IoT Security Facing Government Regulation
New legislation could be on the way to secure the devices we use in our everyday lives. From our smart phones to our garage door openers, the IoT space has revolutionized the way we organize …
security
Securing Medical Devices, Where to Start?
During a recent discussion held at the Bipartisan Policy Center titled, Cybersecurity and Medical Devices: Risk Assessment and Response, an esteemed panel of experts lead a discussion about increasing medical device standards and educating the …
Federal Modernization Efforts Continue
As part of the May 11th Executive Order on strengthening the U.S. Federal cybersecurity framework and technology infrastructure; the Director of the American Technology Council (ATC) has submitted its draft report to the President on the …
MONTHLY FED ROUNDUP – AUGUST 2017
DISA’s August News DISA formulates strategy to upgrade telecommunications infrastructure in Hawaii for 2018 DISA Central Field Command changes leadership as Army COL Corey Brumsey assumes command Air Force Col Trevor A. Wall takes command of …
A Growing Market for Endpoint Security
Every time you connect your computer or phone to public WIFI or leave it unlocked, all data, connections, and systems are put in jeopardy of being exploited by cyber criminals. The protection of these “Endpoints” and networks have …
DoD Changes UC APL name to DoDIN APL
The Department of Defense has changed the name of the list it uses for the procurement of IT products to be used over the DoD network infrastructures. Previously names the Unified Capabilities Approved Products List (UC APL), …
MONTHLY FED ROUNDUP – JULY 2017
DISA’s July News DISA’s Joint Staff Support Center (JSSC) has transferred leadership as Air Force Col Douglas S. Shahan assumes command DISA offers training for DoD and Non-DoD entities trying to establish, re-accredit, or re-certify …
DHS Begins Work to Meet New EO
In May, President Trump issued a new Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure, requiring all heads of executive agencies and departments to modernize and strengthen the cybersecurity utilized within …
MONTHLY FED ROUNDUP – JUNE 2017
DISA’s June News Assured Compliance Assessment Solution (ACAS) training courses offered globally from July through December DISA moves forward with milCloud 2.0 through IDIQ award to connect DoD networks for use by the community and …
Pivot3 Becomes Only HCI Vendor with CC for Data Protection
Corsec would like to congratulate our partner, Pivot3, on completing the Common Criteria certification process under an Evaluation Assurance Level (EAL) 2+ for its vSTAC OS v7.5 hyperconverged infrastructure software platform. Pivot3’s participation in the Common Criteria …
Monthly Fed Roundup – May 2017
DISA’s May News Army LTG Alan Lynn discusses what is needed to evolve the DoD’ information infrastructure NIST’s May News New Release: Revised “Guide to Bluetooth Security”: Special Publication (SP) 800-121 Revision 2 Draft NIST …
DISA Network Modernization
The Defense Information Systems Agency (DISA) is evolving their infrastructure to combat concerns over connectivity and security, efficiency, and cost. DISA’s present issues relate to outside components connecting to its network because the infrastructure is outdated. …
President Doubles Down on Cybersecurity
On May 11th, President Donald Trump issued an Executive Order requiring all heads of executive agencies and departments to modernize and strengthen cybersecurity within Federal networks and critical infrastructure. The order acknowledged that the government’s …
Citrix Further Expands Into DoD with Approved Product Listing
Corsec would like to congratulate our partner, Citrix Systems, Inc. which enables business mobility through the secure delivery of apps and data to any device on any network; on completing the process for the Department of Defense …
Common Criteria NDcPP Version 2 Released
The newest version of the Common Criteria Network Device Collaborative Protection Profile (NDcPP) and Supporting Documents (SD) has been released. Key changes in version 2.0 include: Support for distributed TOEs Updated X509 certificate authentication requirements …
Monthly Fed Roundup – April 2017
DISA’s April News DISA system improves access to video surveillance for intel community NIST’s April News Cryptographic attack cited for the FF3 technique for format-preserving encryption (FPE)Requested Public Comment On: Draft Special Publication (SP) 800-190, Application …
IoT Device Security – What You Need To Know
The expanding market for connected devices and the Internet of Things (IoT) has propelled demand for products that alleviate the stress of managing daily interactions; from buying groceries to protecting our homes, there is an app or device for …
CMVP Changes to FIPS 140-2
During the recent Cryptographic Module User Forum (CMUF) meeting, CMVP, which oversees FIPS 140-2 validations in the United States and Canada, announced updates and changes to policy for stagnant modules, the historical list, and documentation …
Upcoming Changes to Common Criteria and Other Security Certifications
The global encryption community will gather at the fifth annual International Cryptographic Module Conference (ICMC) in May to discuss the future of commercial cryptography and the role it plays in security of the world around …
Varonis Completes Arduous Common Criteria Evaluation Process
Congratulations Varonis Systems, Inc. (Nasdaq:VRNS), for completing the Common Criteria evaluation of your Data Governance Suite, including DataPrivilege. Varonis provides a complete Metadata Framework™ and integrated product suite for the governance of unstructured and semi-structured data. They are …