About the Standards Blog
Senators Bash State Department on CybersecurityKacy Zurkus
From a letter sent to Sec. of State Mike Pompeo protesting the lack of effective cybersecurity at the State Department –September 17, 2018 - In response to reports that the US State Department is lagging in its implementation of basic cybersecurity standards, a group of bipartisan senators have written a letter to Secretary of State Mike Pompeo urging him to augment security mechanisms and improve compliance.
The senators point out that the password-only approach is not reliable protection, particularly with the increased number of phishing attacks. Additionally, they referenced the 2018 General Service Administration assessment, which evidenced that across the Department of State only 11% of agency devices had enhanced security controls deployed... Full Story
NIST to Hold Public Workshop on Voluntary Privacy Framework to Help Organizations Manage Risk
–September 12, 2018 - As part of an effort to help organizations manage risk, the U.S. Commerce Department\'s National Institute of Standards and Technology (NIST) has launched a collaborative project to develop a voluntary privacy framework. The American National Standards Institute (ANSI) encourages its members and relevant stakeholders to attend NIST\'s public workshop on October 16 in Austin, Texas, to contribute to collective stakeholder input to support the development of the framework... Full Story
IEEE Publishes Standard Addressing Real-Time Architecture for Embedded SystemsPress Release
–September 11, 2018 - IEEE and the IEEE Standards Association (IEEE-SA), today announced the publication and availability of IEEE 2050 TM -2018â€”Standard for Real-time Operating System (OS) for Small-scale Embedded Systems. The new standard follows an agreement announced last November that transferred ownership of the TRON ÂµT-Kernel 2.0 to IEEE-SA and that provided a license to TRON Forum for use of the intellectual property...IEEE 2050 is anticipated to greatly expand development and global utilization of the specification already sourced by more than 12,000 licensed IoT manufacturers and others worldwide...The TRON Project, launched in 1984 by Prof. Ken Sakamura, aims to build an open architecture for embedded systems. Rather than imposing a closed ecosystem of hardware and software requirements, its founders have defined a set of interfaces that ensure broad interoperability between the various devices supplied by different vendors... Full Story
Medical Device Security Improvements Coming - But Not Anytime SoonTaylor Armerding
–September 11, 2018 - The cybersecurity of connected medical devices â€“ notoriously poor for decades â€“ should finally start to improve.
That is genuinely good news. But it is tempered by the reality that it will not happen quickly.
The long-overdue change is coming thanks to the federal Food and Drug Administrationâ€™s (FDA) announcement in June that it was adopting UL 2900-2-1 as a new â€œconsensus standardâ€ for better software security in new devices, in order for them to qualify for â€œpremarket certification.â€ That is expected to have a major impact - for good - on both the industry and patients.
But it doesnâ€™t change much yet... Full Story
China Partners with CHAdeMO to Develop a Fast EV Charging StandardManish Kharinta
–September 10, 2018 - China\'s fast charging standardâ€“the Chinese GB/Tâ€“has partnered with the Japanese CHAdeMO to develop the next generation of a single fast charging standard. The standard will be compatible with the older GB/ T compatible cars. CHAdeMO is the trade name of a fast charging method for electric vehicles.
A Memorandum of Understanding was signed by the CHAdeMO association and the China Electric Council. The agreement was signed on August 28th in Beijing, with consent from the governments of both countries. The partnership aims to co-develop a joint standard. The CHAdeMO Association aims to increase quick-charger installations worldwide and to standardize how to charge EVs... Full Story
These are the Top 4 Enterprise-Oriented Blockchains in the Market TodayChristina Comben
–September 8, 2018 - If 2017 was the year of the ICO and 2018 the year of crypto-regulations, the next twelve months look set to be all about enterprise adoption of blockchain solutions...many large organizations are patiently waiting at the gates of cryptocurrency with open arms...In fact, many large businesses are already busy buying up patents and experimenting with blockchains of their own. And while there are plenty of blockchains that businesses could potentially find useful, letâ€™s take a look at the top four... Full Story
Bitcoin Cash Standard Organization (BCSO): ViaBTC CEO Haipo Yang New BCH Consensus Proposal
–September 7, 2018 - This Friday Haipo Yang, the CEO of Viabtc and Coinex issued a Medium blog recommending the establishment of a standardization institution like the World Wide Webâ€™s W3C consortium. Haipo Yang aspires to originate a related group called the Bitcoin Cash Standard Organization (BCSO) in order to build standards and achieve better transparency when it comes to BCH consensus suggestions... Full Story
Voting machines without paper trails should be trashed to thwart cyberattacks, election report saysDeborah Barfield Berry
–September 7, 2018 - Voting machines that donâ€™t provide a paper trail should be â€œremoved from service\" and other security steps put in place to thwart cyberthreats before midterm elections, experts said Thursday.
In a new report, \"Securing the Vote: Protecting American Democracy,\" by the National Academies of Sciences, Engineering, and Medicine, experts call for more federal funds to improve election systems and more post-election audits of voting machines... Full Story
Quantum computers: cyber-security threats for the banking and financial sectorElisabetta Zaccaria
Secure Chorus Chairman Elisabetta Zaccaria, highlighting the need to develop quantum-safe public key cryptography standards –September 6, 2018 - Quantum related technologies have the potential to massively disrupt financial services industry, in terms of the opportunities that such computing power will enable. However, with these opportunities also come information security threats, as current encryption methods become simpler to break...The significance of the problem for the financial sector cannot be overestimated. Today, fraud linked to on-line banking as well as e-commerce transaction is an ever-growing issue in the classic computing world. In the future, quantum computers, with their ability to break current public key cryptography, may push on-line fraud from what is currently a manageable problem to subjecting the financial sector to systemic breach scenarios...
One method of developing quantum-safe public key cryptography is the deployment of a new set of public key cryptosystems for classic computers capable of resisting quantum computer attack... Full Story
Federal agency to establish privacy frameworkJacqueline Thomsen
–September 6, 2018 - The National Institute of Standards and Technology (NIST) announced Tuesday that it will begin to create a framework to guide organizations on how they can protect the information of individuals using their products or services.
The non-regulatory agency, responsible for setting scientific standards and housed in the Commerce Department, said in a release that the privacy framework would be based off the framework it previously established for cybersecurity issues... Full Story