Morning Cybersecurity

NIST’s National Cybersecurity Center of Excellence wants public feedback on a pair of draft projects for validating server and client device integrity and defending internet of things devices against distributed denial of service attacks, it said in two recent notices. The IoT project centers around using manufacturer usage description, which “works by enabling networks to automatically permit each IoT device to send and receive only the traffic it requires to perform as intended, while blocking unauthorized communication with the device,” the center described.

The other project, centered on supply chain risks, “will produce example implementations to demonstrate how organizations can verify that the internal components of their purchased computing devices are genuine and have not been altered during the manufacturing and distribution processes,” according to the notice.

Read more at: Politico