News

In the news

NIST Releases Draft Guidance on Use of Mobile Identity Credentialing

October 03, 2017  |  Inside Cybersecurity

The National Cybersecurity Center of Excellence at the National Institute of Standards and Technology has released a draft cybersecurity guide on the authentication of mobile device users with personal identity verification credentials.

The draft, released Sept. 29, is the latest version of the NIST Cybersecurity Practice Guide Special Publication 1800-12 on “Derived Personal Identity Verification Credentials.” It aims to provide guidance on how to secure federal systems that do not currently require PIV credentials for access, such as mobile devices.

In the news

From Mega Breaches to Ransomware, We're All In

October 03, 2017  |  SC Media

The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Science and Technology (NIST) worked with myriad information security companies to provide companies with a ransomware recovery guide. Comprised of three volumes that can be used by pros from executive leaders to IT professionals, the guide is all about helping organizations hit by ransomware not only recover their data, but also manage overall cybersecurity risks to their infrastructures.

In the news

NIST Publishes Draft of Special Publication on Cybersecurity Risk Management Framework

September 29, 2017  |  Inside Cybersecurity

NIST released a discussion draft of the second revision of Special Publication 800-37 on Thursday, which was written in response to the executive order on cybersecurity and the Office of Management and Budget's memorandum on the implementation of this order to enable the development of a new risk management cyber framework for federal agencies.

In the news

NIST Cybersecurity Practice Guide, Draft Special Publication 1800-3, Rev 2: "Attribute Based Access Control"

September 21, 2017  |  Imperial Valley News

The National Cybersecurity Center of Excellence (NCCoE), part of the National Institute of Standards and Technology (NIST), has developed an example of an advanced access control system. The approach uses commercially available products that can be included alongside current products in an existing infrastructure.

In the news

NIST Issues Draft Cyber Guide On Access Control

September 21, 2017  |  Inside Cybersecurity

The National Institute of Standards and Technology’s National Cybersecurity Center of Excellence has issued a draft cybersecurity “practice guide” on cyber access controls. The guide, issued Wednesday, details how organizations can use “attribute based access controls” to better manage employee access to data and networks.

In the news

Utilities Will Spend Billions on Cybersecurity as Threat Grows

September 21, 2017  |  Forbes

Cutting edge technologies are essential to help the electricity sector adapt to the evolving cyber threat landscape.The National Institute of Standards and Technology found that these solutions can be integrated within a utility’s network to boost situational awareness and cope with attacks.

In the news

Why Infusion Pumps Are So Easy to Hack

September 15, 2017  |  Medical Device and Diagnostic Industry

Smiths Medical is scrambling to address cybersecurity risks involving its wireless infusion pump, a type of device that is particularly vulnerable to attack. Earlier this year the National Cybersecurity Center of Excellence (NCCoE) released a draft version of practice guides specific to wireless infusion pumps.

In the news

NCCoE Report on Security for Hospitality Organizations

September 14, 2017  |  Inside Cybersecurity

On Sept. 13, 2017, the National Cybersecurity Center of Excellence, a part of the National Institute of Standards and Technology, published a report titled “Securing Property Management Systems: Cybersecurity for the Hospitality Sector.” This report details how the NCCoE plans to assist in the implementation of stronger cybersecurity measures for property management systems used in hospitality organizations, which include door locks, Wi-Fi networks, and guest services applications. 

In the news

Ultra Electronics, 3eTI Collaborates with NCCoE

September 12, 2017  |  BusinessWire

Ultra Electronics, 3eTI, a leading cyber-technology company, today announced a collaborative project with the National Institute of Standards and Technology (NIST) National Cybersecurity Center of Excellence (NCCoE). This project will focus on anomaly detection, providing critical and detailed cybersecurity guidance for industrial control systems (ICS) in the manufacturing sector.

In the news

NCCoE/NIST Release Draft Guidelines for Ransomware Recovery

September 08, 2017  |  HIPPA Journal

Draft guidelines for ransomware recovery have been issued by the National Cybersecurity Center of Excellence (NCCoE) and the National Institute of Standards and Technology (NIST). The guidelines – NIST Special Publication 1800-11 – apply to all forms of data integrity attacks. SP 1800-11 is a detailed, standards-based guide that can be used by organizations of all sizes to develop recovery strategies to deal with data integrity attacks and establish best practices to minimize the damage caused and ensure a speedy recovery.