Shows & Panels
- AFCEA Answers
- Ask the CIO
- The Big Data Dilemma
- Carrying On with Continuity of Operations
- Connected Government
- Constituent Servicing
- Continuous Monitoring: Tools and Techniques for Trustworthy Government IT
- The Cyber Imperative
- Cyber Solutions for 2013 and Beyond
- Expert Voices
- Federal Executive Forum
- Federal IT Challenge
- Federal Tech Talk
- Mission-critical Apps in the Cloud
- The Path from Legacy Systems
- The Real Deal on Digital Government
- The Reality of Continuous Monitoring... Is Your Agency Secure?
- Veterans in Private Sector: Making the Transition
Shows & Panels
FISMA one step closer to overhaul
Tuesday - 6/1/2010, 5:06pm EDT
- The House took a major step forward to overhaul federal cybersecurity policy by passing the Defense Authorization Bill. The legislation includes and amendment to update the Federal Information Security Management Act, (FISMA). The new cybersecurity guidance will introduce performance based standards and guidelines. This is a marked changed from the current compliance based standards. But already cybersecurity experts are cautioning against the FISMA reforms. They says that although FISMA has improved cybersecurity, the overall results were not that impressive. Proponents of the bill hope to pass the full measure before the August Congressional Recess.
- Carnegie Mellon University's CERT (Computer Emergency Response Team) has released a basic fuzzing framework to help identify and eliminate security vulnerabilities from software products. ThreatPost.com reports that the Basic Fuzzing Framework (BFF) is described as a simplified version of automated dumb fuzzing and includes a Linux virtual machine that has been optimized for fuzz testing and a set of scripts to implement a software test. Fuzz testers, or fuzzers, are used by security researchers to find vulnerabilities by sending random input to an application.
Check out all of Federal News Radio's coverage of cybersecurity issues here.