Pages
- 508 Compliance and Accessibility Information
- About
- Acronym DB
- All CS Digest Sections
- Cart
- Checkout
- Community
- CS Digest Poll – Thank You
- CSIAC Journal – Call for Papers for Publication
- CSIAC Journal Article Submission Policy
- CSIAC Terms of Use
- CSIAC Webinar – Applying the Top 20 Critical Controls for Risk Assessment – Chat Log
- CSIAC Webinar – eMASS, the True Story – Chat Log
- CSIAC Webinar – Leveraging Machine Learning – Chat Log
- Cyber COI – Documents
- Cyber COI – Service Point of Contact Information
- Data Privacy Day – Business and Organization Resources
- Data Privacy Day – Consumer Resources
- Data Privacy Day – Fostering a Culture of Privacy Awareness at Work
- Data Privacy Day – January 28
- Data Privacy Day – The Internet of Me
- Files
- Go Paperless – CSIAC Journal
- Groups
- Home
- Members
- National Cyber Security Awareness Month – October 2017
- Cybersecurity in the Workplace is Everyone’s Business – National Cyber Security Awareness Month – Week 2: October 9-13
- Protecting Critical Infrastructure from Cyber Threats – National Cyber Security Awareness Month – Week 5: October 30-31
- Simple Steps to Online Safety – National Cyber Security Awareness Month – Week 1: October 2-6
- The Internet Wants YOU: Consider a Career in Cybersecurity – National Cyber Security Awareness Month – Week 4: October 23-27
- Today’s Predictions for Tomorrow’s Internet – National Cyber Security Awareness Month – Week 3: October 16-20
- News
- Privacy and Security Notice
- Resources
- Services
- Set Subscription
- Site-Wide Activity
- Sitemap
- Software Model Repository (SWMR) Has Been Discontinued
- Subscription Manager
- Thank you for subscribing!
- The ROI Dashboard and SLED Have Been Discontinued
- We Work For Your Business
Forums
Topics
- Software Assurance for Offshore Development
- NIST Releases Final Draft of Special Publication 800-171A for public comment
- NIST Releases Second Errata Update for Special Publication 800-171 Revision 1
- Signalling System 7 Vulnerabilities in Telecom
- Future of Cyber Security
- How will cyber criminals exploit the RCE vulnerability in EOS Blockchain using S
- How Secure is AWS Authentication when using Google’s identity service for user i
- EMV Cryptogram-enabled Chip Cards Lead to 76% Drop in Payment Fraud
- Advice for career
- VPNFilter Router Malware Attack – Is Russia Up to its Common Tactics?
- How Serious is the ZipperDown iOS App Programming Vulnerability?
- Impact of Software As A Service to Cyber Security
- RSA Conference’s Cybersecurity Tech Accord – Substance or Delusion?
- Cybersecurity Management
- “Roaming Mantis” – Assessing the Impact of Android Malware on Users Worldwide
- Can a Telco be hacked?
- Syrian Electric Army (SEA) Delivers Cyber Attacks to Defend President Bashar al-
- Cyberattack vs Cyberdefence
- In the cyber-physical domain Cyber Security requires to consider both – OT and I
- The Cyber Threat Within: US FBI Identifies “Vault 7” Attack Suspect at the CIA
- Can We Expect Iran to Launch Cyber Attacks in Responsefor the US Revoking JCPOA?
- Measuring the Vulnerability of the US Power Grid to Russian Cyber Attacks
- AI Being Weaponized to Launch Next Gen Cyber Security Warfare
- The Top Five Global Cyber Security Threats for 2018
- Spartacus ransomware shows sparse features can still fight hard
- Delaware data breach resource site goes live
- NYU and NY Cyber Command team up to offer cheap cybersecurity education and trai
- Trump administration looking to rescind cyberwarfare approval process
- Drupal sites running cryptomining maleware
- Hackers Hiding Maleware in LoJack devices
- Kaspersky Labs outlines development of hacker group ZooPark
- Knox Tennessee voting hit with DDoS attack
- Andriod's new OS will prevent apps from accessing data
- Suspect Traffic Seen.
- Twitter urges users to change passwords after finding bug in password storage sy
- Microsoft fixes critical RCE bug in hcsshim library
- How Vulnerable are Cryptocurrency Wallets to DNS Attacks?
