With almost half of Android users carrying devices running out-of-date operating systems, the Homeland Security Department warned users they are playing with fire.
GuardedID, which defends against keylogging and other snooping malware, is being released for mobile devices as a software developers' kit.
NIST's update provides minimum technical requirements for remotely authenticating users over open networks.
If opened to app developers, Apple's Touch ID could give another authentication option to agencies looking to manage mobile devices, especially if other smartphone manufacturers follow suit.
The latest revision of FIPS 201, which sets the requirements for PIV cards, includes credentials for mobile devices and new interfaces to enable access with contactless connections.
The encrypted communications provider is teaming with the Human Rights Foundation to enable secure links for activists, dissidents and other groups at risk of government snooping.
Silent Circle releases its latest end-to-end encryption tool, which enables secure texting between Apple iOS and Android platforms. A secure, peer-to-peer email app is due next year.
NIST gives supply-chain security its own publication, offering guidelines for incorporating it into an agency's overall risk management program.