Heute 335

Gestern 578

Insgesamt 39431920

Mittwoch, 15.05.2024
eGovernment Forschung seit 2001 | eGovernment Research since 2001

Sicherheit

  • US: States and Localities Consider Security as a Service

    Is security the next as-a-service offering you’ll be sending to the cloud?

    As IT leaders have grown more comfortable with the security of software-as-a-service offerings and cloud storage, they also have started turning to cloud-based managed security services. For both commoditized basic services such as vulnerability testing and cloud security gateways to more sophisticated identity management and threat analysis, public-sector chief information security officers are growing more willing to consider managed security service providers (MSSPs).

  • US: Survey: Obama and Romney Should Focus on Cybersecurity

    Seventy-four percent of Americans surveyed want this year’s presidential candidates to focus on protecting government computer systems from cybercriminals, according to the biannual Unisys Security Index, which surveys more than 1,000 people on security concerns.

    Paradoxically fewer Americans were concerned about computer security than those in last year’s survey: 39 percent compared to 2011’s 48 percent. And 33 percent of this year’s respondents weren’t concerned at all about computer security.

    “The latest results of our survey show that the American people recognize the impact that cyberattacks can have on our critical infrastructure and are looking to the U.S. government to take on a more active role in proactively defending our nation’s key assets,” said Steve Vinsik, Unisys’ vice president of enterprise security, in a company press release.

  • US: With shared infrastructures, security must move with the data

    As agencies shutter data centers and move toward more shared IT infrastructures, managers need to adopt a more data-centric approach to securing workloads, the deputy chief technology officer of the National Nuclear Security Administration told a Washington, D.C., audience recently.

    “Shared infrastructure is something that takes very careful consideration when you want to co-locate workloads that are owned by different folks and stakeholders within your own organization,” said Anil Karmel, who has helped the Energy Department build a secure, cloud services brokerage technology, YourCloud, to connect a diverse set of users to a marketplace of cloud service providers.

  • USA vor Online-Bedrohungen nicht sicher

    Der US-Rechnungshof GAO kritisiert das Heimatschutzministerium. Es sei nicht fähig, das Land vor Bedrohungen aus dem Netz zu schützen.

    Das US-Heimatschutzministerium ist dem US-Rechnungshof zufolge nicht fähig, das Land vor Bedrohungen aus dem Internet zu schützen.

  • USA: Agencies close to satisfying cybersecurity law

    The White House Office of Management and Budget predicts that the percentage of federal systems complying with a 2004 law requiring agencies to identify cyber risks and develop ways to combat them will be up next year.

    Karen Evans, OMB's administrator of e-government and information technology, told a cybersecurity conference Thursday that early numbers based on reports submitted Oct. 1 show that 88 percent of systems will meet certification and accreditation. That is up from 85 percent last year. "That's good, but my goal is 90 percent, and my overall goal is 100 percent," Evans said.

  • USA: Agencies Fall Short on Protecting User Data

    Many government agencies have failed to meet the guidelines for protecting personal information that were established two years ago after the breach at the Department of Veterans Affairs.

    According to a report issued by the Government Accountability Office (GAO) today, a number of agencies fell short on recommendations for securing databases, remote access, and mobile devices. All of the agencies received a downgrade in their scores for e-government progress on the President's Management Agenda Scorecard

  • USA: Agency progress to secure its critical infrastructure stalled

    In the six years since the Office of Management and Budget told agencies to develop plans to protect the technology behind the critical infrastructure the government owns, few have fully met the directive's goals.

    The Government Accountability Office reports that while every agency submitted a plan or documentation in lieu of a plan, only four of those 18 fully developed plans addressed all of OMB's criteria.

    And no agency has updated their plans since 2004.

  • USA: Audit sounds alarm over Minnesota government's online transactions

    An investigation has found serious security problems with a state Web site that allows Minnesotans to renew their license tabs online. A legislative auditor's report released on Tuesday concludes that hackers could get into the system and steal consumers' private data. State officials have shut down the Web site until the problems are fixed, and say they're not aware of any security breaches. Some legislators say that reassurance isn't good enough.

  • USA: Bericht: IT-Sicherheitsmängel im Ministerium für innere Sicherheit

    Computersysteme von Behörden, die dem Department of Homeland Security (DHS) angeschlossen sind, weisen oft Sicherheitsmängel auf. Das hat der Inspector General des Ministeriums in seinem Bericht festgestellt, der beispielsweise zur New York Times vorgedrungen ist. Anscheinend hätten die Transportation Security Administration, die Customs and Border Protection und die Küstenwache keine Backup-Systeme und folgten somit nicht den selbst gestellten und in der aufwändigen Werbekampagne "Get Ready Now" verbreiteten Ansprüchen.

