Conference

MRC Vegas 2019

Wednesday, March 20, 2019

Help Stop Online Fraud Using Multi-factor Authentication

Wednesday, March 20 at 11:15am

According to a recent independent analysis, eCommerce fraud increased by 30 percent in 2017, compared to 2016, as malicious actors shift from using stolen credit card data in stores at the checkout counter to using stolen credit card data for fraudulent online shopping. Because online retailers cannot utilize all of the benefits of improved credit card technology, they should consider implementing stronger authentication for registered/returning customers to reduce the risk of eCommerce fraud.

Using industry best practices, federal cybersecurity standards and commercially-available products, the National Institutes of Standards and Technology (NIST) National Cybersecurity Center of Excellence (NCCoE) published a cybersecurity guide detailing how online retailers can implement multi-factor authentication (MFA) to help protect against fraudulent online purchases. The session, featuring senior engineers at NIST and cybersecurity vendors who collaborated on the project, will provide an overview of the example implementations and the risks being mitigated in terms of standards like the the NIST Cybersecurity Framework.

HIMSS19

Monday, February 11, 2019 to Friday, February 15, 2019

Engage with the NCCoE and NIST at the Healthcare Information and Management Systems Society (HIMSS) Annual Conference and Exhibition to learn how we are accelerating the deployment and use of secure, standards-based technologies to enhance cybersecurity.

Presentations

Education Session

Securing Picture Archiving and Communication Systems
Tuesday, February 12, 2019 at 3:00pm in FH06 in Room W320, Orange County Convention Center
 

Federal Health Pavilion Talks

Securing the Telehealth Ecosystem
Tuesday, February 12, 2019 at 4:45pm in Federal Health Pavilion , Booth 8267, Hall E
 

A Collaborative Approach to Health Cybersecurity
Thursday, February 14, 2019 at 9:45am in Federal Health Pavilion , Booth 8267, Hall E
 

Follow the conversation on Twitter through @NISTCyber, #NCCoE, and #HIMSS19.

 

RSA Conference 2019

Monday, March 4, 2019 to Friday, March 8, 2019

RSA Public Sector Day Keynote Presentation

Walter Copan, Under Secretary of Commerce for Standards and Technology and NIST Director
NIST’s Collaborative Approach to Cybersecurity – and Cultivating Trust
Monday, March 4, 10:30 a.m. - 11:15 a.m., Marriott Marquis, 780 Mission Street, San Francisco, CA 94103, Golden Gate B Meeting Room

NIST Director Walt Copan will be discussing the importance of collaboration and outlining NIST’s latest collaborative cybersecurity efforts at RSA. He will cover topics like: government agency risk management, small businesses, the Internet of Things, cryptography, artificial intelligence, and privacy.

Presentations

Your Data’s Integrity: Protect & Respond to Ransomware and Critical Events
Tuesday, March 5 at 2:20 p.m. –  3:10 p.m., Moscone South 203
At last year’s RSA Conference we shared ways to quickly recover from an event that alters or destroys data. This year, the NCCoE’s Anne Townsend is back with an entire suite that organizations can deploy to effectively identify, protect, detect, and respond to data integrity events. These solutions are follow-on projects to the NCCoE’s highly publicized NIST Special Publication (SP) 1800-11, Recovering from Ransomware and Other Destructive Events. Learn more about this session.

Can’t make it to the session? Learn more about our Data Integrity portfolio of projects.

Birds of a Feather Sessions

Grappling with Zero Trust Networking: How Are You Doing It?
Wednesday, March 6 at 7 a.m. –  7:50 a.m., Moscone West 3018, Table R

The concept of zero trust networking is gaining more momentum. Vendors are coming out with new technologies or re-positioning current products to align with zero trust initiatives. But is your organization actually implementing zero trust? How are you doing it? What have you learned? Join this Birds of a Feather session to discuss challenges and potential solutions to implementation from your peers.

Peer2Peer Sessions

Healthcare Cybersecurity: Helping Secure Emerging Health Technologies
Thursday, March 7 at 1:30 p.m. – 2:20 p.m., Moscone South 306

Join your fellow healthcare cybersecurity peers from across industry, government, and academia at the RSA Conference for this Peer2Peer Session led by the NCCoE’s Sue Wang. This session will assess current medical device security and discuss how health delivery organizations and care providers can help mitigate these risks as new technologies emerge. Seating is limited, so don’t wait to reserve your seat. Learn more about this session.

Check out what the NCCoE is doing to help improve the cybersecurity of healthcare organizations.

