Quantum Computers pose an existential threat to data encryption. In addition, adversaries are already capturing sensitive network traffic for Store Now, Decrypt Later (SNDL) attacks. For this reason, the Quantum Computing Cybersecurity Preparedness Act (H.R. 7535) requires federal agencies to prepare now to protect National Security Systems. Specifically, government agencies must maintain an inventory of all information technology in use that...

Sensitive data stored in HPE deployments must be encrypted edge-to-cloud. For encryption to successfully secure sensitive data, the cryptographic keys used to encrypt/decrypt data must be secured, managed and controlled by the data owner. Thales TCT’s CipherTrust Data Security Platform unifies data encryption and unprecedented granular access controls with centralized key management—all on a single platform. This results in fewer r...

The day a cryptographically-relevant quantum computer (QRQC) with enough power to break modern encryption is coming and world governments are taking action and advising agencies and commercial entities to start taking action now. Although these powerful quantum computers won't exist for another 5 to 15 years, attackers are already taking advantage of the opportunity to steal valuable secrets through harvesting attacks - where a copy of the dat...

High speed networks are the critical foundation that supports many of an agency’s most vital communications and operations. However, this foundation is at risk of surveillance and attack by increasingly sophisticated cyber criminals and well-funded nation states. These network connections, if unprotected, are proving to be highly vulnerable, leaving sensitive assets exposed. So, what is the best way to protect network traffic? Encrypt ev...

Cryptography is everywhere. As a key security control that enables privacy, security, and trust in our digital world, it is highly regulated. Yet, after years of being a somewhat sleepy topic in the cybersecurity world, cryptography is now a hot topic in the Public Sector for at least two reasons. First, ongoing migration from FIPS 140-2 to FIPS 140-3 is generating waves of activity to comply with the new NIST standard. As an even larger chall...

Accelerating advancements in quantum computing are making the prospect of breaking classical cryptography more real with every passing today. Organizations rely on firewall site-to-site IPSec VPN security to protect their critical data. However, threat actors are already storing encrypted communications today to decrypt in the future, using quantum computing or other advanced capabilities (aka “Harvest Now, Decrypt Later”). IPSec V...

From the Pentagon to boots-on-ground, cloud computing is driving actionable, data driven decisions that keep our nation safe. Effective data analytics require edge to cloud data collection as well as cloud to edge data dissemination. The secure transport of this data over disparate networks is driving interdependencies between data links over secure Layer 3 using High Assurance IP Encryption (HAIPE) and secure Layer 2 using Ethernet Data Encry...

FIPS 140-3, titled Security Requirements for Cryptographic Modules, is the third update to the FIPS 140 benchmark established by NIST to specify the security requirements for cryptographic modules and a testing methodology for confirming conformance. Companies selling technology with encryption to the public sector often must obtain FIPS 140 certification that their cryptography has been tested and approved for government use. In addition, oth...

The era of quantum computing is closer than ever and data protection standards are shifting. Are you ready for the transition to quantum-safe security?QuintessenceLabs and Carahsoft hosted an exclusive webinar on adopting the latest Quantum Resistant Algorithms (QRA) and crypto-agility strategies.Key takeaways from this webinar included:Understand the new NIST Quantum-Resistant Algorithms (QRA) and what they mean for youLearn practical steps t...

Attendees joined Keeper Security on January 14th to explore how government organizations can navigate the complex, ever-expanding threat landscape and overcome challenges introduced by remote work and multi-cloud environments. Keeper explained how to gain practical strategies to protect both human and machine infrastructures effectively with a zero-trust approach. During this webinar, attendees were able to learn about:How to address the zero...