In May, President Trump issued a new Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, requiring all heads of executive agencies and departments to modernize and strengthen the cybersecurity utilized within …
Shashi Karanam, Corsec’s Senior Certification Consultant, will be speaking on Providing Assurance Through Federal Certifications from FISMA to NIST SP 800-53 Security Controls at this years Certified InfoSec Conference in the Washington DC metro area …
Last Friday’s DoD Industry Day on Network Penetration Reporting and Contracting for Cloud Services came with a big announcement from the Pentagon’s head of IT – DoD CIO John Zangardi. The Pentagon will begin to hold contractors …
The financial losses associated with damage to your brand can be devastating, sometimes in the millions of dollars. According to an IBM study, 66% of threats impacting brand damage can be attributed to IT system failures …
DISA’s May News Army LTG Alan Lynn discusses what is needed to evolve the DoD’ information infrastructure NIST’s May News New Release: Revised “Guide to Bluetooth Security”: Special Publication (SP) 800-121 Revision 2 Draft NIST …
The Defense Information Systems Agency (DISA) is evolving their infrastructure to combat concerns over connectivity and security, efficiency, and cost. DISA’s present issues relate to outside components connecting to its network because the infrastructure is outdated. …
On May 11th, President Donald Trump issued an Executive Order requiring all heads of executive agencies and departments to modernize and strengthen cybersecurity within Federal networks and critical infrastructure. The order acknowledged that the government’s …
The newest version of the Common Criteria Network Device Collaborative Protection Profile (NDcPP) and Supporting Documents (SD) has been released. Key changes in version 2.0 include: Support for distributed TOEs Updated X509 certificate authentication requirements …
With over 6.4 billion devices connected worldwide, no industry is safe from a cybersecurity attack. IoT devices are projected to impact the global economy from $4 trillion to $11 trillion. However, hackers are scanning for vulnerabilities as technology …
DISA’s April News DISA system improves access to video surveillance for intel community NIST’s April News Cryptographic attack cited for the FF3 technique for format-preserving encryption (FPE)Requested Public Comment On: Draft Special Publication (SP) 800-190, Application …
The expanding market for connected devices and the Internet of Things (IoT) has propelled demand for products that alleviate the stress of managing daily interactions; from buying groceries to protecting our homes, there is an app or device for …
The cost of Intellectual Property (IP) theft is not one to be taken lightly. From steep financial losses to the irreparable damage to brand perception, IP theft can swiftly and unapologetically dismantle an organization from …
During the recent Cryptographic Module User Forum (CMUF) meeting, CMVP, which oversees FIPS 140-2 validations in the United States and Canada, announced updates and changes to policy for stagnant modules, the historical list, and documentation …
Corsec would like to congratulate our partner, Ixia, the company dedicated to delivering innovative solutions and trusted insight to support your network and security product; on completing the process for the Department of Defense Information Network Approved …
DISA’s February News DISA CTO set to retire Systems Engineering, Technology and Innovation Request for Proposal released by DISA NIST’s February News NIST Draft Releases: Draft Special Publication 1800-7, Situational Awareness for Electric Utilities released for comments …
Congratulations Varonis Systems, Inc. (Nasdaq:VRNS), for completing the Common Criteria evaluation of your Data Governance Suite, including DataPrivilege. Varonis provides a complete Metadata Framework™ and integrated product suite for the governance of unstructured and semi-structured data. They are …
The hoops that companies must jump through in order to sell into the Federal government can be difficult to understand and sometimes misleading. As with any government process, misconceptions surrounding what is required begin to …
DISA’s January News DISA focuses on Innovation during the Armed Forces Communications and Electronics Association panel NIST’s January News NIST Draft Releases: Draft Special Publication 800-12, Revision 1, An Introduction to Information Security NIST Interagency Reports: …
From the CMVP on their validation Sunsetting Policy: The CMVP is adopting a five year validation sunsetting policy, effective February 1, 2017. The CMVP will move all validation entries with most recent validation dates** prior to February 1, …
The Cryptographic Module Validation Program (CMVP), which was established by NIST to validate modules for the Federal Information Processions Standard (FIPS), has announced upcoming policy changes for the Modules In Process (MIP) list and Implementation Under Test …