- NATO Team Wins the CCDCOE 2018 Locked Shields Cyber Warfare Competition
- CS digest Article
- Microsoft has lunch a new Windows Defender Browser Protection extension to help
- Finding & Activating Hidden Features in Windows 10 Using Mach2
- Windows Insider RS5 Build 17650 Brings Firewall Rules for WSL
- Big IoT Botnet Starts Large-Scale Exploitation of Drupalgeddon 2 Vulnerability
- The Week in Ransomware
- LinkedIn patches serious leak in its AutoFill plugin
- No secure Internet??
- CS Digest Article
- CS Digest Article
- Power Lines that has been created by Researchers capable of stealing Data
- What Can Really Happen at a Cash Register
- It is going pretty far
- Cyber Security
- Could Gamers Be The Answer?
- Advice to delete any malicious, unknown, unnecessary apps your Android Phone
- Seldom Progress Achieved on Voting Security
- New Cryptomix Ransomware variant discovered
- CS DIGEST ARTICLE
- Digital signature giant DocuSign files for IPO after fifteen years
- Boeing Malware intrusion
- Money Got Good..
- Microsoft Releases more Information about Gamarue Maleware
- Fileless Malware
- Data Breach
- Cyren reports crypto-mining websites has jumped by 725%
- ransomware
- Banking trojan Gozi ISFB
- vulnerability
- FBI used Best Buy's Geek Squad as confidential informants
- Half million email Systems needs patched
- Preparing for near future Cyber War
- Vulnerable servers exposed, causing some easy hacking that can go bad
- Private Browsing
- Vulnerability in State Voting Sytems allow for potential hacking
- forged e-passport
- Businesses are avoiding little things that can hurt them
- Cyber Laws of War – Finally coming of age
- Apple issues again
- tips to avoid being used to mine for digital currency
- Tax Identity Theft – Part 2 – Warning signs, If you're a victim, Minimizing Risk
- A Pragmatic Approach to Fixing Cybersecurity: 5 Steps
- Tax Identity Theft – Part 1 – The Basics
- Chaos Engineering and M&S
- Windows
- Looking for Recommendations – Patch Management
- Technical Writing class – questions – PLEASE HELP
- Data Privacy – Personal Information: Risks and Mitigation
- Data Privacy – What is the difference between privacy and security?
- Data Privacy – What is it? Why Does it Matter? Why Should I Care?
- Topic of Discussion..??
- Vulnerability Management
- Developments in Internet of Things and Cyber Security
- Protecting systems, network and data
- Cyber Attacks in Mass Manufacturing Companies.
- Suggestions for Overview of U.S. Cybersecurity Regulatory & Compliance Landscape
- Automate ICS and SCADA vulnerability evaluation
- Automating Operational Technology (OT) vulnerability evaluation
- Thoughts on updated NIST Cybersecurity Framework (draft version 1.1)
- What are the 2018 top cybersecurity threats?
- Attacks
- Supply chain security
- Risk Management in Cyber Security
- Encryption Software
- Adversary emulation
- SEIM TM and VM
- The Year in Cybersecurity
- Suggestions for security tools
- Automated Penetration and Breach testing
- Security Monitoring in hybrid on-prem/cloud environment
- Cuckoo sandbox
- Threat Detection & Endpoint Protection
- Endpoint protection
- Thoughts on Behavioural Augmentation due to AR/VR Proliferation
- Critical Data Backups vs Cyberattacks
- Will GDPR of EU make company information more secure ?
- Corporate Response to Attacks
- Fortigate & PCI
- Scientific and practical cyber security peer reviewed journal
- DTIC Documents and Search
- Views on M&S and Machine Learning
- eSIM Cybersecurity Concerns?
