Certification Updates

Updates by the Government and Industry about Security Certifications

Fed Update

FED Roundup: June 2020

DISA News DISA & JFH-DODIN hold virtual awards ceremony NIST News Announcements: Release of OSCAL 1.0.0 Milestone 3 Special Publications & Updates: SP 800-63, Digital Identity Guidelines: SP 800-63A Enrollment and Identity Proofing SP 800-63B Authentication ...

Read more

Corsec - FIPS 140-2

Key Agreement Schemes

As the Cryptographic Module Validation Program (CMVP) prepares for the transition to automated algorithm testing, more and more algorithms are being subjected to the testing process. Testing for the key agreement schemes specified in NIST ...

Read more

Fed Update

FED Roundup: April 2020

DISA News DISA provides connectivity to DoD COVID Response Unit NIST News Announcements: None Releases & Special Publications: Draft NIST Cybersecurity White Paper on "Methodology for Characterizing Network Behavior of Internet of Things Devices" Draft ...

Read more

Limiting the Use of FIPS 186-2

New guidance from the National Institute of Standards and Technology (NIST) regarding the use of Digital Signatures will be impacting a number of FIPS 140-2 validations in the near future. This guidance will send many ...

Read more

U.S. Gov

FED Roundup: March 2020

DISA News Temporary Changes to milDrive DISA Dir Norton Interviews during Women's History Month DISA Protects Teleworks with renewed Anti-Virus licenses NIST News Announcements: NIST ITL Bulletin on Teleworking Releases & Special Publications: Revision 1 ...

Read more

U.S. Gov

FED Roundup: February 2020

DISA News DISA Drumbeat DISA hosts members of academia to expand its #NEXTGEN outreach to enhance cybersecurity moving forward NIST News Announcements: None Releases & Special Publications: NISTIR 8287: "A Roadmap for Successful Regional Alliances ...

Read more

U.S. Gov

FED Roundup: January 2020

DISA News DISA works to improve JRSS capabilities NIST News Announcements: None Releases & Special Publications: Draft NISTIR 8278, "National Cybersecurity Online References (OLIR) Program: Guidance for OLIR Users and Developers." Draft NIST Special Publication ...

Read more

U.S. Gov

FED Roundup: December 2019

DISA News DISA celebrates 244th Marine Corps birthday NIST News Announcements: None Releases & Special Publications: Special Publication (SP) 800-189, "Resilient Interdomain Traffic Exchange: BGP Security and DDoS Mitigation," Draft NIST Special Publication (SP) 800-208, "Recommendation ...

Read more

Corsec - FIPS 140-2

2019 FIPS Implementation Guidance Updates

The National Institute of Standards and Technology (NIST), the agency that governs FIPS 140-2 validations in the United States, periodically releases updates and revisions to the Implementation Guidance (IG) used to evaluate products against FIPS ...

Read more

U.S. Gov

FED Roundup: November 2019

DISA News The Fourth Estate Network Optimization Execution Guidance memorandum was signed, designating DISA as the single service provider of common use information technology services DISA held its annual Forecast to Industry on Nov 4, ...

Read more

U.S. Gov

FED Roundup: October 2019

DISA News The U.S. Air Force selects Core Automated Maintenance System for Mobility to be singular Maintenance Information System NIST News Announcements: None Releases & Special Publications: Draft FIPS 186-5 and Draft NIST Special Publication ...

Read more

Algorithm Testing & Automation: The Change from CAVS to ACVTS

The National Institute of Standards and Technology (NIST) has announced that the Cryptographic Module Validation Program (CMVP) and the Cryptographic Algorithm Validation Program (CAVP) will soon be transitioning to an automated process for algorithm testing. ...

Read more

U.S. Gov

FED ROUNDUP: SEPTEMBER 2019

DISA News DISA moderated a panel during TechNet Augusta 2019 that discussed classified mobile capabilities, assured identity, and secure access to data NIST News Announcements: None Releases & Special Publications: NISTIR 8183A (3 volumes), Cybersecurity ...

Read more

U.S. Gov

FED ROUNDUP: AUGUST 2019

DISA News DISA improves Cloud Authorization process DISA Deployed the DOD Secure Access File Exchange (DOD SAFE) NIST News Announcements: None Releases & Special Publications: SP 800-52 Revision 2, "Guidelines for the Selection, Configuration, and ...

Read more

U.S. Gov

FED ROUNDUP: JULY 2019

DISA News DISA Awards SETI IDIQ to 23 Small Businesses DISA Releases 4 Year Strategic Plan NIST News Announcements: None Releases & Special Publications: SP 1800-17, Multifactor Authentication for E-Commerce: Risk-Based, FIDO Universal Second Factor ...

Read more

U.S. Gov

FED ROUNDUP: JUNE 2019

DISA’s June News DITCO, DISA's contracting arm, reduces its enterprise acquisition services fee NIST’s June News Announcements: NIST announces Open Security Controls Assessment Language (OSCAL), Version 1.0.0 - Milestone 1 has been released Releases & ...

Read more

U.S. Gov

FED ROUNDUP: MAY 2019

DISA’s May News DISA enhances collaboration with a Global Video Services throughout DoD DISA aims to consolidate the common use information technology (IT) infrastructure for the Department of Defense’s (DOD) “fourth estate”  The DoD continues ...

Read more

Corsec - FIPS 140-2

FIPS 140-3 APPROVED

A Federal Register Notice has been issued for the "Federal Information Processing Standard (FIPS) 140-3, Security Requirements for Cryptographic Modules". Having now been signed by the U.S. Commerce Secretary, it is official, FIPS 140-3 has ...

Read more

U.S. Gov

FED ROUNDUP: APRIL 2019

DISA’s April News DISA profiles their Network Mapping Tool for Internet Attack Surface DISA's Defense Collaboration Services (DCS) now has an integrated teleconferencing capability available to DOD employees DISA Command Center (DCC) plans to implement ...

Read more

U.S. Gov

FED ROUNDUP: FEBRUARY 2019

DISA’s February News DISA grants Provisional Authorization (PA) with conditions to the Adobe Experience Manager for Managed Services (AEMMS) at data Impact Level 4 DISA grants Provisional Authorization (PA) with conditions to PTC Cloud Services ...

Read more