Standards & Guidelines Archives - Page 3 of 4

NISTIR 8228: Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks

Internet of Things (IoT), Standards & Guidelines / Frank Crast / June 25, 2019 / IOT, NIST, NISTIR, NISTIR 8228

The National Institute of Standards and Technology (NIST) has released a new Interagency/Internal Report (NISTIR) 8228, that includes guidelines for organizations in managing IoT cybersecurity and privacy risks. The NISTIR 8228 report titled “Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks” provides organizations good insight into the IoT risks, challenges, and considerations […]

NISTIR 8228: Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks Read More »

CIS Controls Version 7.1 released

Cybersecurity Articles, Security Monitoring, Small Business Security, Standards & Guidelines / Frank Crast / April 4, 2019 / 800-53, CIS, CIS v7.1, NIST, Security, Standards, Top 20 CIS Controls

The Center for Internet Security (CIS) has released its new version 7.1 of the top 20 Critical Security Controls. The updated version includes new Implementation Groups designed to identify relevant CIS controls that are reasonable for an organization with a similar risk profile and available cybersecurity resources.

CIS Controls Version 7.1 released Read More »

FIPS 140-3: Security Requirements for Cryptographic Modules

Cryptography, Standards & Guidelines / Frank Crast / March 22, 2019 / FIPS, NIST

The Federal Information Processing Standards (FIPS) has issued the FIPS 140-3 Security Requirements for Cryptographic Modules.

FIPS 140-3: Security Requirements for Cryptographic Modules Read More »

NIST SP 800-177: New Email Security Guidelines To Combat Phishing Threats

Cryptography, Messaging Security, Standards & Guidelines / Frank Crast / February 28, 2019 / Crypto, Cryptography, DKIM, DMARC, NIST, SHA-256, SP 800-177, SPF, SSL, TLS

The NIST standard, SP 800-177 Revision 1, Trustworthy Email (Draft) was released last month and offers up-to-date security guidance to include SPF, DKIM, DMARC, and email digital signatures and encryption (via S/MIME), among others.

NIST SP 800-177: New Email Security Guidelines To Combat Phishing Threats Read More »

NIST SP 800-177 Revision 1: “Trustworthy Email”

Cryptography, Cybersecurity Articles, Messaging Security, Standards & Guidelines / Frank Crast / February 26, 2019 / 800-177, authentication, DKIM, DMARC, email, encryption, Messaging, NIST, SPF, TLS

The National Institute of Standards and Technology (NIST) has releases its Security Publication (SP) 800-177 Revision 1, that include security guidelines and recommendations for achieving “trustworthy email”.

NIST SP 800-177 Revision 1: “Trustworthy Email” Read More »

NIST SP 1800-4: Mobile Device Security

Data Privacy, Mobile Security, Standards & Guidelines / Frank Crast / February 21, 2019 / BYOD, CAG 20, Cybersecurity Framework, ISO 27002, mobile, NIST, SP 800-1400, SP 800-53

The National Institute of Standards and Technology (NIST) has released its Security Publication (SP) 1800-4, that includes security guidelines for mobile device security in cloud and hybrid environments.

NIST SP 1800-4: Mobile Device Security Read More »

NIST SP 800-37 Rev. 2: Risk Management Framework for Information Systems and Organizations

Application Security, Server Security, Standards & Guidelines, Third-Party Security / Frank Crast / December 20, 2018 / NIST, Privacy, Risk, RMF, SP 800-37

The National Institute of Standards and Technology (NIST) has released a new risk management framework guideline. NIST has named the document Security Publication (SP) 800-37 Rev. 2: “Risk Management Framework for Information Systems and Organizations: A System Life Cycle Approach for Security and Privacy.”

NIST SP 800-37 Rev. 2: Risk Management Framework for Information Systems and Organizations Read More »

Germany Publishes New Broadband Router Security Guidelines

Network Security, Standards & Guidelines / Frank Crast / November 26, 2018 / 2FA, BSI TR-03148, Germany, Guidelines, LAN, Network, Router, Secure Broadband Router, SOHO, WAN, WiFi

The German government Federal Office for Information Security published technical security guidelines for broadband routers commonly used in Small Office and Home Office (SOHO) environments. The new guideline provides recommendations to manufacturers on designing and implementing routing products with “adequate state-of-the -art security features.”

Germany Publishes New Broadband Router Security Guidelines Read More »

TLS 1.3 protocol is officially standard

Application Security, Cryptography, Data Privacy, Standards & Guidelines / Frank Crast / August 14, 2018 / encryption, IETF, RFC 8446, SSL, TLS, TLS 1.3

The Transport Layer Security (TLS) 1.3 has officially become a standard last week. The new TLS standard now offers improved privacy, security and performance to the internet security protocol.

TLS 1.3 protocol is officially standard Read More »

Wi-Fi Alliance introduces Wi-Fi CERTIFIED WPA3

Cryptography, Network Security, Standards & Guidelines / Frank Crast / June 27, 2018 / CERTIFIED, encryption, Network, WiFi, WPA, WPA3

The Wi-Fi alliance announced a new and improved next-generation Wi-Fi security for personal and enterprise networks dubbed “WiFi CERTIFIED WPA3.”

Wi-Fi Alliance introduces Wi-Fi CERTIFIED WPA3 Read More »