News and Events

October 15, 2018

HealthITSecurity mentions the NCCoE guide, Securing Electronic Records on Mobile Devices, in this story about how healthcare organizations are increasingly using mobile devices to enhance their productivity and patient experience.

October 11, 2018

The National Cybersecurity Center of Excellence (NCCoE) is pleased to announce that GreenTec-USA, CryptoniteNXT, Micro Focus, Tripwire, Semperis, Cisco, and Symantec have joined as technology collaborators in the Identifying and Protecting Assets Against Ransomware and Other Destructive Events Project. Technology collaborators for the Detecting and Responding to Ransomware and Other Destructive Events Project include Glasswall Solutions, Micro Focus, Tripwire, Semperis, Cisco, and Symantec. Open source technologies from FileZilla and Duplicati will also be used.

October 11, 2018

ICU Medical has teamed up with IT security company Imprivata to protect network-connected infusion pumps from cyber attacks. The partners hope to make advances that enable the identification of users and otherwise improve the physical and cybersecurity of infusion pumps. News of the collaboration comes two months after the U.S. National Cybersecurity Center of Excellence (NCCoE) published a report into the security of wireless infusion pumps.

October 10, 2018

Samuel Visner, director at the National Cybersecurity Federally Funded Research and Development Center operated by Mitre, has been selected for an annual list of prominent executives in Washington’s technology industry.

October 09, 2018

On September 7, the National Cybersecurity Center of Excellence (NCCoE) and the National Institute of Standards and Technology (NIST) published Special Publication 1800-5 – IT Asset Management Practice Guide (the Guide) to help financial services companies tackle challenges in managing both the hardware and software components of their information technology assets. The three sections are: Volume A – Executive Summary, Volume B – Approach, Architecture, and Security Characteristics, and Volume C – How-To Guides.

October 09, 2018

Andrea Arbelaez, National Institute of Standards IT project manager, and Technology and Sue Wang, NCCoE Cybersecurity Engineer, will present the Picture Archiving and Communications (PACS) session at the CyberMaryland Conference on Wednesday, October 10th and 2:00 pm.

October 08, 2018

On Wednesday, October 10, NIST's John Beltz, IT Security Manager for Communication Technology Laboratory (CTL), Public Safety Communications Research (PSCR) Division, will be speaking at The National Association for Justice Information Systems (NAJIS) Annual Conference in Boulder, Colorado.

October 05, 2018

In the ever-present area of IoT security, Katerina Megas, program manager for the Cybersecurity for IoT program at the National Institute of Standards and Technology (NIST), described how the agency invites private sector partners into the National Cybersecurity Center of Excellence (NCCoE) to help create implementation guides for cybersecurity challenges. She cited a completed project that created a reference architecture for wireless infusion pumps, and a current project looking at the Manufacturer’s Usage Description to prevent routers from communicating with unauthorized devices.

September 25, 2018

Connect with the NCCoE at the 2018 Federal Identity Forum and Exposition on September 25-27, 2018 in Tampa, Florida. Drop by the NIST booth (#212), or join the NCCoE’s Chris Brown on Wednesday, September 26 at 10am ET (in Ballroom CD) for a tabletop discussion and Q&A on the Derived Personal Identity Verification (PIV) Credentials project.

September 20, 2018

On Thursday, September 20, join members of NIST's NCCoE Leadership team. Georgetown University Security and Software Engineering Research Center (S2ERC) invites you to attend the State of Cyber Conference in Washington, DC. Learn about the real challenges in cybersecurity as well as how technologists and policy makers plan to tackle them. As the saying goes, it takes a village. Thus, this event brings together speakers from academia, industry, and government to create awareness of efforts to address cybersecurity risks across the ecosystem.

September 19, 2018

NIST Senior Computer Scientist Hildegard Ferraiolo will discuss "Derived credentials into a mobile identity" at this year's EID Forum. The talk takes place as part of the New Challenges for Securing Trust on Internet session on Wednesday, September 19.

September 18, 2018

NCCoE engineer Harry Perper along with project collaborator Remediant to be featured on the Risky Business podcast discussing the Privileged Account Management project. The podcast will premiere on September 18, 2018.

September 17, 2018

Technology companies including Dell EMC, Gemalto, HyTrust, IBM (NYSE: IBM), Intel (Nasdaq: INTC), RSA and VMware (NYSE: VMW) will work with the National Institute of Standards and Technology on a project to establish a “Trusted Cloud” that will ensure the security and privacy of workloads, ExecutiveBiz reported Sept. 11.

September 17, 2018

Work that started last October on securing the protocol that binds the Internet together is finally yielding results. The National Cybersecurity Center of Excellence (NCCoE) at the US National Institute for Standards and Technology (NIST) published the first draft of a security standard that will secure the BGP.

September 14, 2018

The National Law Review mentions the NIST practice guide “Securing Electronic Health Records on Mobile Devices” as a resource helping to reduce cybersecurity risks associated with the expanded use of Electronic Health Records (EHRs).

September 13, 2018

CryptoniteNXT, ForeScout, Häfele America, Remediant, StrongKey, and TDi Technologies have joined the National Cybersecurity Center of Excellence (NCCoE) as technology collaborators in the Securing Property Management Systems project. This collaboration will result in a publicly available Cybersecurity Practice Guide (NIST Special Publication 1800 series) that will document a reference design for hospitality organizations to improve the cybersecurity within and around a property management system (PMS).

September 11, 2018

NIST Senior Computer Scientist Hildegard Ferraiolo will give a “TED-type talk” at the American Council for Technology and Industry Advisory Council (ACT-IAC) 2018 Identity and Access Management Forum where she will discuss NIST SP 800-63, Digital Identity Guidelines and the NCCoE’s successful proof-of-concept implementation of derived PIV credentials using COTS technology. Her talk is scheduled for Tuesday, September 11, 2018 at 9:15am EST.

September 11, 2018

The National Institute of Standards and Technology and a consortium of technology companies have teamed up to build a “trusted cloud” platform that seeks to demonstrate how credible compute pools that leverage commercial systems can offer security capabilities, MeriTalk reported Monday.

September 10, 2018

As Federal agencies migrate applications to cloud environments, a major impediment to broader adoption of cloud technologies is the ability to protect information and virtual assets, and to gain enough visibility to ensure that both the agencies and cloud providers are complying with legal and business requirements. To that end, the National Institute of Standards and Technology (NIST) is working with a consortium of technology vendors via its National Cybersecurity Center of Excellence (NCCoE) to develop a trusted cloud solution that will demonstrate how trusted compute pools leveraging commercial technologies can provide the necessary security capabilities.

September 09, 2018

This week, a department called the National Cybersecurity Center of Excellence (NCCoE) at the US National Institute for Standards and Technology (NIST) published the first draft of a security standard that will secure the Border Gateway Protocol (BGP). BGP is the primary protocol that internet service providers (ISPs), hosting providers, cloud providers, educational, research, and national networks use to send traffic between each other's networks, linking together the small networks that make up the bigger Internet.