News

Blog
November 10, 2016  |  Tania Copper

On Wednesday November 9, 2016, the National Cybersecurity Center of Excellence (NCCoE) hosted “Cybersecurity in the Health Community,” part of the NCCoE Speaker Series. The event brought together a variety of cybersecurity professionals to the NCCoE campus to further the discussion on cybersecurity in the healthcare environment.

In the news
November 08, 2016  |  Cyberscoop

In a release Monday, the National Cybersecurity Center of Excellence said they were seeking comment by Dec. 7 on their draft project description: Capabilities Assessment for Securing Manufacturing Industrial Control Systems.

Industrial control systems, or ICS, are specialized IT systems — with both software and hardware elements — that run industrial processes. Because ICS controls physical plant like factory assembly lines or chemical processing, hackers can have real world effects by attacking it.

In the news
November 07, 2016  |  SC Magazine

The U.S. National Cybersecurity Center of Excellence (NCCoE) and the National Institute of Standards and Technology (NIST) released a draft guide that examines methods of making email more secure. The guide, entitled DNS-Based Email Security, examines the Domain Name System Security Extensions (DNSSEC) specifications and DNS-Based Authentication of Named Entities (DANE) protocol.

In the news
November 07, 2016  |  Inside Cybersecurity

Federal officials will discuss healthcare cybersecurity, oil and gas security, and more following Election Day, while numerous industry events around the world this week will tackle issues from data protection to federal agency IT security. On Wednesday at the National Cybersecurity Center of Excellence in Rockville, MD, Suzanne Schwartz, the Food and Drug Administration's lead on medical device cybersecurity, will speak on cybersecurity in the healthcare sector.

In the news
November 03, 2016  |  Inside Cybersecurity

The National Institute of Standards and Technology's National Cybersecurity Center of Excellence on Wednesday issued a new draft NIST Cybersecurity Practice Guide on Domain Name Systems-Backed Electronic Mail Security, offering a security protocol to ensure trusted email exchanges.

The guide, which is available for public comment through Dec. 19, outlines a “proof of concept security platform” that improves email security and defenses against email-focused cyber attacks such as phishing schemes.

In the news
November 02, 2016  |  CircleID

The National Cybersecurity Center of Excellence (NCCoE) has invited comments on a draft practice guide to help organizations improve email security and defend against phishing, man-in-the-middle, and other types of email-based attacks. The draft of the National Institute of Standards and Technology (NIST) Cybersecurity Practice Guide titled, Domain Name Systems-Based Electronic Mail Security(NIST Special Publication 1800-6), demonstrates how commercially available technologies can help email service providers improve the security of email communications.

Press Releases
November 02, 2016  |  Susan Prince

The National Cybersecurity Center of Excellence (NCCoE) invites comments on a draft practice guide to help organizations improve email security and defend against phishing, man-in-the-middle, and other types of email-based attacks. The draft guide, Domain Name Systems-Based Electronic Mail Security (NIST Special Publication 1800-6), demonstrates how commercially available technologies can help email service providers improve the security of email communications. 

In the news
November 02, 2016  |  The Register

The US National Cybersecurity Center of Excellence (NCCoE) has published a guide on how to improve email security – and it wants your feedback on it. The NCCoE has put out its "draft practice guide" in an effort to educate and inform people about how to introduce proper email security. The hope of the 241-page publication is to increase defenses as broadly as possible against phishing, man-in-the-middle, malware and various other types of email-based attacks.

In the news
October 27, 2016  |  GCN

Police officers on patrol access a variety of computer systems from their in-vehicle laptops – from local  ticketing systems to state Department of Motor Vehicles databases to the FBI National Crime Information Center – all of which require unique, secure authentication. Juggling the security requirements of those myriad systems creates a logistical headache when combined with the often fast-paced demands of police work, said Don Tobin, the transportation lead at the National Institute of Standards and Technology’s National Cybersecurity Center of Excellence.  

In the news
October 19, 2016  |  HealthITSecurity

Both mobile device security and medical device security are increasingly popular topics in the healthcare industry. While there has not yet been a case of a hacked medical device affecting a patient, the concern for such a scenario is growing. The National Cybersecurity Center of Excellence (NCCoE) is investigating how best to improve wireless medical infusion pump security.