- Seeking participants for Ransomware Survey
- Need Cybersecurity Expert
- Ransomware Survey
- Alert (TA17-164A) HIDDEN COBRA – North Korea’s DDoS Botnet Infrastructure
- Use of BioMetric Devices
- Multifactor Authentication – Meeting IA-2 Controls
- DoD Announces the Launch of “Code.mil,” an Experiment in Open Source
- Potentially Massive HTTPS Leak
- Revision of NIST SP 800-171 – Ask Your Questions Now
- Looking for direction
- Cybersecurity (CS) Digest Article Suggestions
- Must an organization meet all CUI and related control enhancements in 800-171
- Reality Instead Of Hype
- Cybersecurity Incident Reporting for Government Contracts
- New FAR rule: Basic Safeguarding of Contractor Information Systems
- Artificial Coffee
- Before Computers And After Computers
- Why There Are Failures In Building Software Products
- Time To Rethink Object Oriented Programs
- Do not look for the silver bullet solution.
- Thought For Software Developers
- Out dated software technology by government
- The Lessons Learned The DoD Forgot To Write
- Better User's Interfaces
- The Never Ending Computer Languages
- CUI on Corporately Owned Networks
- Welcome to the Software Intensive Systems Engineering forum!
- Welcome to the Knowledge Management & Information Sharing forum!
- Welcome to the Modeling & Simulation forum!
- Welcome to the Cybersecurity Forum!
Podcast
- Cybersecurity for Energy Systems
- The GenCyber Program
- Mobile Security – Part 2 of 2
- Mobile Security – Part 1 of 2
- Systems Engineering Challenges for Integrating Software Assurance into Defense Systems Throughout the System Acquisition Lifecycle
- CS Digest Roundtable #2: Meltdown/Spectre, NIST Framework, GDPR Policy, and Romanian Hackers
- CS Digest Roundtable #1: Emotet Trojan, Cryptojacking, and User Data Exposure
- Cybersecurity of DoD Critical Infrastructure
- Challenges to Critical Infrastructure
- Emerging Concepts to Critical Infrastructure
- Cyber Physical Security
- Autonomic Cyber Security (ACS)
- Subscription Manager
- Changing Your Email Account
- Call for Papers for Publication
- DoD Cybersecurity Policy Chart
- Leveraging Machine Learning: How to Achieve the Right Balance Between Humans and Automation to Optimize Outcomes
- Meeting DFARS Controlled Unclassified Information (CUI) Compliance Standards for Federal Contractors
- Performing a Technical Inquiry
- Privacy of User Data – Today’s Predictions for Tomorrow’s Internet
- Forum Participation
- Cloud Infrastructure Deployment
- Internet of Things
- Blockchain: Applications, Security Promises and Internals
- Industry Risks – Cybersecurity in the Workplace is Everyone’s Business
- Training Resources – Cybersecurity in the Workplace is Everyone’s Business
- Common Workplace Pitfalls – Cybersecurity in the Workplace is Everyone’s Business
- Account Security – Simple Steps to Online Safety
- Phishing – Simple Steps to Online Safety
- Ransomware – Simple Steps to Online Safety
- Introduction to CSIAC Report – Defense Acquisition University Secure Systems Design Course Experiment
- Software Defined WAN (SD-WAN): Security Implications and Design Solutions
- Inviting Other Users
- Applying the Top 20 Critical Controls for Risk Assessment
- Encryption – Part 3 of 3
- Overview of the Software Assurance Marketplace (SWAMP) and SWAMP-in-a-Box (SiB)
- Encryption – Part 2 of 3
- Defense Modeling and Simulation (M&S) Catalog: 2017 Update
- Encryption – Part 1 of 3
- Standards Based Cyber Risk Assessment Framework
- Social Engineering – Don’t be Fooled!
- eMASS, the True Story
- CSIAC Store
- Creating an Account
- Webinar Attendance
- Personally Identifiable Information (PII) – What is it?
- Democratize Anomaly Detection Technologies: Challenges, Advances, and Opportunities
- Insider Threat: Possible Indicators
- CryptoLocker: Surviving a Ransomware Attack
- Password Tips
- Comply to Connect (C2C)
- Protecting Controlled Unclassified Information (CUI) in Nonfederal Systems and Organizations (NIST SP800-171 Revision 1)
- More Phishing
- Malware Differences
- Certified Security by Design for the Internet of Things
- A Faster Method for Bot Detection on Social Networks That Eliminates The Need For Expensive Algorithms
- Accessing Classified Information “Need to Know”
- Bring Your Own Device (BYOD)
- DoD Modeling and Simulation (M&S) Catalog
- Cyber Threat Landscape: What can you do to mitigate the risks?
