NIST, State Dept Eyeing Zero-Trust Approach to Cybersecurity

The National Cybersecurity Center of Excellence and State Department are each planning to implement security practices that deploy a “zero-trust” approach, Fedscoop reported Friday.

Donna Dodson, chief cybersecurity adviser at the National Institute of Standards and Technology, said at the Ignite ‘19 cybersecurity conference in Austin, Texas that the organization's NCCoE component intends to “build out some different security architectures” similar to those in place in government and financial systems.

“Many agencies already have elements of zero-trust architectures in place,” said Dodson. “For instance, some have ‘great authentication capabilities,’ but they may not use them enough or in the right situations.”

Stuart McGuigan, the State Department's chief information officer, said the department also plans to implement an architecture that will work to conduct a data processing method called deep packet inspection. The architecture has been deployed at the Chicago Board of Trade and enables information technology teams to analyze metatdata to monitor transactions.


Read more at: ExecutiveGov