What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2020-08-20 12:00:00 | HELP WANTED: Growing a Workforce for Managing Privacy Risk (lien direct) | It's a very different world that we're living in from the one in which we published the NIST Privacy Framework this past January. These changes have demonstrated that the need for effective privacy programs that can adapt to new risks has never been more important. A skilled workforce is a key pillar of an effective privacy program. As the framework roadmap stated, “Further development of a knowledgeable and skilled privacy workforce (to include privacy practitioners and other personnel whose duties require an understanding of privacy risks) is necessary to support organizations in better | |||
|
2020-08-12 12:00:00 | Staff Spotlight: NIST Usable Cybersecurity Security and Privacy of Smart Home Devices (lien direct) | In March, we highlighted the work that NIST conducts in usable cybersecurity technology and protection against phishing scams by sharing thoughts from Kristen Greene, a NIST cognitive scientist. Greene provided excellent tips to help full-time telework employees understand and recognize potential phishing scams. In our second blog post in this series, Susanne Furman, also a NIST cognitive scientist, offers her expertise regarding the security and privacy of smart home devices. This year, consumers will spend more than $40 billion in the smart home device market (connected doorbells, vacuums | |||
|
2020-07-31 12:00:00 | Keeping the Lights On (lien direct) | The only thing worse than a pandemic would be a pandemic without power. If the lights dim due to a disruption in power generation or distribution, our productivity and quality of life do, too. In today's cyber environment, diverse and highly skilled adversaries including nation-states, transnational groups, and criminal gangs, are seeking to subvert our critical systems such as the power grid. The National Security Agency (NSA) and the Department of Homeland Security (DHS) recently issued an alert recommending that all asset owners and operators of critical infrastructure take immediate steps | |||
|
2020-07-27 12:00:00 | Differential Privacy for Privacy-Preserving Data Analysis: An Introduction to our Blog Series (lien direct) | Does your organization want to aggregate and analyze data to learn trends, but in a way that protects privacy? Or perhaps you are already using differential privacy tools, but want to expand (or share) your knowledge? In either case, this blog series is for you. Why are we doing this series? Last year, NIST launched a Privacy Engineering Collaboration Space to aggregate open source tools, solutions, and processes that support privacy engineering and risk management. As moderators for the Collaboration Space, we've helped NIST gather differential privacy tools under the topic area of de | ★★★ | ||
|
2020-07-09 12:00:00 | Director\'s Corner Series with Ram D. Sriram (lien direct) | Our third Director's Corner series blog post brings insights from Ram D. Sriram, NIST's Information Technology Laboratory's Software and Systems Division (SSD) chief. Ram oversees the work of NIST staff members who conduct state-of-the-art software testing and standards development by creating scientifically rigorous and innovative techniques, which includes cybersecurity software. Ram has worked at NIST for more than 25 years in several different laboratories and divisions. He developed the engineering design program in the Manufacturing Engineering Laboratory (now just Engineering Laboratory | ★★ | ||
|
2020-06-01 12:00:00 | More than just a milestone in the Botnet Roadmap towards more securable IoT devices (lien direct) | Internet of Things (IoT) devices offer tremendous capabilities to users. Looking around I see more and more ways, especially in a post COVID-19 world, that these devices will make our lives easier and safer, which makes this work more critical than ever. And while cybersecurity is a shared responsibility and the solution will likely require an ecosystem approach, how can IoT devices enable customers' security goals? Working with industry and other stakeholders, we've made great strides in recent years to increase overall IoT cybersecurity. In the Interagency Report on the Status of | |||
|
2020-05-07 12:00:00 | Small Businesses Are a Big Priority for NIST (lien direct) | In my spare time, I have been casually researching my family genealogy, and like many of us, I've discovered I come from a long line of small business owners: dry goods sales, pharmacists, building material inventors, grain merchants. It's no wonder I am so intrigued by the incredible range of work we do here at NIST to guide the nation's business activities with useful standards and research. Visitors to our campuses in Gaithersburg, MD and Boulder, CO, would enjoy the campus museum displays with artifacts related to varied research topics. Some of my favorites include peanut butter viscosity | |||
|
2020-05-04 12:00:00 | How Many Engineers Does It Take to Digitally Secure a Solar Panel? (lien direct) | The headline for this blog post is not a trick question or the beginning of a bad joke. I asked this question - maybe a bit facetiously - when I met the National Cybersecurity Center of Excellence (NCCoE) energy sector team in late 2018. The NCCoE had just purchased a solar panel to install in the lab. I had spent 20 years in various roles supporting energy technology research and development, but renewable energy technology was not my strength. I genuinely wanted to know: what vulnerabilities exist when solar panels connect to the distribution grid, and how can we mitigate them? We set out in | |||
|
2020-04-27 12:00:00 | Director\'s Corner Series with Jeff Greene (lien direct) | Welcome back to the Director's Corner! This blog series was created to provide readers with special insight into the cybersecurity work we are very proud to have completed and plan to accomplish in the near future. The first blog of this series was published by Matt Scholl, chief of the Computer Security Division at NIST, and Matt shared best practices to ensure everyone is ready to transition to new quantum-resistant cryptography. As promised, we are continuing this blog series in 2020, with the first Director's Corner blog for the year and second of the series. Our second blog is from Jeff | |||
