cloud

USPS' federal ID exchange will run on HP Enterprise Cloud

The FedRAMP-authorized platform was selected by SecureKey Technologies to provide cloud services for the authentication infrastructure.

security

Next steps in security automation

Building on the government's Security Content Automation Protocol, a working group is developing a set of international standards for automating the job of assessing and monitoring the security of IT systems.

Dashboard gauge indicating near compliance

Agencies still struggling with FISMA compliance

The latest GAO report on IT security shows "mixed progress" in implementing required security programs, citing inadequate reporting metrics and a focus on regulatory compliance as the culprits.

Hacker in a dark room

Hackers-for-hire group targeting government assets, report says

Hidden Lynx, a sophisticated group of professional hackers located in China, has carried out high-profile attacks on government, IT contractors and other industries at least since 2009, Symantec says.

stealth

Stealth can protect networks by making parts invisible

Unisys has high hopes for government uses of the software tool that controls who sees what on a network.

DNS

NIST updates guidelines for securing the DNS

NIST updated its guidance for deploying a secure Domain Name System in government enterprises to ensure the availability and integrity of critical DNS data.

LynxWorks rootkit detection

LynuxWorks rootkit detector adds hardware punch to security scanning

LynuxWorks' system, called RDS5201, is an appliance capable of detecting low-level, zero-day rootkits in real time.

ID

5 pilots to take trusted online ID plan to the next stage

The NSTIC programs, which received more than $7 million in grants, range from military, civilian and commercial authentication initiatives to one aimed at protecting children’s privacy online.

eyes

Biometric ID coming to a government office near you

This week's Biometric Consortium Conference showcases a wide range of hardware and software solutions for personal identification/authentication applications in government.

back door

Suspect NIST crypto standard long thought to have a back door

The agency is advising against using an elliptic curve algorithm adopted in 2006 that has concerned cryptographers from the beginning.

FDAS

Forensics tool makes sure investigators don't come up empty

CyanLine's Fast Disk Acquisition System gives forensics teams a real-time preview of what's on a drive, including whether it's set to prevent copying.

scam

Officials warn of spoofed health exchange websites

The look-alike Web pages may be created by interest groups, private insurance companies and, sometimes, scammers looking to gather personal information.

Topic Resources

  • GameChanger: Microsegmentation

    In less than a decade, more than 87 million records with sensitive or private information have been exposed due to cyber-incidents on federal networks alone. Increasingly, organizations are beginning to realize that perimeter-based security just isn’t enough anymore. Download to learn how for many data centers, the solution is microsegmentation.