Security

Automation

Further Automation Within The CMVP

The Cryptographic Module Validation Program (CMVP) is a part of the National Institute of Standards and Technology (NIST) which operates under the Department of Commerce.  The CMVP's role is to promote the use of validated ...

Read more

Fed Update

FED Roundup: February 2021

DISA News Air Force Lt. Gen. Robert Skinner takes command of the JFHQ-DODIN DoD's Cloud Computing Program Office supports DISA's telework environment DISA has a new Executive Deputy Director, Christopher M. Barnhurst STIG Updates Group ...

Read more

Fed Update

FED Roundup: January 2021

DISA News DISA continues to work towards implementation of the DISA Strategic Plan FY 2019-2022 Version 2, released in December of 2020. Assessment Requirements for IT services will now be placed in DISA contracts as ...

Read more

Fed Update

FED Roundup: December 2020

DISA News DISA continues telecommunication modernization efforts amid COVID pandemic U.S. Army Fort Bliss to integrate Apple iPad devices into Emergency Vehicles STIG Updates DISA has released the Samsung Android 11 with Knox 3.x Security ...

Read more

Fed Update

FED Roundup: November 2020

DISA News DISA's Global Video Services – Unclassified expands to include voice dial-in capability STIG Updates DISA has released the Juniper SRX for Anisble Automation Package DISA has released the Canonical Ubuntu 18.04 STIG DISA ...

Read more

Fed Update

FED Roundup: October 2020

DISA News DISA has released updates to the SRG/STIG Library Compilations DISA celebrates National Cybersecurity Awareness Month STIG Updates Application STIGs Mobility STIGs and SRGs Network STIGs and SRGs Operating System STIGs and Overviews Benchmarks ...

Read more

Fed Update

FED Roundup: September 2020

DISA News (None) NIST News Announcements: (None) Special Publications & Updates: Draft NISTIR 8301, "Blockchain Networks: Token Design and Management Overview" Draft NISTIR 8235, "Security Guidance for First Responder Mobile and Wearable Devices," Special Publication ...

Read more

Fed Update

FED Roundup: August 2020

DISA News The National Background Investigative System Directorate has become one of the first DoD agencies to adopted DevSecOps DISA has extended the Provisional Authorization for the Microsoft Azure Secret Region as a cloud service ...

Read more

Algorithm Transition Dates

Recent Implementation Guidance (IG) from NIST could impact vendor algorithms. The following overview has been created to summarize those critical dates and associated algorithms. AES CBC-CS1, CBC-CS2, CBC-CS3 (IG A.12) Until Sep. 1, 2020, implementations ...

Read more

Fed Update

FED Roundup: July 2020

DISA News The DISA Commander, Navy Vice Adm Norton, announced a new path to address cybersecurity for the warfighter DISA and other DoD agencies can now use the Systems Engineering, Technology and Innovation contract The ...

Read more

Fed Update

FED Roundup: June 2020

DISA News DISA & JFH-DODIN hold virtual awards ceremony NIST News Announcements: Release of OSCAL 1.0.0 Milestone 3 Special Publications & Updates: SP 800-63, Digital Identity Guidelines: SP 800-63A Enrollment and Identity Proofing SP 800-63B Authentication ...

Read more

Corsec - FIPS 140-2

Key Agreement Schemes

As the Cryptographic Module Validation Program (CMVP) prepares for the transition to automated algorithm testing, more and more algorithms are being subjected to the testing process. Testing for the key agreement schemes specified in NIST ...

Read more

Fed Update

FED Roundup: April 2020

DISA News DISA provides connectivity to DoD COVID Response Unit NIST News Announcements: None Releases & Special Publications: Draft NIST Cybersecurity White Paper on "Methodology for Characterizing Network Behavior of Internet of Things Devices" Draft ...

Read more

COVID-19: Corsec Continues to Operate

In response to the COVID-19 pandemic around the globe, Corsec staff have transitioned to a telework policy to ensure the health and wellbeing of our staff, their family, and the community. We feel fortunate to ...

Read more

Limiting the Use of FIPS 186-2

New guidance from the National Institute of Standards and Technology (NIST) regarding the use of Digital Signatures will be impacting a number of FIPS 140-2 validations in the near future. This guidance will send many ...

Read more

U.S. Gov

FED Roundup: March 2020

DISA News Temporary Changes to milDrive DISA Dir Norton Interviews during Women's History Month DISA Protects Teleworks with renewed Anti-Virus licenses NIST News Announcements: NIST ITL Bulletin on Teleworking Releases & Special Publications: Revision 1 ...

Read more

NIST Guidance: Teleworking Security

The National Institute of Standards and Technology (NIST) has released a new IT Laboratory Bulletin on Telework Security. The bulletin draws from the original 2016 NIST Special Publication 800-46 Revision 2, Guide to Enterprise Telework, ...

Read more

U.S. Gov

FED Roundup: February 2020

DISA News DISA Drumbeat DISA hosts members of academia to expand its #NEXTGEN outreach to enhance cybersecurity moving forward NIST News Announcements: None Releases & Special Publications: NISTIR 8287: "A Roadmap for Successful Regional Alliances ...

Read more

U.S. Gov

FED Roundup: January 2020

DISA News DISA works to improve JRSS capabilities NIST News Announcements: None Releases & Special Publications: Draft NISTIR 8278, "National Cybersecurity Online References (OLIR) Program: Guidance for OLIR Users and Developers." Draft NIST Special Publication ...

Read more

U.S. Gov

FED Roundup: December 2019

DISA News DISA celebrates 244th Marine Corps birthday NIST News Announcements: None Releases & Special Publications: Special Publication (SP) 800-189, "Resilient Interdomain Traffic Exchange: BGP Security and DDoS Mitigation," Draft NIST Special Publication (SP) 800-208, "Recommendation ...

Read more