- Insider Threat
- What Makes a Good Cyber Operator?
- Mobile Security
- Discussion on Cyber M&S moderated by Michael Weir
- Breakout Group Summaries on Cyber M&S
- M&S Support for Cyber Mission Forces
- From Muddle to Model: M&S in Cyber
- Bluetooth
- Asymmetric Resilient Cybersecurity
- Next Generation Service Model Architectures
- Ransomware
- Secure Software Development Considerations
- Passwords
- Social Engineering – A Short Story
- Malware
- Freeware
- Phishing
- Spoofing
- Unsecured Wireless
- Physical Security
- Personally Identifiable Information (PII)
- Skimming
- Social Media
- Pop-up Ads
- Deep Dive Into The Dark Web
- Managing Transformational Projects in a Military Setting
- Securing Your Company for Today’s Cyber War: A Three-Pronged Approach to Comprehensive IT Security
- Critical Infrastructure
- Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations
- Recent Data Breaches – Lessons Learned
- Social Engineering
- Quantum Computing vs Encryption
- Resilient Cloud Services: Design, Analysis and Evaluation
- OPM Breach Update
- Air University
- Cyber Information Sharing and Public Policy
- Using Unified Code Count (UCC) for Data Collection
- Cloud Attacks, Threats, and Defenses
- Introduction and Overview
- Meaningful Metrics: Answering the “So What?”
- Developing Practical and Meaningful Cyber Security Metrics for the Enterprise
- Cyber Security Hard Problems
- Risk Metrics for Cyber Inference Assessment
- Smart Power Infrastructure Demonstration for Energy Reliability and Security (SPIDERS)
- Cyber Metrics in the DoD, or: How Do We Know What We Don’t Know?
- Panel Discussions
- Cloud Computing and the Government Sector Understanding the Cloud Architecture and Requirements
- The Building Security In Maturity Model (BSIMM)
- Heartbleed: Making On-line Security Popular with the Masses
- Certifying Security Testers
- An Architecture-centric Virtual Integration Strategy to Safety-Critical System Verification
- Software Cost Estimation Metrics Online Manual
- Architecture Practices for Agile at Scale: Strategically Managing Technical Debt to Improve System Quality
- Modern File and Data Structures Facilitate Data Hiding and Information Exfiltration
- Panel Discussion
- Next Generation Insider Threat
- Current Events – the CIP Perspective
- Research Challenge Problems
- Localized Encryption Groups (LEG)
- Best Practices in Insider Threat Mitigation
- Cyber Behavior – Physical and Virtual: The Whole Person Insider Threat Analysis Paradigm
- BYOD/Cloud and the Insider Threat
- Is The Two-Week Agile Sprint The Worst Software Idea Ever? Mgmt Issues in Software Assurance and Information Security
- Intro to an Open Source Framework Apache Camel for Data Integration and Communication
- Introduction by Michael Weir
- Keynote Address
- The Evolution of Data Hiding
- Social Media Analytics and Privacy
- Quantifying Uncertainty in Early Lifecycle Cost Estimation – An Update
- Weathering the Storm Clouds and Critical Infrastructure Protection
- The Ins and Outs of Communities of Practice
- Integrating Collaborative Requirements Negotiation and Prioritization Processes
- Is There Magic Associated With Software Benchmarks?
- Intro to Cross Domain Solutions
- Automated Test and Re-Test (ATRT) and DOD – Challenges and Solutions
- Automated Test and Re-Test (ATRT) Demonstration
- Model Based Systems Engineering: A solution to complexity or just a complex solution?
- Summary of Software Security Growth Modeling Webinar
- Q&A – Software Security Growth Modeling Webinar
- A Disruptive Game Changer to Achieve DOD Austerity
- Managing Technical Debt
- Partitioning Complexity: Breaking down without breaking down
- System of Systems Capability-to-Requirements Engineering
- Securing Systems through Software Reliability Engineering
- IT Estimation 6 Truths You Must Learn
- Measure Quality and Quantify Reliability of Critical Software
- Model Driven Development
- SPRUCE Model Driven Architecture and Design
- Cloud Nine, Are We There Yet?
