Google To Use 2048-bit keys For SSL By Year's End

By Robert Vamosi | 5/28/13 8:31 AM

Google is about to upgrade its SSL strength to 2048 bits, doubling from its current 1024 bits, per a suspicion from NIST that the current standard might be broken soon.

Read More >

NSA Experimenting With BYOD

By Robert Vamosi | 2/27/13 5:37 AM

The U.S. Government would like to move toward mobile, but is taking cautious steps at first, says one researcher.

Read More >

Physics Nobel Prize In Quantum Studies

By Robert Vamosi | 10/16/12 6:15 AM

The Nobel Prize has been awarded to Serge Haroche, from the Collège de France and the École Normale Supérieure, and David Wineland, from the University of Colorado and also the National Institute of Standards and Technology (NIST). While technically the award is to honor research into the strange effects between light and matter, the quantum effects observed have implications for quantum computing and ultimately security.

According to the New York Times "Such techniques are crucial for the dream of quantum computers, which manipulate so-called qubits that are 1 and 0 simultaneously to solve some problems like factoring gigantic numbers to break codes beyond the capacity of ordinary computers. Such computers depend on the ability to isolate their “qubits” from the environment to preserve their magical computing powers, but at the same time there must be a way to measure the qubits to read out their answer."

Read More >

SHA-3 Winner Announced

By Robert Vamosi | 10/3/12 1:58 AM

There's a winner in the contest for the new Federal Information Processing Standard (FIPS) 180-3, Secure Hash Standard or more simply “SHA-3.″

The winning algorithm is Keccak (pronounced “catch-ack”), created by Guido Bertoni, Joan Daemen and Gilles Van Assche of STMicroelectronics and Michaël Peeters of NXP Semiconductors. The algorithm was one of five finalists, down from an initial pool of 63 candidates back in 2007.

Read More >

NIST: Agencies Must Replace TLS With Updated TLS 1.1 or 1.2

By Robert Vamosi | 8/17/12 2:06 AM

The US Government will be modernizing its websites next year with new encryption guidelines from the National Institute of Standards and Technology (NIST).

Read More >

US Cybersecurity Act of 2012 Defeated

By Robert Vamosi | 8/3/12 1:44 AM

A law requiring US companies to adhere to a minimum of cybersecurity standards will have to wait.

Read More >

New NIST Personal ID Verification Standards

By Robert Vamosi | 8/2/12 5:38 AM

The National Institute of Standards & Technology (NIST) is soliciting feedback on the latest draft of security guidance for Personal Identification Verification (PIV) cards.

Known as Publication FIPS 201-2, the PIV security guidelines will affect all federal employees and contractors who organizations require such compliance. The first publication was in 2005.

Read More >

New Industrial Control Systems (ICS) Guidelines

By Robert Vamosi | 6/29/11 6:36 AM

Last week the National Institute of Standards and Technology (NIST) issued the final version of its Guide to Industrial Control Systems (ICS) Security (SP 800-82). The guide satisfies responsibilities assigned to NIST under the Federal Information Security Management Act (FISMA).

Read More >

Government Report Finds Smart Grid Security Inadequate

By JDavis | 1/21/11 7:57 AM

A new document from the U.S. Government Accountability Office--the auditing office of the U.S. Congress--assessing the current state of security of the rapidly deploying smart grid networks around the country finds that necessary built-in security features are often missing from the networks and the smart meters themselves.

Read More >

FINAL Federal Smart Grid Security Document Released

By JDavis | 9/1/10 2:22 PM

We've previously posted the in-progress drafts of the NIST Computer Security Division's smart grid security plan, Guidelines for Smart Grid Cyber Security. It has now been released for public viewing in its final version, which is available in three volumes:

Read More >