A mobile phone that someone lost on the beach

Mobile security guide: Assume a device will fall into malicious hands

NIST has updated its guidance for securely managing mobile devices, addressing advances in the technology and the move toward BYOD since its original publication in 2008.

Keys in the cloud with encryption background

The rising danger to data is making KMIP important

The evolving key management standard is gaining traction in the cloud as a way to ensure security across varied infrastructures.

pie chart of who manages encryption keys for encrypted data in the cloud

Encrypting data in the cloud: Whose job is it?

More than two thirds of organizations with sensitive information in the cloud protect it with some kind of encryption before it leaves their hands. Who handles that encryption?

SEM Optical Media Destroyer

Destroyer shreds optical media to NSA's satisfaction

SEM's Optical Media Destroyer can slice and dice up to 2,400 CDs or DVDs an hour, turning them into shards that exceed NSA/CSS standards.

Cybersecurity at DHS

DHS needs to step up its game in federal cybersecurity

FISMA oversight by the department remains a work in process, and CyberScope has provided only limited help, according to an inspector general's report.

NIST glossary of security terms displayed on a tablet

A comprehensive list of security terms you should know

NIST has updated more than 200 pages of security words from federal documents to provide a central resource for definitions of cybersecurity terms.

Man waves magic wand at laptop

Security automation is great, but don't let that fool you

Automating IT security can be a help in protecting assets and systems, but there are some caveats to keep in mind.

Woman examining network traffic

NIST, DHS push security automation to the next stage

SCAP sets standards to ensure products work together, while Einstein is evolving into an automated tool that will not only detect, but block, malicious code.

NIST diagram of secure cloud architecture

NIST draws up a security architecture for cloud computing

The agency has released a draft of a cloud security architecture intended to provide the security needed to speed government adoption of cloud computing.

Shuttle Computer HR70 biometric scanner

All-in-one biometric tool combines facial, card and fingerprint scanning

Shuttle Computer's HR70 biometric scanner can enforce access control through facial recognition, with optional ID card and fingerprint scanners.

Man with computer screen for head in server room

Can automated security put agencies a step ahead of the hackers?

A growing number of products can help automate IT security; Nevada's DOT found they can help in other areas, too.

Encrypted data flows to the cloud and back

New encryption method promises end-to-end cloud security

MIT researchers develop a new functional-encryption scheme that could process cloud data while keeping it encrypted.

Topic Resources

  • Update on Assessment & Authorization (A&A) Processes for Cross Domain Solutions

    As introduced in our latest certification and accreditation (C&A) basics webcast (“Navigating Certification & Accreditation – A Primer) C&A terminology is transitioning to assessment and authorization (A&A). See the associated white paper “From C&A to A&A – The RMF Shoe Has Dropped.” Continuing the transition discussion, Raytheon Cyber Products and Steve Welke are pleased to present a webcast updating the latest information on A&A processes for cross domain, multilevel security solutions. Join Steve Welke, an A&A industry expert, as he discusses the A&A principles, requirements and processes.

  • Increase Data Security through Your Print Solution

    You’ve consolidated your desktops with virtualization and moved your data to the cloud. What else can you do to obtain additional costs savings and increase security while keeping your network flexible? Connect print and digital information from across your organization with the people who need it, exactly when they need it. Join this webcast to learn how security software and printing solutions work together to eliminate extraneous printers at multiple sensitivity levels, allowing organizations to recognize significant savings from reduced hardware, space, power, support and supplies.

  • IBM i2 National Security and Defense Intelligence Demo

    In this video IBM Product Manager James Vincent presents an overview and demo of IBM® i2® National Security and Defense Intelligence—a cost effective information exploitation solution that provides data acquisition, multi-faceted intelligence analysis and multi-agency and partner collaboration features.

  • All About Self-Encrypting Drives

    With data security risks on the rise, an influx of government mandates and regulations for securing data have been implemented and are becoming the norm. Eliminating exposure of private data is now simply viewed as a mandatory and sound business practice. To avoid the high costs associated with these types of data compromises, organizations must put in place a comprehensive security strategy. Read this whitepaper to learn how self-encryption is achieving this initiative.

  • The Rising Threat of Enterprise Cybercrime

    Cybercriminals are leveraging vulnerabilities of the Internet, browsers, operating systems, and applications to secretly and proficiently gain access to information assets. Compromising employee endpoints with malware has become the preferred method; a far simpler path into the network than a direct network attack. Agencies need to recognize and address this growing danger.