Demonstrations

Multifactor Authentication for E-Commerce (learn more about this NCCoE project)
Tuesday, March 5 at 12 p.m., NIST Booth #2367 South Expo
Wednesday, March 6 at 2 p.m., StrongKey Booth #2339 South Expo

Access Rights Management for the Financial Sector (learn more about this NCCoE project)
Wednesday, March 6 at 10 a.m., NIST Booth #2367 South Expo

Securing Wireless Infusion Pumps (check out our latest video on this project)
Thursday, March 7 at 10 a.m., NIST Booth #2367 South Expo

Mobile Application Single Sign-On (learn more about this NCCoE project)
Thursday, March 7 at 11 a.m., StrongKey Booth #2339 South Expo
Thursday, March 7 at 12 p.m., NIST Booth #2367 South Expo

Visit the NCCoE at the NIST Booth 2367/South Expo.

National Cybersecurity Center of Excellence: Practical Guidance for Cybersecurity

Friday, November 9, 2018

In this presentation, Harry Perper, Chief Engineer at The MITRE Corporation and Senior Cybersecurity Engineer at National Cybersecurity Center of Excellence at NIST, will provide insight into practical guidance for cybersecurity strategy. He’ll be discussing the NIST Cybersecurity Framework (CSF), providing an overview of the NIST NCCoE, as well as a review of one of the many cybersecurity solutions published by the NCCoE: Data Integrity - Recovering from Ransomware. Be prepared to leave an expert in protecting your business, and your clients’ businesses, from malware and other vulnerabilities.

FS-ISAC Fall Summit

Sunday, November 11, 2018 to Wednesday, November 14, 2018

NCCoE Director Donna Dodson will present a session titled "Strategies for Co-existing with TLS 1.3" at the 2018 FS-ISAC Fall Summit in Chicago, IL on Tuesday, November 13 from 4:00 p.m. to 4:45 p.m. The Internet Engineering Task Force (IETF) is currently rolling out version 1.3 of the Transport Layer Security (TLS) protocol designed to ensure forward secrecy for sessions to prevent pervasive monitoring and establish secure internet connections faster by streamlining the handshake process to maximize performance. This session will describe a proposed public-private collaboration to develop pragmatic solutions for security, compliance and fraud monitoring that do not rely on visibility into TLS connections.

NCCoE Senior Engineer Harry Perper will present a session titled "Privileged Account Management Techniques" on Wednesday, November 14 from 11:15 a.m. to 12:00 p.m. The session provides an overview of the NCCoE and describe the recent Privileged Account Management project that resulted in the publication of NIST Cybersecurity Practice Guide SP 1800-18.

The State of Cybersecurity Conference

Thursday, September 20, 2018

On Thursday, September 20, join members of NIST's NCCoE Leadership team. Georgetown University Security and Software Engineering Research Center (S2ERC) invites you to attend the State of Cyber Conference in Washington, DC. Learn about the real challenges in cybersecurity as well as how technologists and policy makers plan to tackle them. As the saying goes, it takes a village. Thus, this event brings together speakers from academia, industry, and government to create awareness of efforts to address cybersecurity risks across the ecosystem. At 1:15 pm, NCCoE Director Donna Dodson will participate in the Cybersecurity Ecosystem panel, and at 2:15 pm, National Cybersecurity FFRDC Director Samuel Visner will give a talk on the economics of security at The New School of Security session.

NAJIS Conference

Monday, October 8, 2018 to Thursday, October 11, 2018

On Wednesday, October 10, NIST's John Beltz, IT Security Manager for NIST's Communication Technology Laboratory (CTL), Public Safety Communications Research (PSCR) Division, will be speaking at The National Association for Justice Information Systems (NAJIS) Annual Conference in Boulder, Colorado.

John's session begins at 11:15 am and is entitled Federated Identity Management in Public Safety. He will be discussing Federated Identity Management in Public Safety and how it can address the lack of a trusted identity management system to efficiently support interoperability needs of the 60,000 public safety agencies in the United States, as well as the peripheral organizations such as the justice systems.

 

IWCE's Critical LTE Communications Forum 2018

Tuesday, November 6, 2018 to Wednesday, November 7, 2018

The NCCoE's Bill Fisher will be speaking on a panel entitled Cybersecurity is Vital on Tuesday at 2:45. The panel will be moderated by technology journalist Rex Lee and other panelists will include Todd Kelley of Cradlepoint, Donald Zoufal of CrowZnest Consulting and Matt Gardner of Wiley Rein.

IWCE's Critical LTE Communications Forum is the only event in the industry dedicated to critical communications for government, public safety, critical infrastructure and enterprises as they prepare to transition from LMR to mission-critical LTE, and state and local governments prepare for FirstNet and Smart Cities. This year it is being held in Chicago on November 6th and 7th at the Four Points By Sheraton.

 

Cyber Risk Governance Conference

Tuesday, March 13, 2018

Karen Waltermire, Senior Cybersecurity Engineer from the National Institute of Standards and Technology (NIST) will be participating in a panel discussion on Demystifying Cyber Security: The Need to Leverage Industry Recognized Standards at Skytop Strategies' Cyber Risk Governance Conference at 1:05 p.m. EDT.