Think your company could help the National Institute of Standards and Technology create a better mobile security platform? Now is the time to let the agency know.
NIST is asking for letters of interest from companies open to entering into a collaborative research and development agreement with NIST’s National Cybersecurity Center of Excellence.
The center, a public-private collaboration for accelerating the use of novel computer security solutions, is focusing on three areas: mobile device security, attribute-based access control, and derived personal identity verification, or PIV, credentials.
The mobile device security project will push the widespread adoption of “practical, interoperable cybersecurity approaches” that will protect both organization-issued and personally owned mobile platforms.
“Due to the rapid changes in today’s mobile platforms, enterprises have the challenge of ensuring that mobile devices connected to their networks can be trusted to protect sensitive data as it is stored, accessed and processed, while still giving users the features they have come to expect from mobile devices,” a notice reads in the Federal Register.
The access control project will focus on moving user authentication away from “waiting for identity provisioning or authorization approvals,” allowing “fine-grain access decisions based on a range of users, resources, and environmental conditions.”
The derived credentials project will work on integrating PIV cards into mobile devices, allowing for better authentication without having to deal with the form factor challenges that come when card readers have to be integrated into existing hardware.