National Institute of Standards and Technology (NIST)

An American flag waving in front of the U.S. Capitol building.

article

Building Upon Trump’s Executive Order on Cybersecurity

President Trump's executive order on cybersecurity sent a powerful message about the real-world implications of information security.

June 9, 2017 | By Eli Ben Meir

article

A woman entering a password on a smartphone while walking.

article

The New NIST Digital Identity Guidelines and What They Mean to You

With the most recent draft of its Digital Identity Guidelines, NIST revised many of its federal recommendations regarding passwords and access management.

June 7, 2017 | By David Strom

article

A hand wiping a laptop keyboard with a blue cloth.

news

Study: Users Cleaning Up Password Security Habits

Upon analyzing a massive password dump, Duo Labs concluded that users are slowly but surely adopting recommended password security best practices.

May 16, 2017 | By Larry Loeb

news

An iris scanner being used for biometric authentication.

article

Cybercriminals Are Getting Better at Using Advanced Authentication Methods

Cybercriminals are becoming more advanced and learning how to leverage the latest authentication methods to exploit security weaknesses.

November 14, 2016 | By David Strom

article

Blockchain has influenced banks to overhaul their network operations entirely. Changes in cryptography will further shake up the industry in the coming years as NIST phases out the currently encryption standard, SHA-1, in favor of the updated SHA-265.

article

Why Cryptography Is the New Gold for Banking and Blockchain

Blockchain and Cryptography: The New Gold Standard Over the past 200 years, the role of gold in international trade has been undeniable as a means to standardize prices across currencies and secure payments across borders. Before 1875, global...

September 30, 2016 | By Luke Sully

article

Any good defense against attacks related to SMS authentication starts with strong password guidelines and mobile security practices. Two-factor authentication is still better than the old username/password system, but users should explore options.

article

What’s Wrong With SMS Authentication? Two IBM Experts Weigh In on the NIST Recommendation

IBM experts Dustin Hoff and Ashish Malhotra discussed ways for businesses and end users to mitigate security issues stemming from SMS authentication.

September 7, 2016 | By Laurène Hummer

article

Risk management requires buy-in from the top-down so that there is support for new initiatives and processes. A risk-based approach doesn't eliminate compliance requirements, and C-level executives have to learn to communicate their objectives.

article

A Risk-Driven Approach to Security, From Check Boxes to Risk Management Frameworks

Department heads have to start thinking about risk management in terms of acceptable risk levels, not compliance requirements to mark off a checklist.

August 12, 2016 | By Ayman Hammoudeh

article

For a pen test to be effective, the professionals involved need to know what key takeaways can be applied to future products and security endeavors. The best way to organize this information is through debriefs and structured processes.

article

How to Make the Most of Your Pen Test

A pen test can be tremendously valuable for your team and organization, but you have to know how to glean the key lessons from the experience.

May 4, 2016 | By Christophe Veltsos

article

Organizations need to evaluate the risks stemming from drones, outline legal concerns and ready possible remediation efforts that could be enacted around these devices. If they don't, they could be left unaware of a serious problem.

article

A Future Full of Drones — and the Advanced Threats They Present

Drones may be a relatively new technology, but there are a number of established risks and threats that need to be addressed by all organizations.

April 29, 2016 | By Kelly Ryver

article

Point-of-sale terminals and other transaction technology store lots of financial and payment card information, and they often do so without adding encryption. NIST has now outlined some processes for securing this data without affecting performance.

news

New Block Ciphers From NIST Add Tweaks to Credit Card Information

The National Institute of Standards and Technology (NIST) announced two block cipher algorithms that will preserve data formatting in secure POS systems.

April 5, 2016 | By Larry Loeb

news

Tag: National Institute of Standards and Technology (NIST)