- Cost Estimation of Agile Projects
- Build and Deliver Software Quality – Six Hard-Won Lessons
- Software Defect Containment: Myths, Methods, and Metrics
- SPRUCE – A Case Study in Multi-Dimensional Resource Optimization using Program-scale Data, Candidate Solutions.
- Service Oriented Architecture-based (SOA) Software in the Changing System Acquisition Paradigm
- Projects in Less Time; 3 Secrets to Dramatically Reduce Lead Time
- Scope Management
- A Secret to Understanding Complexity- A Temporal Approach to Engineering Software
Products
Certifications
- U.S. Army Functional Area 57 (FA57)
- Architecture Tradeoff Analysis Method Leader
- CERT-Certified Computer Security Incident Handler
- SEI-Certified PSP Developer
- Certificate in Knowledge and Innovation Management (CKIM)
- Certificate in Knowledge and Innovation Management (CKIM) – Distance Learning Program
- Certificate in Knowledge and Innovation Management (CKIM) – In-House
- Certified Chief Information Security Officer (C|CISO)
- Certified in Risk and Information Systems Control (CRISC)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- Certified Information Systems Security Professional (CISSP)
- Certified ISO-27000 Specialist (G27000)
- Certified Knowledge Management Professional (CKMP)
- Certified Knowledge Manager (CKM)
- Certified Knowledge Manager (CKM)
- Certified Knowledge Manager (CKM)/Certified Knowledge Environment Engineer (CKEE)
- Certified Knowledge Manager (CKM)/Knowledge Economics
- Certified Knowledge Practitioner (CKP)
- Certified Knowledge Specialist
- Certified Modeling & Simulation Professional (CMSP)
- Certified Software Development Associate (CSDA)
- Certified Software Quality Engineer
- Cisco Adaptive Security Appliance (ASA) Specialist
- Cisco Certified Architect (CCAr)
- Cisco Certified Design Associate (CCDA) Certification
- Cisco Certified Design Expert (CCDE) Certification
- Cisco Certified Design Professional (CCDP) Certification
- Cisco Certified Entry Networking Technician (CCENT)
- Cisco Certified Entry Networking Technician (CCENT) Certification
- Cisco Certified Internetwork Expert (CCIE) Data Center
- Cisco Certified Internetwork Expert (CCIE) in Routing and Switching
- Cisco Certified Internetwork Expert (CCIE) Security
- Cisco Certified Internetwork Expert (CCIE) Storage Networking
- Cisco Certified Network Associate (CCNA) Certification
- Cisco Certified Network Associate Security (CCNA Security)
- Cisco Certified Network Professional (CCNP) Certification
- Cisco Certified Network Professional Security (CCNP Security)
- Cisco Firewall Security Specialist
- Cisco Intrusion Prevention System (IPS) Specialist
- Cisco IOS Security Specialist
- Cisco Network Admission Control Specialist
- Cisco Virtual Private Network (VPN) Security Specialist
- CMIIS (CMII Software) Certification
- CompTIA Advanced Security Practitioner (CASP)
- CompTIA Cloud Essentials
- CompTIA Linux+
- CompTIA Network+
- CompTIA Security+
- Cybersecurity Forensic Analyst (CSFA) Certification
- e-Certified Knowledge Manager (eCKM)
- E-Certified Knowledge Practitioner
- E-Certified Knowledge Specialist
- GIAC Assessing and Auditing Wireless Networks (GAWN)
- GIAC Certified Enterprise Defender (GCED)
- GIAC Certified Firewall Analyst (GCFW)
- GIAC Certified Forensic Analyst (GCFA)
- GIAC Certified Forensic Examiner (GCFE)
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Intrusion Analyst (GCIA)
- GIAC Certified Project Manager (GCPM)
- GIAC Certified UNIX Security Administrator (GCUX)
- GIAC Certified Web Application Defender (GWEB)
- GIAC Certified Windows Security Administrator (GCWN)
- GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
- GIAC Information Security Fundamentals (GISF)
- GIAC Information Security Professional (GISP)
- GIAC Legal Issues in Information Technology & Security (GLEG)
- GIAC Penetration Tester (GPEN)
- GIAC Reverse Engineering Malware (GREM)
- GIAC Secure Software Programmer – .Net (GSP-.Net)
- GIAC Secure Software Programmer – Java (GSSP-JAVA)
- GIAC Security Essentials Certification (GSEC)
