Close up of an iris scan with a PIV card in the pupil

Smart ID to offer options for iris scanning, on-card fingerprint matching

Updated specifications from NIST for the PIV card now include an option for iris scans in addition to fingerprint authentication and the ability to do on-card matching of fingerprints.

Two hands on keyboard one with black glove indicating hacker

Spy agencies look for tools to automate enforcement of two-man-rule for access

The intell community taps HyTrust to help enforce the two-man rule for administrative access to sensitive information in the cloud in the wake of Snowden's disclosures about domestic spying.

Dell Latitude 10 Enhanced Security

Tablets for government: Dell Latitude 10 Enhanced Security

The Latitude's user authentication features will please admins, but users won't love the limited battery power.

Panda Cloud Systems Management

Panda Security expands antivirus protection for government clouds

The Panda Cloud Systems Management promises to give agencies and service providers control over all software on their networks.

Cipher USB FLE F1 from Addonics Technologies

Cipher provides an easy way to secure USB drives

The Cipher USB FLE from Addonics, which itself looks like a key drive, can encrypt files on any drive or host PC.

Emergency Alert System vulnerability

EAS vulnerability exposes the soft underbelly of firmware

Sensitive keys included in freely available firmware opened the Emergency Alert System to attack, and researchers say the incident could be just the tip of the iceberg.

IT adminstrator upgrading server software

20 critical controls do improve cybersecurity, but are you using them?

A survey of security pros shows a high awareness of the 20 Critical Security Controls, but implementation is not yet mature. Government appears to be ahead of the curve.

Service member with an iPad

DOD building its own secure 4G wireless network

The Pentagon expects to have its own network up and running by next year, as part of its new push for better cybersecurity.

Business people joining hands

Can agencies team up in responding to cyber attacks?

NIST is looking for ideas and best practices for a new publication that would be a "substantial expansion" of guidance on how incident response teams cooperate.

A mobile phone that someone lost on the beach

Mobile security guide: Assume a device will fall into malicious hands

NIST has updated its guidance for securely managing mobile devices, addressing advances in the technology and the move toward BYOD since its original publication in 2008.

Keys in the cloud with encryption background

The rising danger to data is making KMIP important

The evolving key management standard is gaining traction in the cloud as a way to ensure security across varied infrastructures.

pie chart of who manages encryption keys for encrypted data in the cloud

Encrypting data in the cloud: Whose job is it?

More than two thirds of organizations with sensitive information in the cloud protect it with some kind of encryption before it leaves their hands. Who handles that encryption?

Topic Resources

  • Big Data Integration and Analytics for Cyber Security

    Conventional methods for mitigating cyber-attacks are no longer sufficient. Big data analytics — along with an advanced, more strategic approach to network security — is needed to disrupt adversary tools and techniques, and render them ineffective.

  • Stepping Up the Battle Against Advanced Threats

    Cyber-attackers continuously develop sophisticated tactics and evasion techniques to bypass the latest protection methods, requiring the security industry to find a different approach to malware protection. Read this whitepaper to learn where the traditional cybersecurity measures fall short and how your agency can adopt a new approach to defend against advanced threats.