News
FED IT Spending: Reviewing 2018 & Gauging 2019
MONTHLY FED ROUNDUP – SEPTEMBER 2018
Just When You Thought It Was Safe To Shut Down Your Computer
MONTHLY FED ROUNDUP – AUGUST 2018
MONTHLY FED ROUNDUP – JULY 2018
MONTHLY FED ROUNDUP – JUNE 2018
MONTHLY FED ROUNDUP – MAY 2018
DISA’s May News DISA Reshapes Computing Ecosystem DISA and JFHQ-DODIN increase DOD’s Lethality Cloud Migration Lessons Learned Defense Enterprise Office Solution to improve performance, affordability of DOD enterprise services DOD Identity and Access Management Capabilities …
CORSEC CELEBRATES 20 YEARS OF SECURING PRODUCTS
Potential DoDIN APL Removals
CMVP Archives Additional FIPS Validations
Corsec Collaborates with NIAP on Labgram #106
In September, Corsec uncovered a policy change that would affect a number of Common Criteria evaluations following this NIAP announcement: “Per published NIST notifications, all non-56B-compliant key transport schemes will be disallowed in the U.S. government …
DoD Changes UC APL name to DoDIN APL
The Department of Defense has changed the name of the list it uses for the procurement of IT products to be used over the DoD network infrastructures. Previously names the Unified Capabilities Approved Products List (UC APL), …
DHS Begins Work to Meet New EO
In May, President Trump issued a new Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, requiring all heads of executive agencies and departments to modernize and strengthen the cybersecurity utilized within …
Pentagon Releases New Security Policies
Last Friday’s DoD Industry Day on Network Penetration Reporting and Contracting for Cloud Services came with a big announcement from the Pentagon’s head of IT – DoD CIO John Zangardi. The Pentagon will begin to hold contractors …
DISA Network Modernization
The Defense Information Systems Agency (DISA) is evolving their infrastructure to combat concerns over connectivity and security, efficiency, and cost. DISA’s present issues relate to outside components connecting to its network because the infrastructure is outdated. …
President Doubles Down on Cybersecurity
On May 11th, President Donald Trump issued an Executive Order requiring all heads of executive agencies and departments to modernize and strengthen cybersecurity within Federal networks and critical infrastructure. The order acknowledged that the government’s …
Common Criteria NDcPP Version 2 Released
The newest version of the Common Criteria Network Device Collaborative Protection Profile (NDcPP) and Supporting Documents (SD) has been released. Key changes in version 2.0 include: Support for distributed TOEs Updated X509 certificate authentication requirements …
CMVP Changes to FIPS 140-2
During the recent Cryptographic Module User Forum (CMUF) meeting, CMVP, which oversees FIPS 140-2 validations in the United States and Canada, announced updates and changes to policy for stagnant modules, the historical list, and documentation …
Updates to CMVP’s Sunsetting Policy
From the CMVP on their validation Sunsetting Policy: The CMVP is adopting a five year validation sunsetting policy, effective February 1, 2017. The CMVP will move all validation entries with most recent validation dates** prior to February 1, …