NIST, DHS experts say protecting smartphones and tablets shouldn’t be any different than securing typical desktop or laptop computers. DHS will release mobile security reference architecture to help agencies understand common concepts. NIST is updating security control guide with 250 new requirements, including mobile controls.
The Insider Threat Task Force expects to submit its national plan to the White House in the next few months. The Defense Department will use its secure identity cards to stop unauthorized access to data and systems.
Randy Vanderhoof, the executive director of the alliance, joined the Federal Drive with Tom Temin and Amy Morris to discuss how the use of smart cards for identity and access are driving commercial security identity credentials.
Deputy secretaries now get quarterly scorecards on how their agency is meeting four IT security priorities, including continuous monitoring of agency networks and secure identity cards. Howard Schmidt, the White House cyber coordinator, said the goal is to increase accountability and make sure agencies are putting enough focus on these areas. Schmidt said he is also developing priorities for 2012, which includes getting cybersecurity legislation passed.
OPM developing competency models for performance improvement officers and chief operating officers as part of its requirements under the GPRA Modernization Act. DHS moves to agile development to fix the HSIN program. NIST to update HSPD-12 card requirements to meet mobile needs.
A memo from federal CIO Steven VanRoekel requires agencies to begin accepting usernames and passwords from commercial companies such as Verisign or Google. This is the second time the government has tried to accept commercial credentials. Experts say this time agencies and industry are better prepared to be successful.
The ID card hanging around your neck isn’t living up to its potential. The Homeland Security Presidential Directive 12 (HSPD-12) cards allow secure entry into federal facilities.
On today’s Federal Drive: Talk of government shutdown has ratcheted up as lawmakers squabble over a CR, federal information sharing efforts have taken off and the House prepares to square off over various proposals to reform the Postal Service.
Android devices are next up in DoD’s effort to get off-the-shelf smartphones up to snuff with the Pentagon’s security needs. Also, the Army looks for a better way to do two-factor authentication on mobile devices.
The agency is extending the FTS2001 bridge contract with four vendors for at least another six months. Most of the largest agencies have not fully transitioned to the telecommunications. GSA is readying several other contracts including for HSPD-12 services and strategic sourcing for wireless services.