Cybersecurity and Information Systems Digest

9 AUGUST 21

Featured Technical Inquiry

Security-Conscious Password Behavior From the End-User’s Perspective

Even though technical solutions for security problems are widespread, there are no adequate security measures against precarious user behavior.  Even if hashing and encrypting are used correctly in masking the passwords, attackers can bypass these strongpoints by going for the weakest link.  Most likely, this will happen through sharing a password, using an already leaked password, or creating a feasibly guessable password (Olmstead & Smith, […]

Learn More
PP

Voice From the Community

Philip Payne

Information Systems Information Analysis Center (CSIAC)

As the new technical lead, Philip Payne (CISSP and security+ certified), comes from a rich background in cybersecurity with the C5ISR center (formerly CERDEC). At C5ISR, he led a world-class cross-domain solution (CDS) lab, where he performed lab-based security assessments on Army CDSs going through the Secret and Below Interoperability CDS Certification and Accreditation Approval process. He was a key member of the INFOSEC Branch, which has made a myriad of contributions in cyberspace for the U.S. Department of Defense at large. At SURVICE Engineering, he served as a vital member of the cyber research and development team as the senior cybersecurity engineer supporting the Data Analysis Center (formerly AMSAA) on early acquisition cybersecurity assessments for Army systems.

Featured News

U.S. CYBERCOM 2021: A Year in Review

Here are some of U.S. Cyber Command’s (CYBERCOM’s) most impactful moments of 2021: Over the last year, the cybersecurity community has encountered new challenges and worked to adapt and respond in innovative ways. Ransomware is no longer considered just criminal activity but a threat to national defense and infrastructure; deterrence is conducted across multiple domains simultaneously; and the value of cyber defense partnerships across nations […]

Learn More

Recent News

DARPA Joins Public-Private Partnership to Address Challenges Facing Microelectronics Advancement

DARPA announced its participation in a new long-term university research collaboration with the Semiconductor Research Corporation (SRC) and a consortium of companies in the commercial semiconductor industry and the defense industrial base called the “Joint…

National Cyber Director Unveils New Approach at Cyber War College Conference

After almost two years of operating within the COVID-19 environment, Cassandra C. Lewis knew it was time that her organization’s annual flagship conference focus on the enduring impacts of the pandemic. Lewis leads the University’s…

DARPA Open Sources Resources to Aid Evaluation of Adversarial AI Defenses

There are many inherent weaknesses that underlie existing machine-learning (ML) models, opening the technology up to spoofing, corruption, and other forms of deception. Attacks on artificial intelligence (AI) algorithms could result in a range of…

NSA’s Cybersecurity Collaboration Center Celebrates Its First Year

One year ago, the National Security Agency (NSA) stood up the Cybersecurity Collaboration Center in an open business park outside NSA’s fence line, breaking down barriers between the Agency and the outside world. In the past year,…

NIST Names Joannie Chin as Director of Its Engineering Laboratory

The U.S. Department of Commerce’s National Institute of Standards and Technology (NIST) has selected Joannie Chin to lead its Engineering Laboratory. Chin has been at NIST for 26 years, most recently serving as Acting Director…

NSA and CISA Release Final Part IV of Guidance on Securing 5G Cloud Infrastructures

The Cybersecurity and Infrastructure Security Agency (CISA) has announced the joint National Security Agency (NSA) and CISA publication of the final of a four-part series, “Security Guidance for 5G Cloud Infrastructures.” “Part IV:  Ensure Integrity…

Want to be featured in our biweekly digest?

Submit your "Voice From the Community"

Upcoming Events

Insider Threat Day at JHU/APL

Insider Threat Day at Johns Hopkins University Applied Physics Laboratory highlights government and industry speakers specializing in insider threats and data protection. The event will both emphasize the importance of safeguarding our nation from insider…

Optical Architectures for Displays and Sensing in Augmented, Virtual, and Mixed Reality (AR, VR, MR)

The 3rd SPIE AR, VR, and MR Conference will feature a discussion on optical architectures and the next generation of smart glasses and head-mounted displays. Technical topics will include the following: Novel imaging systems and…

RSA Conference

The theme for RSAC 2022 is “Transform.” This conference offers a dialogue on the rapidly evolving information security industry by providing insight into trends and breaking news in information security. It is intended for military,…