To allow industry more time to prepare and submit comments, the National Institute of Standards and Technology (NIST) has extended the deadline for comments on its draft NISTIR 8050 report, focused on cybersecurity challenges in consumer-facing industries.
Announcements
Announcements
May 10, 2015
To get substation and distribution sites ready for the new security standards will require a more robust electronic perimeter and physical security, according to [Lila] Kee [with GlobalSign, a cybersecurity consulting partner to the utility industry]. This will require a framework for identity access....Kee noted, "NCCOE published use cases involving technicians requiring secure physical and remote access and authorization to perform certain work orders on given substation systems."
Announcements
April 08, 2015
To take advantage of the gathering of so many cybersecurity professionals, the NCCoE will host three cybersecurity working sessions in San Francisco between April 20 - 23, 2015, at the same time the RSA 2015 conference takes place.
Announcements
April 05, 2015
The National Cybersecurity Center of Excellence (NCCoE) is seeking collaborators on an effort to demonstrate an identity and access management system for financial services organizations. Current identity and access systems employed by the financial sector sometimes operate in isolation from one another, or cannot be integrated because the parts are incompatible. Operation is thus complex and prone to errors and inconsistencies can be exploited by attackers or insider threats.
Announcements
April 01, 2015
The National Institute of Standards and Technology (NIST) invites the public to comment on a report from the Feb. 12, 2015, Executive Technical Workshop on Improving Cybersecurity and Consumer Privacy. The workshop, a collaboration with Stanford University, brought together chief technology officers, information officers and security executives to discuss the challenges their organizations and industrial sectors face in implementing advanced cybersecurity and privacy technologies.
Announcements
April 01, 2015
NIST’s National Cybersecurity Center of Excellence (NCCoE) has posted a revised draft white paper that will inform projects aimed at helping companies better manage who has access to their IT assets. This project is an NCCoE “building block,” which are example cybersecurity implementations that apply to multiple industry sectors and can be incorporated into many of the center's sector-specific use cases.
Announcements
February 16, 2015
The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology invites vendors of technologies for situtational awareness to address cybersecurity challenges in the electric power sector in collaboration with the NCCoE.The NCCoE published a notice in the February 2, 2015 issue of the Federal Register that describes the process for companies to request a template for a letter of interest, which outlines their proposed contributions.
Announcements
February 04, 2015
NextLabs is the most recent company to become a National Cybersecurity Excellence Partner. NextLabs is the 22nd information technology firm to join with the NCCoE.
Along with the NCCoE's other core partners, NextLabs will contribute hardware, software and expertise to the center's work to accelerate the adoption of secure technologies.
Announcements
January 06, 2015
To accommodate the many organizations that would like to prepare comments on the recently posted use case, “Wireless Medical Infusion Pumps,” the National Cybersecurity Center of Excellence is extending the comment period through February 20, 2015. Access the draft use case here. We look forward to your comments.
Announcements
December 21, 2014
The NCCoE’s Identity and Access Management use case for the energy sector is now in the build phase. The focus of this project is to help energy company security personnel control physical and logical access to their resources, authenticate with certainty the individuals and systems that have access rights, and enforce access control policies effectively across resources.
In the Lab