|
2020-04-21 12:00:00 | Continuing to Strengthen International Connections on the Cybersecurity Framework (lien direct) | In these uncertain times, our most important focus is on health and safety. Like so many of you, most of us at NIST are working remotely. But we are still working hard to support our cybersecurity mission. While NIST had to cancel the Advancing Cybersecurity Risk Management Conference scheduled for May 2020, we look forward to continuing our cybersecurity efforts through virtual meetings and discussions with you. We continue our international work and welcome your feedback on how we can strengthen our engagement in different and creative ways. After all, our international connections are more | |||
|
2020-04-01 12:00:00 | Staff Spotlight: NIST Usable Cybersecurity (lien direct) | Every day, staff in the NIST Information Technology Laboratory's Visualization and Usability Group (VUG) are conducting studies and publishing findings about cybersecurity usability. A usable cybersecurity technology is one that an individual can effectively use to meet their goals while maintaining cybersecurity. The NIST research provides actionable guidance so that policymakers, system engineers, and security professionals can make better decisions to keep their organizations protected against cybersecurity attacks, scams, and other malicious events. That's why we are starting a new | Studies | ||
|
2020-03-19 12:00:00 | Telework Security Basics (lien direct) | Your employer has unexpectedly directed you to telework-and you are feeling overwhelmed. With many changes happening at once, telework security could be an afterthought or completely overlooked. This could put you and your organization at increased risk from attackers, who are always looking for opportunities to take advantage of disruption generally and weak security practices specifically. But it's more than your organization at risk-if your telework device is compromised, anything else connected to your home network could be at risk too. Don't panic. There are some simple things you can do | |||
|
2020-03-17 12:00:00 | Preventing Eavesdropping and Protecting Privacy on Virtual Meetings (lien direct) | Conference calls and web meetings-virtual meetings-are a constant of modern work. And while many of us have become security-conscious in our online interactions, virtual meeting security is often an afterthought, at most. Who hasn't been finishing one call when attendees of the next call start joining – because the access code is the same? In the moment it may be annoying, or even humorous, but imagine if you were discussing sensitive corporate (or personal) information. Unfortunately, if virtual meetings are not set up correctly, former coworkers, disgruntled employees, or hackers might be | |||
|
2020-02-21 12:00:00 | NIST and RSAC 2020: Back in our Element (lien direct) | We are thrilled to join the cybersecurity community once again this year at RSA Conference (RSAC) 2020 on February 24-28th at the Moscone Center in San Francisco! Our team will be showcasing our work at Booth #2438 in the South Expo as we share demos, chat with attendees, and discuss hot topics in the cybersecurity world during our expert-led sessions. The conference theme this year is 'the Human Element' within cybersecurity. We believe this year's focus on people will initiate new and exciting conversations and we are looking forward to sharing our perspectives and work with the broader | |||
|
2020-02-07 12:00:00 | Data Security: Where We\'ve Been and Where We\'re Going (lien direct) | Cybersecurity threats are nothing new. There have been so many media reports about data breaches and how they affect our daily lives that it can be overwhelming. Can organizations stop these breaches before our financial, health, and other personal information is compromised? How? If a breach is occurring, how does an organization find out quickly? And if a breach has already happened, how can we respond? These questions - and many others - are being tackled every day by the Data Security team at NIST's National Cybersecurity Center of Excellence (NCCoE). This team produces guidance to help | |||
|
2020-02-04 12:00:00 | Improving the IoT Cybersecurity Baseline with Stakeholder Input: Draft (v2) NISTIR 8259 Available for Public Comment (lien direct) | NIST received more than 450 comments on Draft NISTIR 8259 during the public comment period, which closed September 30, 2019. To all those who commented, thank you! Your comments helped strengthen and improve this foundational document for Internet of Things (IoT) device manufacturers, and we're pleased to announce that the second draft of NISTIR 8259, Recommendations for IoT Device Manufacturers: Foundational Activities and Core Device Cybersecurity Capability Baseline, is now available for public comment. To address the most significant area of comment, the document's structure, we'd like to | |||
|
2020-01-28 12:00:00 | Welcome to the World, NIST Privacy Framework 1.0! (lien direct) | As we celebrate Data Privacy Day 2020, let's take a moment to reflect on the changes to privacy as a discipline - not just here at NIST, but as a community. A decade ago, conversations among privacy professionals seemed stuck in debates about the meaning of privacy, whether the Fair Information Practice Principles (FIPPs) were still viable in a world of Big Data and emerging technologies like Internet of Things and artificial intelligence, and why privacy-enhancing technologies (PETs) were not being widely adopted. The idea of privacy risk management was just a twinkle in our collective eye | |||
|
2019-12-17 12:00:00 | Cybersecurity Insights Blog: Year-In-Review (lien direct) | What an amazing year it has been for the NIST Cybersecurity Insights blog! From rebranding the blog to better align with our goals and content lineup plans, to launching a new blog series, to sharing our successes and updating you on our progress… we have tried to make the Cybersecurity Insights blog your one-stop-shop for everything happening at NIST regarding cybersecurity. So, to close out the year, we thought you might like to look back and reminisce about our top 5 cybersecurity blogs of 2019. Without further ado, here they are: 5. It's Always Cybersecurity Awareness Month for the NIST |
To see everything:
Our RSS (filtrered)
