Close up of an iris scan with a PIV card in the pupil

Smart ID to offer options for iris scanning, on-card fingerprint matching

Updated specifications from NIST for the PIV card now include an option for iris scans in addition to fingerprint authentication and the ability to do on-card matching of fingerprints.

Two hands on keyboard one with black glove indicating hacker

Spy agencies look for tools to automate enforcement of two-man-rule for access

The intell community taps HyTrust to help enforce the two-man rule for administrative access to sensitive information in the cloud in the wake of Snowden's disclosures about domestic spying.

Dell Latitude 10 Enhanced Security

Tablets for government: Dell Latitude 10 Enhanced Security

The Latitude's user authentication features will please admins, but users won't love the limited battery power.

Panda Cloud Systems Management

Panda Security expands antivirus protection for government clouds

The Panda Cloud Systems Management promises to give agencies and service providers control over all software on their networks.

Cipher USB FLE F1 from Addonics Technologies

Cipher provides an easy way to secure USB drives

The Cipher USB FLE from Addonics, which itself looks like a key drive, can encrypt files on any drive or host PC.

Emergency Alert System vulnerability

EAS vulnerability exposes the soft underbelly of firmware

Sensitive keys included in freely available firmware opened the Emergency Alert System to attack, and researchers say the incident could be just the tip of the iceberg.

IT adminstrator upgrading server software

20 critical controls do improve cybersecurity, but are you using them?

A survey of security pros shows a high awareness of the 20 Critical Security Controls, but implementation is not yet mature. Government appears to be ahead of the curve.

Service member with an iPad

DOD building its own secure 4G wireless network

The Pentagon expects to have its own network up and running by next year, as part of its new push for better cybersecurity.

Business people joining hands

Can agencies team up in responding to cyber attacks?

NIST is looking for ideas and best practices for a new publication that would be a "substantial expansion" of guidance on how incident response teams cooperate.

A mobile phone that someone lost on the beach

Mobile security guide: Assume a device will fall into malicious hands

NIST has updated its guidance for securely managing mobile devices, addressing advances in the technology and the move toward BYOD since its original publication in 2008.

Keys in the cloud with encryption background

The rising danger to data is making KMIP important

The evolving key management standard is gaining traction in the cloud as a way to ensure security across varied infrastructures.

pie chart of who manages encryption keys for encrypted data in the cloud

Encrypting data in the cloud: Whose job is it?

More than two thirds of organizations with sensitive information in the cloud protect it with some kind of encryption before it leaves their hands. Who handles that encryption?

Topic Resources

  • Advanced Threats and Big Data: The New Cybersecurity Landscape

    So often in our organizations, information silos keep us from sharing data and communicating the right information at the right time to stop advanced threats. Hear why a big data solution is an important part of a defense against advanced threats and ideas about what data sources are required across the organization for this analysis to combat these attacks.

  • The STAND: Cybersecurity

    Advanced persistent threats. Zero-day attacks. Insider threats. Cybersecurity experts say that if IT leaders are not concerned about the ongoing evolution of the cyber landscape, it just means they are not paying enough attention. The problem is that these and other emerging cyber tactics are designed to evade traditional cyber defenses and escape detection until it’s too late. The good news is it’s not a lost cause. In this special report, two subject matter experts discuss cybersecurity technologies and strategies that can help agencies defend their systems and data against the latest cyber threats, today and into the future.

  • Establishing a Logical Perimeter: The Evolution of Network Security

    This whitepaper highlights the challenges you face when users are off network, and strategies to address the compliance and protection issues posed by remote network users.

  • Zero Trust Approach to Network Security

    The continued, high frequency of successful cyberattacks against today’s enterprises has made it abundantly clear that traditional, perimeter-centric security strategies are no longer effective. Read this whitepaper to learn about the effectiveness of a Zero Trust security model in addressing the shortcomings of failing perimeter-centric strategies.

  • Stalking the Kill Chain

    Gain insight into the effects of the changing information security threat landscape. Learn RSA’s approach to identifying strategies and techniques to establish a good defense, the “kill chain” concept and how to detect and respond, and how to level the adversarial playing field