Tag:

NIST

Latest Headlines

Latest Headlines

Spotlight: NIST preliminary cybersecurity framework officially out for comment

The preliminary national critical infrastructure cybersecurity framework being developed by the National Institute of Standards and Technology is now officially open for comment following its...

NIST revises cybersecurity training special publication

In the draft –  NIST SP 800-16 R. 1, second draft, version two  (.pdf) – NIST notes that training differs from education, with the latter being led by the National Initiative for Cybersecurity Education. The NICE workforce  taxonomy  released in 2011 provides a framework for the education of cybersecurity workers, the draft says, whereas this NIST special publication focuses on how all federal workers will ensure government is information is secure.

Many unknowns pervade NIST preliminary cybersecurity framework

A  slightly-delayed  preliminary federal cybersecurity framework detailing cybersecurity standards meant for voluntary adoption by private sector operators of critical infrastructure that the National Institute of Standards and Technology released Tuesday still leaves unanswered questions about how adoption will be measured.

Audio: NIST officials discuss preliminary draft of private sector cybersecurity framework

The National Institute of Standards today release a much anticipated,  slightly delayed   preliminary draft  (.pdf) of the cybersecurity framework meant for voluntary adoption by private sector operators of critical infrastructure.

USPS offers a peek at cloud credential exchange

The Federal Cloud Credential Exchange will reduce the complexity of credentialing, speed up integration with identity providers, improve consumer privacy and ease of use, and cut agency authentication costs, said Douglas Glair, manager of digital partnerships and alliances at the Postal Service, during a recent presentation. The FCCX will serve as a single broker to authenticate consumers, so end-users won't have to obtain a new credential each time they interact with an agency application, he added.

NIST cybersecurity framework draft delayed by shutdown

The Oct. 10 deadline for the National Institute of Standards and Technology to issue a preliminary cybersecurity framework for private sector operators of critical infrastructure came and went without action, due to the ongoing government shutdown.

NIST: Cryptographic key management a challenge in the cloud

Generating and interacting with data in the cloud requires security capabilities dependent on the cryptographic keys--but managing these keys is complex in a cloud environment, says the National Institute of Standards and Technology in a recently published interagency report.

NIST, Commerce Department to mostly close under government shutdown

Only a small percentage of employees at the National Institute of Standards and Technology and most other Commerce Department components would be exempt from furloughs made necessary by a government shutdown.

'No problem' with NSA collaboration, says NIST director

National Institute of Standards and Technology Director Patrick Gallagher again defended his agency's collaboration with the National Security Agency over cybersecurity standards development.

NIST electronic authentication update addresses mobile

The National Institute of Standards and Technology recently published an update to its electronic authentication guidance published in 2011 with a focus on remote authentication of individuals over an open network.