  • USA: Bush administration proposes $7.3 billion for IT security

    President Bush's proposed budget for fiscal 2009 includes $7.3 billion for cybersecurity efforts -- a 9.8 percent increase from last year and a 73 percent increase from fiscal 2004.

    According to documents issued by the Office of Management and Budget, five agencies currently rate unsatisfactory in cybersecurity efforts, based on reports from inspectors general. The Defense Department is still undergoing an audit.

  • USA: Computer security not a telework hindrance, says advocacy group

    The security of the government's computer systems is not an impediment to expanding agencies' use of telework, says a report from a cybersecurity public policy advocacy group.

    The 12-page report urges agencies to allow employees to work from home using high-speed Internet connections and telephone lines.

  • USA: Cybersecurity challenges top concerns of federal CIOs

    The government’s chief information officers continue to be most concerned and challenged by cybersecurity demands.

    For the last eight years, IT security has topped the list of concerns among federal CIOs who were surveyed by the industry group TechAmerica, formerly called the Information Technology Association of America.

  • USA: Cybersecurity Regulations Pass House

    A House bill would create a federal cybersecurity director and add new cybersecurity requirements, but must be reconciled with the Senate bill, which doesn't have these provisions.

    The House of Representatives has passed a bill that would update the federal government's cybersecurity requirements and create a permanent cybersecurity office within the White House, putting some long-sought reforms closer to passage.

    The reforms were passed as an amendment offered by Rep. Jim Langevin (D-R.I.) and Dianne Watson (D-Calif.) that made its way into the annual defense spending bill, the National Defense Authorization Act for Fiscal Year 2011. The defense authorization bill passed the House on Friday by a 229-186 vote.

  • USA: Department of Homeland Security Rolls Out Cybersecurity Campaign

    The Department of Homeland Security has launched "Stop. Think. Connect." to encourage citizens and organizations to take responsibility for online safety.

    The Department of Homeland Security (DHS) is asking Americans to take responsibility for their own online safety and encourage others to do the same through a new cybersecurity awareness campaign.

    Called Stop. Think. Connect., the campaign is an extension of existing DHS efforts to work with the private sector on cybersecurity strategies, according to a White House blog post by the Obama administration's cybersecurity coordinator, Howard A. Schmidt, in unveiling the effort.

  • USA: Dept. of Homeland IT Insecurity

    The agency protecting the U.S. against threats gets an "F" when it comes to safeguarding its own IT systems. What's being done about it?

    You think you've got password woes? Folks who work for the U.S. Citizenship and Immigration Information Services have to remember as many as 17 passwords to get into their networks. One poor soul at the agency, part of the U.S. Dept. of Homeland Security, had to use four different passwords just to check e-mail, according to a recent report by the DHS Office of Inspector General.

  • USA: DHS site offers security tools, tips for software developers

    The Homeland Security Department has launched a secure portal to provide best practices, tools and other resources for creating more reliable and secure software for developers and security professionals.

    The new Web site, Build Security In, was developed in conjunction with the Carnegie Mellon Software Engineering Institute. It was unveiled at a software assurance forum this week co-hosted by DHS and the Defense Department.

  • USA: Evans: 'People are losing data'

    Between July and Sept. 30, agencies reported 338 separate security incidents involving personally identifiable information to the Office of Management and Budget, Karen Evans, OMB’s administrator for e-government and information technology, said today.

    Many of the incidents, however, are not attacks on government information from outsiders, Evans said in a speech at the IT Association of America’s annual Chief Information Security Officer Workshop in Falls Church, Va.

  • USA: Evans: Agencies are improving security profiles

    Agencies continue to make progress in securing their information systems, at least in terms of improving their collective FISMA scores, according to Karen Evans, the Office of Management and Budget’s administrator of e-government and IT. Evans was the keynote speaker at the ITAA 2006 Information Security Workshop today in Falls Church, Va.

    FISMA — the Federal Information Security Management Act — sets the standards and procedures agencies must observe in order to improve their security profiles. Each year, every department and independent agency is given a letter grade, based on their implementation of the elements of FISMA.

  • USA: Federal government earns a collective D+ on FISMA scorecard

    The federal government as a whole continues to struggle with securing its computer networks, according to the latest round of FISMA grades released today by the House Government Reform Committee.

    Agencies earned an overall D+ for their efforts, the same grade as last year. Ten agencies improved their marks while 8 slipped.

  • USA: Feds Again Flunk Network Security

    For the fourth consecutive year, a large percentage of federal agencies flunked their annual network security review under the Federal Information Security Management Act (FISMA), including the Department of Homeland of Security (DHS) and the Department of Defense (DOD).

    Out of 24 reporting agencies, 13 either scored an F or a D in the annual report card scores required under FISMA.

Zum Seitenanfang