The Defense Department has eased its blanket ban on removable devices such as USB drives, and vendors are responding with tamper-proof hardware, FIPS 140-2 validated encryption engines and on-board antivirus
Developers of the Top 25 list of programming errors include DHS, NSA, MITRE and the SANS Institute, and they hope to have the list included in standard contract language that would help make software developers accountable for the security of their products.
The White House is convening a conference of 50 corporate CEOs with the hope of generating “game changing ideas” that can help IT improve government efficiency.
Industry insiders say the breadth and depth of the appointee's experience in both government and the private sector bodes well for his performance in the challenging job of coordinating the government’s cybersecurity policy.
The National Institute of Standards and Technology has become an economic enabler for a nation that is increasingly dependent on IT and the ability to securely share and use information, said newly confirmed administrator Patrick Gallagher.
A cybersecurity working group is developing a security architecture and comprehensive set of security requirements to accompany the Smart Grid framework being developed by NIST's office for Smart Grid interoperability. A preliminary report is expected to be released for comment shortly.
Commerce Secretary Gary Locke unveils the first draft of a framework identifying existing standards for Smart Grid interoperability, laying out steps needed to address the gaps in these standards. The framework is the first step of a three-phase plan by NIST to develop Smart Grid standards.
The people who create vehicles for the surreptitious delivery of malware are nothing if not timely, as they demonstrated over the weekend by exploiting interest in tennis star Serena Williams.
The Health Information Trust Alliance will certify security products against its Common Security Framework as the government moves to establish an infrastructure, national standards and privacy requirements for the handling of electronic health care records.
The Election Assistance Commission is filling four slots reserved for experts in its Technical Guidelines Development Committee, which is revising the Voluntary Voting System Guidelines used by states to certify voting equipment. An updated version of the VVSG has been released for public comment.
EnergySec has grown to include 200 members from the electric power industry, security vendors and government regulators since its formation in December to provide an alternative to the more formal ISAC for rapid sharing of information.
Recent hacks of Twitter data and the misuse of the microblogging service for phishing and other malicious activities highlight the danger of adopting new technologies before they are business-ready.
The attacks, which spiked late July 6 and early July 7, are not particularly sophisticated and can be mitigated by organizations that are prepared for them, experts say.
The director of NSA will lead the U.S. Cyber Command, which will be a subunit of the U.S. Strategic Command and will reach initial operating capacity in October.
The team that conducted the 60-day review of government cybersecurity policy is following up with a national incident response plan and efforts to untangle legal hindrances to improved security.
