In The News

Below are the latest news stories highlighting the NCCoE. The following links to external websites are curated for your convenience. Inclusion of these stories does not imply NCCoE endorsement or responsibility for the content found on these external websites.

In the news
February 13, 2018  |  TechTarget

The National Institute of Standards and Technology published a report in 2017 that describes how route hijacking threatens secure inter-domain routing. The paper examines how the Border Gateway Protocol is subject to route hijacking because it lacks a mechanism for authenticating routing reports. How does BGP route hijacking work, how does it affect enterprises and what does NIST suggest for mitigation strategies?

In the news
February 09, 2018  |  Homeland Security Today

Over the last five years, many organizations have sought to define how cyber risk management should be implemented on ships, and the overwhelming consensus has been to follow the Cybersecurity Framework developed by the National Institute of Standards and Technology (NIST). Developed in 2014, the NIST framework defines five functional elements that create the backbone of a sound cyber risk management program. The framework was designed to be generic so it could be employed by any sector, ranging from financial or medical to transportation or security. With the help of the National Cybersecurity Center of Excellence (NCCoE), groups within the maritime industry have worked from this framework to develop additional guidelines and best practices.

In the news
January 26, 2018  |  Federal Laboratory Consortium

NIST and the National Cybersecurity Center of Excellence (NCCoE) have been using Cooperative Research and Development Agreements (CRADAs) for joint cybersecurity efforts. Companies with relevant products were invited to sign a CRADA with NIST, allowing them to participate in a consortium to build this example solution. NIST aims to describe the process that brings together the collaborators in an open and transparent way.

In the news
January 24, 2018  |  Federal News Radio

On this episode of Women of Washington, host Gigi Schumm welcomed Donna Dodson, chief cybersecurity officer at the National Institute of Standards and Technology. Dodson also serves as associate director of the Information Technology Laboratory and director of the National Cybersecurity Center of Excellence.

In the news
January 23, 2018  |  PRweb

The Center for Responsible Enterprise And Trade (CREATe.org) joins cybersecurity leaders as a member of the National Institute of Standards and Technology’s (NIST) National Cybersecurity Excellence Partnership (NCEP) at NIST’s National Cybersecurity Center of Excellence (NCCoE), a public-private initiative designed to advance the rapid adoption of cybersecurity capabilities to address business needs.

In the news
January 17, 2018  |  Inside Cybersecurity

The National Institute of Standards and Technology's National Cybersecurity Center of Excellence is seeking comments on a newly released project on energy-sector asset management. The draft project aims to provide guidance to energy-sector companies on how to address vulnerabilities within industrial control systems that leave the sector open to “malicious” cyber attacks.

In the news
January 16, 2018  |  Internet of Things Institute

The federal government is looking to work with IoT device and networking vendors to demonstrate new security standards in practice, with the aim of better securing connected products used by consumers and small businesses against botnets and six other automated distributed threats. With that goal, the project, “Mitigating IoT-based Distributed Denial of Service (DDoS)” calls for vendors to leverage standards, specifically, the Manufacturer Usage Description (MUD) specification, and security best practices, to demonstrate a proposed approach for secured deployment of IoT devices in home and small enterprise networks. 

In the news
January 04, 2018  |  Inside Cybersecurity

The National Institute of Standards and Technology's National Cybersecurity Center of Excellence is calling for companies to provide products and expertise to support their project on transport layer security. This request, made in a Federal Register notice published last week, is a first step in a collaboration between the NCCoE and technology companies to address cybersecurity challenges found in the NIST NCCoE Transport Layer Security Server Certificate Management Building Block.

In the news
January 03, 2018  |  Inside Cybersecurity

The National Institute of Standards and Technology’s National Cybersecurity Center of Excellence will develop a “practice guide” to help protect Internet of Things devices from botnet threats that leverages industry solutions, as part of the Trump administration’s broader effort to eliminate threats from botnets. The NCCoE is soliciting “products and technical expertise to support and demonstrate security platforms” for securing IoT from botnet threats, as part of the “Mitigating IoT-Based DDoS Building Block.” The cybersecurity center will accept “letters of interest” in participating in the initiative starting on Jan. 26, according to a Federal Register notice issued on Dec. 27.

In the news
January 02, 2018  |  NextGov

A Commerce Department cybersecurity center wants to work with industry to combat botnets powered by internet-connected smart devices. 
The goal is to enter into cooperative research and development agreements with companies and other organizations that can offer products and technical expertise that will make connected devices more secure, according to the late December notice from the National Cybersecurity Center of Excellence, located inside Commerce’s National Institute of Standards and Technology.