Cybersecurity

Latest in Cybersecurity

Blockchain Standards

Paul Rosenzweig Sat, Aug 19, 2017, 11:34 AM

What if the Russian FSB were responsible for defining the ISO standards for blockchain technology?

Read more about Blockchain Standards

Separating NSA and CYBERCOM? Be Careful When Reading the GAO Report

Robert Chesney Mon, Aug 7, 2017, 1:01 PM

The Government Accountability Office last week published a report that, among other things, weighs in on the pros and cons of the NSA/CYBERCOM “dual-hat” system (pursuant to which the director of the NSA/CSS and commander of CYBERCOM are the same person). The report deserves attention but also some criticism and context. Here’s a bit of all three.

1. What is the “dual-hat” issue?

Read more about Separating NSA and CYBERCOM? Be Careful When Reading the GAO Report

Cybersecurity

No, the U.S. Government Should Not Disclose All Vulnerabilities in Its Possession

Rick Ledgett Mon, Aug 7, 2017, 8:30 AM

Newly revived calls for the U.S. government to release all the vulnerabilities it holds are understandable but misguided.

Read more about No, the U.S. Government Should Not Disclose All Vulnerabilities in Its Possession

Cybersecurity

A First Legislative Step in the IoT Security Battle

Randy Milch Fri, Aug 4, 2017, 8:30 AM

A detailed breakdown of the Internet of Things (IoT) Cybersecurity Improvements Act of 2017.

Read more about A First Legislative Step in the IoT Security Battle

Cybersecurity

The Internet of Things Cybersecurity Improvement Act: A Good Start on IoT Security

Nicholas Weaver Wed, Aug 2, 2017, 1:44 PM

The proposed bill from Sens. Mark Warner, Cory Gardner, Ron Wyden and Steve Daines is a good first step in securing the Internet of Things and U.S. government systems in particular.

Read more about The Internet of Things Cybersecurity Improvement Act: A Good Start on IoT Security

Cybersecurity

Hacking, Fate-Sharing and Going Dark

Nicholas Weaver Fri, Jul 28, 2017, 4:41 PM

When multiple states rely on the same tools, the actions of one regime can undermine the lawful investigations of another.

Read more about Hacking, Fate-Sharing and Going Dark

Cybersecurity

What You See Is What You Get: Revisions to Our Paper on Estimating Vulnerability Rediscovery

Trey Herr, Bruce Schneier Thu, Jul 27, 2017, 3:18 PM

Some revisions to our recent paper on the rediscovery of software vulnerabilities.

Read more about What You See Is What You Get: Revisions to Our Paper on Estimating Vulnerability Rediscovery

Cybersecurity

Cybersecurity Does Not Need a Silver Bullet Agency

Philip R. Reitinger Wed, Jul 26, 2017, 4:15 PM

While addressing a "cyber 9/11" must be a top priority for the U.S. Government, it does not require a single “Department of Cybersecurity” as some have argued.

Read more about Cybersecurity Does Not Need a Silver Bullet Agency

Cybersecurity

Attack of the Killer Car Wash

Paul Rosenzweig Wed, Jul 26, 2017, 1:31 PM

The first proof of concept that allows an IoT device to physically attack someone.

Read more about Attack of the Killer Car Wash

Cybersecurity

On Kaspersky

Nicholas Weaver Tue, Jul 25, 2017, 2:39 PM

No government or defense contractor should use Kaspersky Lab products.

Read more about On Kaspersky

Cybersecurity

Subtopics

Cybersecurity

Blockchain Standards

Cyber Command

Separating NSA and CYBERCOM? Be Careful When Reading the GAO Report

Cybersecurity

No, the U.S. Government Should Not Disclose All Vulnerabilities in Its Possession

Cybersecurity

A First Legislative Step in the IoT Security Battle

Cybersecurity

The Internet of Things Cybersecurity Improvement Act: A Good Start on IoT Security

Cybersecurity

Hacking, Fate-Sharing and Going Dark

Cybersecurity

What You See Is What You Get: Revisions to Our Paper on Estimating Vulnerability Rediscovery

Cybersecurity

Cybersecurity Does Not Need a Silver Bullet Agency

Cybersecurity

Attack of the Killer Car Wash

Cybersecurity

On Kaspersky

Subscribe to Lawfare

Support Lawfare

Explore