- GIAC Security Leadership Certification (GSLC)
- GIAC Systems and Network Auditor (GSNA)
- GIAC Web Application Penetration Tester (GWAPT)
- Master Certified Knowledge Managment Professional (MKMP)
- Social Media Security Professional
- U.S. Army Career Program 36 (CP36)
- U.S. Army Functional Area 57 (FA57)
- Wireless Communication Engineering Technologies (WCET) Certification
Reference Documents
- Recent Developments in Cyberlaw: 2018
- NIST Releases Draft Update of the Risk Management Framework: Special Publication 800-37 Revision 2
- Report on Post-Quantum Cryptography
- Framework for Improving Critical Infrastructure Cybersecurity Version 1.1
- NIST SP 500-325, Fog Computing Conceptual Model
- NIST Releases the Second Public Draft of Special Publication (SP) 800-125A, Security Recommendations for Hypervisor Deployment
- Automation and Ongoing Authorization Transition/Implementation
- NISTIR 8011 Automation Support for Security Control Assessments – Volume 2: Hardware Asset Management
- NISTIR 8011 Automation Support for Security Control Assessments – Volume 1: Overview
- Evolving Developments in Cyberlaw: 2017
- Challenges in Applying the Law of Armed Conflict to Cyberwar
- NISTIR 8170 DRAFT – The Cybersecurity Framework: Implementation Guidance for Federal Agencies
- Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure
- DHS Study on Mobile Device Security
- Report on Lightweight Cryptography
- Symantec Ransomware Report
- NJ Cybersecurity Ransomware Threat Profiles
- The ICIT Ransomware Report
- Tackling the Ransomware Threat
- Ransomware Local Government Management Guide
- Understanding Crypto-Ransomware
- CERT Insider Threat Publications
- The Insider Threat: An Introduction to Detecting and Deterring an Insider Spy
- Comply to Connect
- Benjamin Foulois Cyber Proving Ground (CPG)
- Cyber Supply Chain
- NIST Special Publication 800-171, Revision 1, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations
- GRIZZLY STEPPE – Russian Malicious Cyber Activity
- NIST – Safer, Less Vulnerable Software Is the Goal of New NIST Computer Publication
- Marking Controlled Unclassified Information Rev 1.1 (Marking Handbook)
- Common Sense Guide to Mitigating Insider Threats, Fifth Edition
- NIST Releases Baldrige-Based Tool for Cybersecurity Excellence
- Controlled Unclassified Information (CUI) Notice 2016-01: Implementation Guidance for the Controlled Unclassified Information Program
- Information on Current and Future States of Cybersecurity in the Digital Economy
- Intelligence Information Sharing
- Promoting Private Sector Cybersecurity Information Sharing
- National Strategy for Information Sharing And Safeguarding
- Cyber Threat Intelligence Integration Center
- White House Summit on Cybersecurity and Consumer Protection
- Middle Class Economics: Cybersecurity
- The Comprehensive National Cybersecurity Initiative
- Cyber-Insurance Metrics and Impact on Cyber-Security
- International Strategy for Cyberspace
- Structural Reforms to Improve the Security of Classified Networks and the Responsible Sharing and Safeguarding of Classified Information
- Presidential Policy Directive: Critical Infrastructure Security and Resilience
- Presidential Policy Directive Signals Intelligence Activities
- Cybersecurity National Action Plan
- New Commitments to Accelerate the Safe Integration of Unmanned Aircraft Systems
- United States Cyber Incident Coordination
- Digital Signature Standard (DSS)
- Secure Hash Standard (SHS)
- Mobile Application Sign-On For Public Safety And Public Responders
- DRAFT The Technical Specification for the Security Content Automation Protocol (SCAP)
- DRAFT [Concept Paper] Identity and Access Management for Smart Home Devices
- DRAFT Guide to Securing Apple OS X 10.10 Systems for IT Professionals: A NIST Security Configuration Checklist
- DRAFT SHA-3 Derived Functions: cSHAKE, KMAC, TupleHash, and ParallelHash
- Cybersecurity and Acquisition Lifecycle Integration Tool (CALIT)
- DoD Information Analysis Centers (IAC) Multiple Award Contract (MAC) Government-Industry Day Presentation
