Enforcement actions by the Federal Trade Commission have laid a foundation for establishment of data stewardship standards controlling cloud services that involve processing personal data, say two academics. Data stewardship standards could fill a privacy controls vacuum in cloud services offered to school districts that process students' data, Solove and Hartzog suggest, since the Education Department lacks authority to regulate companies receiving education records.
Intelligence agencies that discover an unpatched vulnerability will turn that knowledge over to software manufacturers for remediation purposes – unless there exists "a clear national security or law enforcement need," the White House says. The statement comes amid officially contested reports that the National Security Agency knew for two years of the Heartbleed vulnerability.
New U.S. openness regarding its military cyber doctrine is so far unreciprocated by China, say U.S. officials. While on a 10 day trip to the Asia Pacific region, Defense Secretary Chuck Hagel said Pentagon officials "for the first time ever" have provided a briefing to Chinese officials on American military doctrine governing the use of cyber capabilities.
The National Geospatial Intelligence Agency did a first for a U.S. intelligence agency by opening an account on open source site GitHub earlier this month. The NGA uploaded two related projects to the online repository and version tracking system in early April – one for geographic tasking system web app developed with the Django web framework, and the other a set of installer software for running the web app on a virtualized platform.
Featured ArticleFBI facial recognition database surges with imagesBy David Perera
POPULAR COMMENT THREADS
The Justice Department can't currently handle some of its immigration cases because of a hardware failure that's left the agency unable to access databases. DOJ's Executive Office for Immigration Review issued a notice on its website saying the immigration courts are continuing to process cases but is prioritizing them for manual review.
Private sector cloud providers with a FedRAMP provisional authorization making them eligible to sell services to federal agencies will have about a year to implement the new minimum set of security controls.
A random number generating algorithm under suspicion of National Security Agency tampering will no longer carry government approval. The National Institute of Standards and Technology announced Monday it will remove the algorithm in question, the Dual Elliptic Curve Deterministic Random Bit Generator, from its publication containing pseudorandom generator standards.
Existing levels of information technology talent within government and civil society do not meet the current needs, finds a report based on dozens of interviews and secondary research. Those technically skilled programmers, designers and engineers with expertise in computer science and data science that are in government are not distributed evenly across agencies, it adds.
The Securities and Exchange Commission released earlier this month a checklist of cybersecurity measures it'll use as part of this year's examination of registered broker-dealers and investment advisers.
From Our Sister Sites
A recent sharp rise in asylum seekers claiming fear of persecution or torture has prompted U.S. Citizenship and Immigration Services to train its employees to be more stringent when evaluating claims. Lawmakers and officials have wondered whether the spike stemmed more from rising violence in places like Central America or from foreigners trying to exploit the system in order to get into the United States.
The Army will involuntarily separate about 2,000 captains and majors in an effort to reduce the size of the force, an Army spokesman said. The separations will be used to meet goals set out by Defense Secretary Chuck Hagel in his fiscal 2015 budget proposal should it be made law.