Large financial institutions often have similar issues to federal agencies when it comes to IT, including keeping track of what is hosted on or connected to an organization's network.
The National Institute of Standards and Technology is trying to give those organizations a better way to tackle that problem, releasing a draft guide Tuesday that can help financial organizations manage their IT assets.
Financial institutions can employ large numbers of people who use a variety of technology devices and applications across a wide geographic area. While these physical assets can be labeled and tracked using bar codes and databases, knowing what systems and applications are running on these devices is a much larger challenge. The inability to track the location and configuration of networked devices and software can leave an organization vulnerable to security threats.
The National Institute of Standards and Technology is collaborating on two new projects that aim to foster the development of privacy-enhancing technologies. This work is part of the government's continued implementation of the National Strategy for Trusted Identities in Cyberspace, or NSTIC, a visionary plan rolled out by the White House in April 2011.
The U.S. National Institute of Standards and Technology has introduced a cybersecurity project that aims to identify methods to integrate commercial privacy protection technology and brokered identity management service offerings.
NIST said Thursday many organizations now allow customers to manage their online accounts through the use of third-party credentials and the agency believes the approach could drive user tracking activity.
The National Cybersecurity Center of Excellence (NCCoE), in partnership with the National Strategy for Trusted Identities in Cyberspace National Program Office, is seeking comments on a new project focused on protecting privacy and security when reusing credentials at multiple online service providers.
Allowing third-party credentials saves businesses time and resources in managing identities. For users, the benefit comes from not having yet another username and password to manage and remember.
Over the last several months, TDi Technologies has been working closely with the National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology (NIST) on a cybersecurity project for the energy sector.
As the country’s national lab for cybersecurity, the NCCoE brings together people from industry, technology companies, government agencies, and academia to collaborate on applied cybersecurity to address broad challenges of national importance.
Building a strong platform to secure enterprise email systems is like piecing together a puzzle by joining existing technologies from various sources.
"The pieces are there, they're just not necessarily being effectively employed," says Curt Barker, cybersecurity standards and technology adviser at the National Institute of Standards and Technology, in an interview with Information Security Media Group.
Email may be vital to the modern working world, but it's also a major target for hackers. Now, as part of Cybersecurity Awareness Month, the National Institute of Standards and Technology is aiming to help better secure it. NIST recently published a draft guidance on better email security, which is now available for comment. Curt Barker is a guest researcher at NIST, specializing in cybersecurity.
How are different government agencies working to address evolving security challenges? Join Passcode on Oct. 8 for a conversation with senior officials to get an inside look at how these challenges are being addressed.