In The News

Below are the latest news stories highlighting the NCCoE. The following links to external websites are curated for your convenience. Inclusion of these stories does not imply NCCoE endorsement or responsibility for the content found on these external websites.

In the news
September 11, 2018  |  ExecutiveBiz

The National Institute of Standards and Technology and a consortium of technology companies have teamed up to build a “trusted cloud” platform that seeks to demonstrate how credible compute pools that leverage commercial systems can offer security capabilities, MeriTalk reported Monday.

In the news
September 10, 2018  |  MeriTalk

As Federal agencies migrate applications to cloud environments, a major impediment to broader adoption of cloud technologies is the ability to protect information and virtual assets, and to gain enough visibility to ensure that both the agencies and cloud providers are complying with legal and business requirements. To that end, the National Institute of Standards and Technology (NIST) is working with a consortium of technology vendors via its National Cybersecurity Center of Excellence (NCCoE) to develop a trusted cloud solution that will demonstrate how trusted compute pools leveraging commercial technologies can provide the necessary security capabilities.

In the news
September 09, 2018  |  ZDNet

This week, a department called the National Cybersecurity Center of Excellence (NCCoE) at the US National Institute for Standards and Technology (NIST) published the first draft of a security standard that will secure the Border Gateway Protocol (BGP). BGP is the primary protocol that internet service providers (ISPs), hosting providers, cloud providers, educational, research, and national networks use to send traffic between each other's networks, linking together the small networks that make up the bigger Internet.

In the news
September 07, 2018  |  Federal News Radio

It sounds like Greek — derived PIV credentials. But a better approach to managing information on personal identity verification cards can help an ongoing federal challenge, namely how to improve cybersecurity for people using mobile devices. Now the National Cybersecurity Center of Excellence has released fresh guidance on so-called derived credentials. Hildegard Ferraiolo, a computer scientist with the Security Components and Mechanisms Group at the National Institute of Standards and Technology, joined Federal Drive with Tom Temin for what it is and how it works.

In the news
September 06, 2018  |  The Register

A proposal for securing BGP – the protocol that lays out the traffic pathways of the internet – has a another backer: NIST, aka America's National Institute for Standards and Technology. The US government agency has issued a discussion paper outlining the use of Route Origin Validation (ROV) to protect the notoriously all-too-trusting Border Gateway Protocol (BGP) from route hijacking.

In the news
September 05, 2018  |  Dark Reading

A new draft publication from the NIST National Cybersecurity Center of Excellence (NCCoE) takes aim at security concerns about the Border Gateway Protocol (BGP), the default routing protocol to route traffic among Internet domains. The paper, "Protecting the Integrity of Internet Routing: Border Gateway Protocol (BGP) Route Origin Validation," is open for public comment until Oct. 15.

In the news
August 31, 2018  |  MedTech Dive

The National Institute of Standards and Technology (NIST) has released the final version of its guidelines to help healthcare organizations guard against cybersecurity threats to wireless infusion pumps. Wireless infusion pumps face risks ranging from unauthorized access to protected health information to interference with a pump’s function and drug dosing, the agency said.

In the news
August 31, 2018  |  MeriTalk

The National Institute of Standards and Technology (NIST) is updating two of its major publications regarding mobile device security, and NIST’s National Cybersecurity Center of Excellence (NCCoE) is expanding into uncharted territory. Representatives from NIST, speaking today at an event hosted by ATARC, discussed why these updates have become so necessary amid an evolving security landscape.

In the news
August 29, 2018  |  The National Law Review

In recognition of the vulnerability of mobile devices and the daily use of those devices in health care, the National Institute of Standards and Technology (NIST) and the National Cybersecurity Center of Excellence (NCCoE) released a practice guide earlier this month entitled Securing Electronic Health Records on Mobile Devices (NIST Special Publication 1800-1).

In the news
August 28, 2018  |  Cision/PRNewswire

StrongKey announced today that it has been working closely with the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) on a project to help retailers and e-commerce merchants reduce the risk of fraud by implementing multifactor authentication for risky transactions. This past year saw a more than 30 percent increase in e-commerce fraud attacks as online and mobile transactions continued to outpace brick-and-mortar stores. As a result, the NCCoE has just released a draft practice guide NIST Special Publication 1800-17, Multifactor Authentication for E-Commerce.