- NIST Released the Second Draft Special Publication (SP) 800-160, Systems Security Engineering: An Integrated Approach to Building Trustworthy Resilient Systems
- An Insider Threat Indicator Ontology
- DOD CIO, Through DISA, Releases Cloud Security Requirements Guide Update
- ICS-CERT Advisory (ICSA-16-070-01) Schneider Electric Telvent RTU Improper Ethernet Frame Padding Vulnerability
- Safety-Critical (SC) Systems
- Monitoring Software-Intensive System Acquisition (SISA) Programs
- Managing Operational Resilience
- Managing Intellectual Property in the Acquisition of Software-Intensive Systems
- Agile at Scale (AAS)
- NIST Released Draft Special Publication 800-180, NIST Definition of Microservices, Application Containers and System Virtual Machines
- FAA Unveils Effort to Expand the Safe Integration of Unmanned Aircraft
- Federal Aviation Administration: B4UFLY Smartphone App
- NIST announces the Release of Special Publication 800-57 Part 1 Revision 4, Recommendation for Key Management, Part 1: General
- NIST Released NIST Interagency Report (NISTIR) 8055, Derived Personal Identity Verification (PIV) Credentials (DPC) Proof of Concept Research
- IAD CNSA Suite and Quantum Computing FAQ
- NIST Released the Second Draft Special Publication 800-90B, Recommendation for the Entropy Sources Used for Random Bit Generation
- NIST Announces: Draft NISTIR 8011, Automation Support for Security Control Assessments – Volume 1: Overview and Volume 2: Hardware Asset Management
- NIST Released the following 2 Draft Special Publications (SP): (1) Draft Special Publication (SP) 800-156, Representation of PIV Chain-of-Trust for Import and Export, and (2) Draft Special Publication 800-116 Revision 1, A Recommendation for the Use of PI
- SP 800-152 (Third Draft) A Profile for U.S. Federal Cryptographic Key Management Systems (CKMS)
- DoD Cybersecurity T&E Guidebook
- DoD Program Manager’s Guidebook for Integrating the Cybersecurity Risk Management Framework (RMF) into the System Acquisition Lifecycle
- NIST Announced the Withdrawal of Six Federal Information Processing Standards
- NIST Computer Security Division Plans to update Special Publication 800-126 and also design SCAP 1.3
- NIST SP 800-73-4: Interfaces for Personal Identity Verification
- NIST Interagency Report (NISTIR) 8014, Considerations for Identity Management in Public Safety Mobile Networks
- NPS: Unmanned Systems Sentinel Summary
- Department of Defense (DoD)-Defense Industrial Base (DIB) Cybersecurity (CS) Activities
- NIST IR 8074: DRAFT Report on Strategic U.S. Government Engagement in International Standardization to Achieve U.S. Objectives for Cybersecurity
- NIST IR 8053 DRAFT De-Identification of Personally Identifiable Information
- DOT&E FY2014 Annual Report
- NIST Requests Comments on FIPS 186-4, Digital Signature Standard
- DISA Best Practices Guide for DoD Cloud Mission Owners
- NIST IR 7904 DRAFT (Second Draft) Trusted Geolocation in the Cloud: Proof of Concept Implementation
- NIST SP 800-78-4: Cryptographic Algorithms and Key Sizes for Personal Identity Verification
- NIST SP 800-171 DRAFT Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations (Final Public Draft)
- FEDERAL FACILITY CYBERSECURITY: DHS and GSA Should Address Cyber Risk to Building and Access Control Systems
- US CERT- Alert (TA15-286A) Dridex P2P Malware
- NIST Requests Comments on Using ISO/IEC 19790:2012 as the U.S. Federal Standard for Cryptographic Modules
- NISTIR 7863: Cardholder Authentication for the PIV Digital Signature Key
- The Department of Defense Cyber Strategy
- NIST IR 8060 DRAFT Guidelines for the Creation of Interoperable Software Identification (SWID) Tags
- Exemption to Prohibition on Circumvention of Copyright Protection Systems for Access Control Technologies
- NIST IR 8060 DRAFT (Second Draft) Guidelines for the Creation of Interoperable Software Identification (SWID) Tags
- NIST SP 800-82 Revision 2, Guide to Industrial Control Systems (ICS) Security
- NIST SP 800-161 – Supply Chain Risk Management Practices for Federal Information Systems and Organizations
