News

BREAKING: DoD issues sweeping update to cyber strategy (Audio)

The Defense Department unveiled a new cyber strategy today that affirms its commitment to more effective deterrence in the cyber domain and the integration of offensive cyber options into combatant command plans. 

Sunlight FOIA request leads to more open data, updated OMB policy

A Freedom of Information Act request from the Sunlight Foundation has turned into federal policy on agency data holdings, the foundation reported.

CBO: Low costs, rising revenues would be associated with data security bill

If enacted, the Data Security and Breach Notification Act of 2015 would cost the government $1 million to implement over five years and would increase revenues, via penalties paid by non-compliant businesses, by $9 million over 10 years, an assessment of the bill finds.

OMB releases more IT Dashboard metrics

For the first time since the Office of Management and Budget released the IT Dashboard in 2009, it is providing IT performance metrics used in internal discussions with agencies, according to a report.

Spotlight: 2 cybersecurity bills pass in the House

The House of Representatives passed the Protecting Cyber Networks Act (H.R. 1560) April 22 and the National Cybersecurity Protection Advancement Act of 2015 (H.R. 1731) April 23. 

OPM strengthened agreements with contractors following last year's cyber breaches, CIO says

The agency has strengthened its contractual clauses and is also making sure all agency contracts have the appropriate clauses in them – that is "clauses that require segregation of data."

NIST issues draft de-identification guidance for personally identifiable information

In a new draft publication, the National Institute of Standards and Technology explores techniques for de-identification and summarizes almost 20 years of research. 

House expected to consider 2 cyber threat data sharing bills that grant liability protections

The Obama administration largely supports both bills although it had some reservations regarding their liability protections. But civil liberties and privacy groups say they strongly opposed one bill sponsored by the House Permanent Select Committee on Intelligence.

Public-private partnership seeks to make troves of untapped NOAA data publicly available

NOAA collects about 20 terabytes of data daily, more than twice the data of the entire printed collection of the Library of Congress. But the public has access to only a fraction of it.

Pew: People hopeful 'open data' boosts gov't responsibility, but dubious on performance gain

The survey looked at the public's level of awareness on governmental efforts to share data, data usage in tracking performance and accountability, and routine online interactions with governments such as license renewal or information searches. 

Taxpayers had different online experiences with states depending on where they lived

Dynatrace, a software vendor that measures end user experience online, analyzed websites of several select state revenue departments and found a wide range of how fast their websites and pages loaded as well as how consistent these sites were throughout the day. 

Veteran federal contracting officer talks about benefits of agile software development in podcast

Jonathan Mostowski at U.S. Digital Service explores how hiring Leonardo da Vinci to paint the Mona Lisa using agile or waterfall contracting models would affect the final product

Fed agencies reduce planned PortfolioStat savings as GAO questions past IT reform savings

Through the Office of Management and Budget initiative launched three years ago that requires agencies to review their IT investments annually and cut duplication, agencies were supposed to save $5.8 billion between fiscal 2013 and 2015. However, they reduced that amount to $2 billion, a 68 percent cut.

Report finds federal cybersecurity workforce insufficient

An insufficient cybersecurity workforce – propagated by inadequate recruitment and retention measures – is hampering proper defense, according to a new report.

Data integrity issues hampering USPS commercial mailing program, IG says

Problems with data integrity, customer service and communication are hampering the Postal Service's move to an automated system for commercial mail, a report found.

NIST considers update to e-authentication guideline

The National Institute of Standards and Technology is looking into updating its 2012 Electronic Authentication Guideline (pdf), and the agency wants the public's help. NIST is seeking comments...

IG: DoD must speed migration to IPv6

The Defense Department's inability to properly move to Internet protocol version 6, or IPv6, could mean cost increases and vulnerability to cyber threats, a new report found.

Attribution remains difficult to identify in cyber espionage, finds data breach report

Twenty percent of cyberespionage attacks last year targeted the public sector – only second to manufacturing, with 27 percent of cyber espionage incidents – finds Verizon in its eighth annual data breach report.

FAA should develop holistic threat model as it transitions to NextGen system, GAO says

As the Federal Aviation Administration shifts to a more advanced and networked Internet-technology based air-traffic control system, it needs to develop a comprehensive threat model to better protect computer networks against cyber threats.

Spotlight: GSA is live blogging #TaxDay web traffic

The General Services Administration's DigitalGov team is live blogging their observations on web traffic to federal websites on "Tax Day".