the National Institute of Standards and Technology (NIST) to consider third-party software as a critical factor to the safety of a device. FDA said these third-party products must be classified as critical software if they are vital to a device's safety and support a device's definition.

Read More »

FedRAMP, NIST Release 1st Version of Open Security Controls Assessment Language

Virtual Cloud Computing

The Federal Risk and Authorization Management Program (FedRAMP) office and the National Institute of Standards and Technology (NIST) have introduced a machine-readable standard that works to automate the preparation, authorization and reuse of commercial cloud offerings for the government sector. The FedRAMP office expects OSCAL to help vendors prepare and review system security plans faster

Read More »

NCCoE Drafts Document to Guide Ransomware Risk Management

National Cybersecurity

The National Cybersecurity Center of Excellence (NCCoE) has issued a draft report made to help organizations manage risks related to ransomware attacks. NCCoE's Cybersecurity Framework Profile for Ransomware Risk Management draft defines security objectives to help parties prevent, address and recover from ransomware attacks, the National Institute of Standards and Technology (NIST) said Thursday.

Read More »