News

In the news
September 06, 2017  |  BusinessWire

After a DHS S&T study, conducted in cooperation with NIST’s NCCoE, found that, “threats to the Federal government’s use of mobile devices—smartphones and tablet computers running mobile operating systems—exist across all elements of the mobile ecosystem,” DHS has awarded a grant titled “Assured Mobile Application Lifecycle using Red Hat Enterprise” to NCCoE’s NCEP partnerw Red Hat, Inc and Kryptowire.

In the news
September 01, 2017  |  Inside Cybersecurity

The National Institute of Standards and Technology’s National Cybersecurity Center of Excellence has released for public comment a draft cybersecurity “practice guide” on managing access rights for the financial sector. The NCCoE announced Thursday that it is seeking comment on the guide-- which details ways financial services companies can improve security by limiting employee access to information -- through Oct. 31.

In the news
September 01, 2017  |  Banking Technology

National Institute of Standards and Technology (NIST), an agency of the US Department of Commerce promoting innovation and industrial competitiveness, and cybersecurity tech specialist NextLabs have partnered to develop a framework for implementing and administering access rights management (ARM) in the financial services sector.

In the news
August 31, 2017  |  ExecutiveBiz

The National Institute of Standards and Technology‘s National Cybersecurity Center of Excellence has partnered with NextLabs to craft a framework for the agency to implement and administer access rights management guidelines across the financial services industry. NCCoE aims to equip financial institutions with a centralized system to manage and protect disparate identity and access systems from cyber threats, NextLabs said Thursday.

Blog
August 31, 2017  |  Susan Prince

In collaboration with the financial services community and technology collaborators, the National Cybersecurity Center of Excellence (NCCoE) developed draft cybersecurity guidance, NIST Special Publication 1800-9: Access Rights Management for the Financial Services Sector, which uses standards-based, commercially available technologies and industry best practices to help financial services companies provide a more secure and efficient way to manage access to data and system. The draft guide is now open for public comment through October 31, 2017.

Blog
August 23, 2017  |  Caroline Tan, NCCoE Summer Intern

I learned that the concept of managing each transfer in a supply chain can be applied to the outputs of any company or organization. That basic understanding of product movement in planning, procurement, manufacturing, and delivery helped me transition into my internship at the National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE). I was initially intimidated by the name and intellectual weight of the organization. These innovators—my now co-workers—were spearheading cybersecurity solutions for wireless infusion pumps, secure inter-domain routing, and identity and access management. And they even shed light on supply chain management, explaining to me that there is a possibility of risk at each transfer point and at each step in the process, not just with physical materials, but also with the critical intangibles such as data, software, and intellectual property. Here, I found an overlap that wasn’t deeply addressed in my supply chain course. I wanted to combine my undergraduate background and experience with the wealth of knowledge around me and contribute back to the organization.

In the news
August 21, 2017  |  ComputerWorld

The National Institute of Standards and Technology is trying to bolster ecommerce authentication on desktops and mobile devices. It was spurred to tackle its Multifactor Authentication for e-Commerce project because of the realization that increased security in the physical world (with such steps as cards with EMV chips) means thieves are going to start to focus more on card-not-present transactions.

In the news
August 21, 2017  |  The Australian Financial Review

Australian cyber security company TokenOne has become the first local business to be selected by the United States National Cybersecurity Center of Excellence and will work with a consortium to tackle identity theft and fraud in e-commerce through multi-factor authentication.
 

In the news
August 17, 2017  |  Inside Cybersecurity

The National Institute of Standards and Technology’s National Cybersecurity Center of Excellence is working to issue a draft guide on access rights management in the financial sector by the end of September.

In the news
August 16, 2017  |  ExecutiveBiz

OSIsoft has partnered with the National Institute of Standards and Technology to develop security architectures and practical cybersecurity strategies. The company said Monday it will provide NIST’s National Cybersecurity Center of Excellence access to the PI System as well as collaborate with other government and industry partners in efforts to accelerate the adoption of secure technology.