Last week, the National Institute of Standards and Technology (NIST) revealed the initial public draft of its Special Publication 800-160 Volume 2, Systems Security Engineering: Cyber Resiliency Considerations for the Engineering of Trustworthy Secure Systems. […]

The National Institute of Standards and Technology (NIST) is seeking nominations for new members of various Federal boards, including the Information Security and Privacy Advisory Board (ISPAB). NIST listed the eight Federal advisory boards with openings, which also include the NIST Smart Grid Committee, and the Visiting Committee on Advanced Technology, in a Federal Register notice.






[…]

As we barrel into Valentine’s Day, seems industry is falling in love again with NIST’s cyber framework makeover. Business groups and the tech sector reacted favorably to the latest update to the National Institute of Standards and Technology (NIST) Framework for Improving Critical Infrastructure, but noted more work needs to be done in several key areas.






[…]

The rising frequency and intensity of cyberattacks on information technology systems that support the government, military, businesses, and critical infrastructure has raised awareness among senior Federal agency managers that security controls cannot be bolted on to systems as an afterthought. Security must be a core part of the design of systems from the beginning, and considered throughout the development lifecycle.






[…]

If you’re looking for reference material on domestic sludge, gold nanoparticles, or peanut butter, a move by the National Institute of Standards and Technology (NIST) to modernize its e-commerce portal should make it easier to get the information you’re seeking.






[…]

Password manager company, Dashlane, has added a twist with its list of the “Worst Password Offenders” of 2017, naming high-profile people and organizations that fell into the bad-password trap. President Trump was deemed the worst offender, primarily because of simple passwords reportedly used by cabinet members and policy directors. Outside parties were also the culprits for the Department of Defense, specifically for its contractor, Booz Allen, as well as the Republican Party (stemming from a careless data analytics firm). Paul Manafort, for using “Bond007” as a password, and Sean Spicer, for apparently tweeting his passwords, also came in for scorn.






[…]

Email is a core network application for both the private sector the and government, and has become an essential business communication tool. Since email is nearly ubiquitous and often poorly secured, it also has become a vector for fraud and data theft. Phishing emails can compromise not only Federal networks and databases, but also trust in government communications.






[…]

The National Institute of Standards and Technology and the Department of Homeland Security announced the next phase of the “Smart and Secure Cities and Communities Challenge,” a partnership to bring together Smart City initiatives and DHS’s security expertise and resources, at the Global City Teams Challenge Expo.






[…]

1 2 3 6