Home Tags National Institute of Standards and Technology (NIST)

Tag: National Institute of Standards and Technology (NIST)

Google kills SHA-1 with successful collision attack

It's official: The SHA-1 cryptographic algorithm has been "SHAttered." Google successfully broke SHA-1. Now what?After years of warning that advances in modern computing meant a...

Credential-stuffers enjoy up to 2% attack success rate – report

It's kinda easy when all the passwords are 1234567 Hackers achieve a success rate of 0.1 to 2 per cent when reusing stolen credentials to...

The war for cybersecurity talent hits the Hill

Many analysts and business leaders believe there is a severe need for qualified cybersecurity professionals in the U.S., something that has caught the eye...

Buggy Domain Validation Forces GoDaddy to Revoke Certs

GoDaddy has revoked, and begun the process of re-issuing, new SSL certificates for more than 6,000 customers after a bug was discovered in the...

A Vendor's Security Reality: Comply Or Good-Bye

Privacy compliance is now mission critical.Third-party suppliers that fail to meet data protection mandates will be excluded from doing business in lucrative vertical markets. The...

FDA Issues Guidelines For Security Of Medical Devices In Use

Guidance advises manufacturers on how to continue monitoring the devices once they are sold. The US Food and Drug Administration (FDA) has issued guidelines on...

NIST requests ideas for crypto that can survive quantum computers

Christmas miracle: Government preparing properly for problem expected to land in ~20 years The United States' National Institute of Standards and Technology has issued a...

US commission whistles to FIDO: Help end ID-based hacks by 2021

No breaches should result from compromised identities, say gov bods A White House commission on improving cybersecurity has come up with a list of recommendations...

Standards body warned SMS 2FA is insecure and nobody listened

Duo Security says NIST's advice to deprecate out-of-band passwords has been ignored The US National Institute of Standards and Technology's (NIST) advice that SMS is...

Time's almost out for websites to abandon SHA-1

Despite months of reminders and warnings, more than one-third of websites will become inaccessible come 2017.There is barely a month left before major browsers...

Moment of truth: Web browsers and the SHA-1 switch

The long-awaited SHA-1 deprecation deadline of Jan. 1, 2017, is almost here.At that point, we’ll all be expected to use SHA-2 instead.So the question...

Microsoft plans St Valentine’s Day massacre for SHA‑1

End of the line for weak hash as web giants finally act The death knell for the SHA‑1 cryptographic hash function will be sounded, now...