News

Press Releases
September 13, 2016  |  NIST

IT security departments have used guidance from NIST and other sources to help them defend the vulnerable connections between mobile devices and enterprise computer systems from malware, viruses and other types of attacks. Recently, organizations from both the public and private sectors have requested more specific information on threats and ways to mitigate them.

The draft Mobile Threat Catalogue (MTC) and the accompanying draft Assessing Threats to Mobile Devices & Infrastructure (NIST Interagency Report 8144 seek to answer those requests. To strengthen the catalogue, the authors request practitioners and experts in the field to review the catalogue and provide feedback and additional information. Please send comments on both projects to Nistir8144@nist.gov by October 12, 2016.

In the news
September 12, 2016  |  Wiley Rein LLP

NIST and NCCoE have identified and categorized potential threats and mitigations, drawing from various sources. They seek public input to validate their initial work, and to help them develop a final Mobile Threat Catalogue and NISTIR 8144 publication.

In the news
September 12, 2016  |  MeriTalk

There is no silver bullet to maintaining a predictive stance when it comes to anticipating cybersecurity threats, according to experts from the Federal government. One solution to assessing risks and predicting attacks is DHS’s Continuous Diagnostics and Mitigation (CDM) program, according to Tim McBride, Director of Operations of the National Cybersecurity Center of Excellence at the National Institute of Standards and Technology (NIST).

Press Releases
September 11, 2016  |  Kathie Felix

The National Cybersecurity Center of Excellence (NCCoE), a part of the National Institute of Standards and Technology (NIST), is exploring technology that can help vehicle-based law enforcement officers securely and quickly access multiple software applications and databases. A faster authentication process could provide immediate access in dangerous circumstances—and while a vehicle is in motion.

In the news
September 07, 2016  |  HealthITSecurity

A new risk assessment project designed for monitoring wireless IV medical infusion pumps hopes to further strengthen medical device cybersecurity across the healthcare industry. Gavin O’Brien, senior cybersecurity engineer with NCCoE discussed the partnership with HealthITSecurity.com and what it means for medical device cybersecurity.

In the news
September 07, 2016  |  BusinessWire

Clearwater Compliance, a leading healthcare cybersecurity company, will collaborate with the National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) as part of a wide-ranging, first-of-its-kind risk assessment project focusing on wireless IV medical infusion pumps. This research project will investigate how to improve wireless IV medical infusion pumps’ security, with an end goal of helping companies and organizations increase their cyber risk assessment and management capability. The end result of this collective collaboration is a reference design and an implementation guide on how to protect wireless IV medical infusion pumps from unintended errors or unauthorized access, including malicious acts.

In the news
August 16, 2016  |  Healthcare IT News

The healthcare industry is plagued with data breaches and other cybersecurity nightmares. At the same time, connected medical devices – components of the so-called Internet of Things – are multiplying, opening more holes in security and creating terrible potential for patient casualties. The National Cybersecurity Center of Excellence (NCCoE), established by the National Institute for Standards and Technology (NIST), released its first cybersecurity practice guide last year called "Securing Electronic Health Records on Mobile Devices."

In the news
August 07, 2016  |  Federal News Radio

What is the mission of the National Cybersecurity Center of Excellence (NCCoE)? What are its strategic priorities? How does it accelerate the deployment and use of secure, standards-based technologies? Join host Michael Keegan as he explores these questions and more with Nate Lesser, Deputy Director, NCCoE.

In the news
August 02, 2016  |  BiometricUpdate.com

The National Cybersecurity Center of Excellence (NCCoE) has collaborated with the first responder community to draft a proposed reference design for both multifactor authentication and mobile single sign-on to help overcome security concerns regarding public safety data in the field. The draft is aimed directly at the public safety/first responder community and details all the standards-based technical options that public safety organizations wi

In the news
July 31, 2016  |  The Journal of Law & Cyber Warfare

The NCCoE published a draft project description, Mobile Application Single Sign-on, and will collaborate with industry, academy and government experts as well as members of the Public Safety and First Responder community and vendors of cybersecurity systems to build integrated, open, end-to-end reference design. The NCCoe will aim to deliver single sign-on capacity for native, web and browser-based applications.