Friday, April 25, 2014

Sedgewick: Regulators likely to change policies to align with framework

The Federal Communications Commission's effort to align its regulatory policies with the federal cybersecurity framework is a harbinger of further action by regulators across multiple sectors, according to Adam Sedgewick, a senior information and technology policy officer with the National Institute of Standards and Technology.

Officials weigh comments on cryptographic 'principles' circulated after NSA uproar

Officials at the National Institute of Standards and Technology are beginning to sort through the 19 public comments received so far on the draft "cryptographic standards and guidelines development process" released in February.

Tech company calls for cyber incentives, third-party certification of framework use

At least one technology company is calling for a certification process to show companies are using the framework of cybersecurity standards developed by the National Institute of Standards and Technology, qualifying for various incentives.

Zelvin: Heartbleed gap creating major workload for DHS cybersecurity center

The challenge of fixing the many federal government systems that are vulnerable to the Heartbleed cybersecurity gap is generating significant work around the clock for the Department of Homeland Security's National Cybersecurity and Communications Integration Center, according to Director Larry Zelvin.

Recent News

DOD official: Draft network-breach reporting regulations coming this summer

Shift in Senate control would bring new and familiar faces to cybersecurity debates

Cyber attack simulation tests healthcare industry preparedness

IT sector coordinating council develops strategy for addressing cybersecurity priorities

Cybersecurity on agenda at this week's Internet governance forum in Brazil

EPA, closely watched, backs voluntary approach to cybersecurity over regulation

GSA seeks comments on proposed contract cybersecurity risk management plan

FERC 'technical conference' will examine need for new cybersecurity standards

SEC gears up to scrutinize firms' cybersecurity amid criticism of gaps at agency

FCC leads discussion on cybersecurity risks created by landmark technology transition

Rep. Wolf receives first report on cyber threats related to federal IT procurement

Sign Up Now

Get one month of free access

Form for a free trial

DHS small-business inquiry moves ahead

Inside Cybersecurity's exclusive coverage of DHS' examination of cybersecurity solutions for small businesses.

Featured Story

DHS launches process to reconsider 'critical' infrastructure for cybersecurity

The Department of Homeland Security has launched a process to reconsider which infrastructure owners and operators belong on a list of infrastructure deemed "critical" in the context of cybersecurity.

Daily Briefs

NIST unveils app for testing mobile device security

The National Institute of Standards and Technology has announced the release of its first open source web application for managing the vetting of mobile applications' security and network compatibility.

Mandiant threat report will be focus of upcoming meeting

The latest cyber threat assessment by security analysts at Mandiant will be discussed at a May 22 meeting on advising federal agencies about cybersecurity.

U.S. stresses collaboration over formal agreements in global Internet talks

The United States says the global community should focus on developing a transparent multistakeholder process to govern the Internet rather than pursue formal international treaties on the subject, according to U.S. comments on a draft document being discussed this week in Brazil.

FireEye warns of 'drastic change' in cyber attacks

FireEye's analysis of this year's Verizon data-breach report shows a "drastic change in the type of attacks that are threatening organizations' intellectual property, financial information and customer data," according to an April 22 blog post by the network security company.

Trial Access to InsideCybersecurity

If you haven't already tried InsideCybersecurity, you can sign up for a free, one-month, no-obligation trial subscription right now. You'll have full access to everything InsideCybersecurity has to offer.

Form for a free trial

Already a subscriber? Click here to log in.