News

In the news
August 10, 2014  |  Wired

Some of our ideas about passwords date back to the 1980s, when the National Institute of Standards and Technology came up some guidelines for creating secure passwords for local area networks. Back then, they’d mail them out to interested computer security types via U.S. Post. Now, NIST is trying to help the U.S. move beyond the password, says Donna Dodson NIST’s chief cyber security advisor. “Putting the burden of security on the end-user and making it more complex just doesn’t work,” she says. “The security has to be usable for the end-user. Otherwise they’re going to find workarounds.”

Announcements
August 10, 2014

The center is hosting 10 students from the University System of Maryland who are working full-time this summer as guest researchers at the center, then will transition to part-time during the 2014-2015 school year. The group includes two graduate and eight undergraduate students. Jeffrey Scheirer and Zack Rich are students in the cybersecurity graduate program at the University of Maryland, Baltimore County. Ambika Agarwal and Zhi Xiang Lin are studying computer engineering and Bhumibhat Kerdsuwan is studying electrical engineering at the University of Maryland, College Park. Joseph Penda is studying computer and network security and Dinh Phan, Samuel Zelaya, Stacey Curry, and Sohail Sattari are studying cybersecurity at the University of Maryland University College.

Announcements
May 22, 2014

The NCCoE is developing example solutions so that energy companies can better control physical and logical access to their resources, including buildings, equipment, information technology, and industrial control system networks and systems. Vendors of commercial technologies for identity and access management will provide the products that are modules in the end-to-end approach to this challenge. (See the use case document.)

Announcements
May 05, 2014

The National Cybersecurity Center of Excellence (NCCoE) is seeking collaborators to provide products and technical expertise to create a model, standards-based system that companies in the financial services sector could use to integrate their existing asset management, hardware and software support and information technology security into a single comprehensive system.

Announcements
April 23, 2014

Paul Timmel, a program manager at NIST's National Cybersecurity Center of Excellence (NCCoE), is a guest lecturer for a University of Maryland, College Park class this spring. The graduate course, “Special Topics in System Engineering: Cybersecurity for the Smart Grid,” offers students a comprehensive study of the potential threats, vulnerabilities and risks of the smart grid, recent research advances and industrial practices of smart grid cybersecurity, and the fundamentals of smart grid and the necessary background in computer security.

In the news
April 16, 2014  |  StateTech

When you walk into the National Cybersecurity Center of Excellence (NCCoE), you’re struck by the atmosphere of casual collaboration — open space, whiteboards and writable surfaces, and one big, round conference table. But the center has a serious mission.

Announcements
April 03, 2014

A notice this week at FedBizOpps.gov is the posting of the official request for proposals (RFP) for the operation, management and administration of a Federally Funded Research and Development Center (FFRDC) in support of NIST's National Cybersecurity Center of Excellence.

The FFRDC will support the NCCoE mission through three major task areas: research, development, engineering and technical support; operations management; and facilities management.

Announcements
April 01, 2014

Michael Daniel, White House Cybersecurity Coordinator, explains the importance of helping state, local, tribal, and territorial government computer security officers implement the Framework for Improving Critical Infrastructure Cybersecurity, and recaps the March 27 kick off event at the NCCoE.

Announcements
March 19, 2014

The National Cybersecurity Center of Excellence (NCCoE) at the National Institute of Standards and Technology invites vendors of technologies for identity and access management to address cybersecurity challenges in the electric power sector in collaboration with the NCCoE.

Announcements
February 24, 2014

NIST’s National Cybersecurity Center of Excellence (NCCoE) has proposed two new building blocks, one to help organizations develop capabilities for attribute based access control, the other to help enterprises address security issues that result from the use of mobile devices to access company resources. The NCCoE invites the public to comment on the draft documents. The comment period is open until March 28, 2014.