The National Institute of Standards and Technology (NIST) has released a new resource which aims to help organizations protect their systems from mobile threats. The paper, which is currently at a draft stage and is requesting feedback, lists potential threats in a variety of areas, from authentication to supply chains, physical access to payments, as well as network protocols and infrastructure.
In The News
Below are the latest news stories highlighting the NCCoE. The following links to external websites are curated for your convenience. Inclusion of these stories does not imply NCCoE endorsement or responsibility for the content found on these external websites.
In the news
September 14, 2016 |
The National Institute of Standards and Technology has introduced new resources intended to help organizations protect their mobile devices and computer systems from malware threats. NIST said Wednesday the draft Mobile Threat Catalogue and the draft Assessing Threats to Mobile Devices and Infrastructure seek to respond to the public and private organizations’ request for information on threats and how to mitigate the attacks.
In the news
September 12, 2016 |
There is no silver bullet to maintaining a predictive stance when it comes to anticipating cybersecurity threats, according to experts from the Federal government. One solution to assessing risks and predicting attacks is DHS’s Continuous Diagnostics and Mitigation (CDM) program, according to Tim McBride, Director of Operations of the National Cybersecurity Center of Excellence at the National Institute of Standards and Technology (NIST).
In the news
September 12, 2016 |
NIST and NCCoE have identified and categorized potential threats and mitigations, drawing from various sources. They seek public input to validate their initial work, and to help them develop a final Mobile Threat Catalogue and NISTIR 8144 publication.
In the news
September 07, 2016 |
A new risk assessment project designed for monitoring wireless IV medical infusion pumps hopes to further strengthen medical device cybersecurity across the healthcare industry. Gavin O’Brien, senior cybersecurity engineer with NCCoE discussed the partnership with HealthITSecurity.com and what it means for medical device cybersecurity.
In the news
September 07, 2016 |
Clearwater Compliance, a leading healthcare cybersecurity company, will collaborate with the National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) as part of a wide-ranging, first-of-its-kind risk assessment project focusing on wireless IV medical infusion pumps. This research project will investigate how to improve wireless IV medical infusion pumps’ security, with an end goal of helping companies and organizations increase their cyber risk assessment and management capability. The end result of this collective collaboration is a reference design and an implementation guide on how to protect wireless IV medical infusion pumps from unintended errors or unauthorized access, including malicious acts.
In the news
August 16, 2016 |
The healthcare industry is plagued with data breaches and other cybersecurity nightmares. At the same time, connected medical devices – components of the so-called Internet of Things – are multiplying, opening more holes in security and creating terrible potential for patient casualties. The National Cybersecurity Center of Excellence (NCCoE), established by the National Institute for Standards and Technology (NIST), released its first cybersecurity practice guide last year called "Securing Electronic Health Records on Mobile Devices."
In the news
August 07, 2016 |
What is the mission of the National Cybersecurity Center of Excellence (NCCoE)? What are its strategic priorities? How does it accelerate the deployment and use of secure, standards-based technologies? Join host Michael Keegan as he explores these questions and more with Nate Lesser, Deputy Director, NCCoE.
In the news
August 02, 2016 |
The National Cybersecurity Center of Excellence (NCCoE) has collaborated with the first responder community to draft a proposed reference design for both multifactor authentication and mobile single sign-on to help overcome security concerns regarding public safety data in the field. The draft is aimed directly at the public safety/first responder community and details all the standards-based technical options that public safety organizations wi
In the news
July 31, 2016 |
The NCCoE published a draft project description, Mobile Application Single Sign-on, and will collaborate with industry, academy and government experts as well as members of the Public Safety and First Responder community and vendors of cybersecurity systems to build integrated, open, end-to-end reference design. The NCCoe will aim to deliver single sign-on capacity for native, web and browser-based applications.