Announcements

Announcements
November 14, 2016  |  Bill Newhouse

We know the importance of safeguarding our credit cards—we don’t leave them laying around in plain sight and we don’t share our PIN numbers. We are discriminating about where we save our credit card information online, and most of us try to use good passwords. However, we also know that there are malicious actors that want this information and are increasingly adept at retrieving it despite our best efforts.

Announcements
November 10, 2016  |  NIST

The U.S. Coast Guard (USCG) oversees approximately 800 waterfront facilities that, among other activities, transfer hazardous liquids between marine vessels and land-based pipelines, tanks or vehicles. These “maritime bulk liquid transfers” increasingly rely on computers to operate valves and pumps, monitor sensors and perform many other vital safety and security functions. This makes the whole system more vulnerable to cybersecurity issues ranging from malware to human error, and is the reason behind a new voluntary cybersecurity guide for the industry.

Announcements
November 02, 2016  |  Susan Prince

The National Cybersecurity Center of Excellence (NCCoE) invites comments on a draft practice guide to help organizations improve email security and defend against phishing, man-in-the-middle, and other types of email-based attacks. The draft guide, Domain Name Systems-Based Electronic Mail Security (NIST Special Publication 1800-6), demonstrates how commercially available technologies can help email service providers improve the security of email communications. 

Announcements
September 13, 2016  |  NIST

IT security departments have used guidance from NIST and other sources to help them defend the vulnerable connections between mobile devices and enterprise computer systems from malware, viruses and other types of attacks. Recently, organizations from both the public and private sectors have requested more specific information on threats and ways to mitigate them.

The draft Mobile Threat Catalogue (MTC) and the accompanying draft Assessing Threats to Mobile Devices & Infrastructure (NIST Interagency Report 8144 seek to answer those requests. To strengthen the catalogue, the authors request practitioners and experts in the field to review the catalogue and provide feedback and additional information. Please send comments on both projects to Nistir8144@nist.gov by October 12, 2016.

Announcements
September 11, 2016  |  Kathie Felix

The National Cybersecurity Center of Excellence (NCCoE), a part of the National Institute of Standards and Technology (NIST), is exploring technology that can help vehicle-based law enforcement officers securely and quickly access multiple software applications and databases. A faster authentication process could provide immediate access in dangerous circumstances—and while a vehicle is in motion.

Announcements
June 01, 2016  |  NIST NCCoE

The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) has issued a Federal Register Notice inviting interested parties to provide cybersecurity-related products and technical expertise for the Data Integrity project.

Announcements
May 09, 2016  |  NIST NCCoE

The National Cybersecurity Center of Excellence (NCCoE) is excited to share the release of two new draft Project Descriptions for the consumer-facing/retail sector: Multifactor Authentication for e-Commerce and Securing Non-Credit Card, Sensitive Consumer Data.

Announcements
March 28, 2016  |  Sarah Kinling and Mary Yang

The National Cybersecurity Center of Excellence (NCCoE) hosted a successful workshop, Protecting Consumer Data: Securing Payment and Transaction Information, on March 22 at the University of Alabama Birmingham. The day of conversation brought together more than 60 professionals from across the retail and payment ecosystem, including security technology vendors. The online webcast attracted more than 100 attendees.

Announcements
February 11, 2016  |  E&E Security

The new Cybersecurity National Action Plan announced Tuesday by the White House aims at protecting federal agencies from cyberattacks, an urgent need dramatized by the ransacking of the Office of Personnel Management's aged computer systems by hackers two years ago.

Meanwhile, this month, the Commerce Department opened an expanded National Cybersecurity Center of Excellence, a public-private research and development partnership to bring together industry and government experts from NIST on high-priority cybersecurity challenges.

Announcements
February 08, 2016  |  White House Press Release

From the beginning of his Administration, the President has made it clear that cybersecurity is one of the most important challenges we face as a Nation, and for more than seven years he has acted comprehensively to confront that challenge.  Working together with Congress, we took another step forward in this effort in December with the passage of the Cybersecurity Act of 2015, which provides important tools necessary to strengthen the Nation’s cybersecurity, particularly by making it easier for private companies to share cyber threat information with each other and the Government.