- NIST RFI – Views on the Framework for Improving Critical Infrastructure Cybersecurity
- NIST Cryptographic Standards and Guidelines Development Process (Second Draft)
- NIST Special Publication 800-176, 2014 Computer Security Division Annual Report
- NIST Computer Security Resource: Federal Information Processing Standard (FIPS) 186-4, Digital Signature Standard
- Preferred Use of DoD Information Analysis Center Contracts
- Operation of the Defense Acquisition System
- NIST Special Publication 800-53A, Revision 4, Assessing Security and Privacy Controls in Federal Information Systems and Organizations
- NIST Special Publication 800-88, Revision 1, Guidelines for Media Sanitization
- Combating the Insider Threat
- DoDI 8500.02
- NIST Special Publication 800-88 Guidelines for Media Sanitization
- US-CERT Bulletins
- Cyber Security of Critical Infrastructure
- CNSS Advisory Memorandum Information Assurance
- US-CERT Alerts
- Department of Defense (DoD) Senate Appropriations Bill
- RIAC SPECIAL ISSUE: DoD BETTER BUYING POWER
- NIST Special Publication 800-53, Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations
- Special Publications (sp) – (800 series)
- Security Configuration Guides (Operating Systems)
- Security Configuration Guides (Applications)
- System Level IA Guidance
- Security Configuration Guides (Fact Sheets)
- Security Configuration Guides (Archived Security Configuration Guides)
- Security Configuration Guides (Industrial Control Systems (ICS))
- Guidance, Rationale, & Interoperability Modalities for the RPR FOM (GRIM 1.0)
- Systems and Software Engineering – System Life Cycle Processes
- DoD Cybersecurity Policy Chart
- A Case Study for Better Buying Power: Information Analysis Centers of the Defense Technical Information Center
- Information Technology – SEDRIS – Part 3: Transmittal Format Binary Encoding
- Information Technology — Process Assessment — Part 6: An Exemplar System Life Cycle Process Assessment Model
- Information Technology – Computer Graphics, Image Processing and Environmental Data Representation – Environmental Data Coding Specification (EDCS) Language Bindings – Part 4: C
- Quality Management Systems – Requirements
- Information Technology – Software Engineering – Guidelines for the Adoption of CASE Tools
- Information Technology – Process Assessment – Part 7: Assessment of Organizational Maturity
- IEEE Standard for System and Software Verification and Validation
- Information Technology — Computer Graphics and Image Processing – Spatial Reference Model (SRM) Language Bindings – Part 4: C
- Systems and Software Engineering – Measurement Process
- Information Technology — Process Assessment — Part 8: An Exemplar Process Assessment Model for IT Service Management
- An Illustration of the Concepts of Verification and Validation in Computational Solid Mechanics
- Information Technology — SEDRIS — Part 2: Abstract Transmittal Format
- Systems and Software Engineering — Life Cycle Processes — Risk Management
- Information Technology – Process Assessment – Part 5: An Exemplar Software Life Cycle Process Assessment Model
- Software Engineering – Recommended Practice for the Internet – Web Site Engineering, Web Site Management, and Web Site Life Cycle
- Space Data and Information Transfer Systems – Open Archival Information System (OAIS) – Reference Model
- IEEE Standard for Configuration Management in Systems and Software Engineering
- 3GPP LTE Security Aspects
- Software Engineering — COSMIC: a Functional Size Measurement Method
- Systems and Software Engineering — Life Cycle Management — Part 3: Guide to the Application of ISO/IEC 12207
- Information Technology – Process Assessment – Part 10: Safety Extension
- IEEE Standard for Software and System Test Documentation
- Information Technology – SEDRIS Language Bindings – Part 4: C
- Information and Documentation – Managing metadata for records – Part 3: Self-assessment Method
- Systems and software engineering – Systems and software Quality Requirements and Evaluation (SQuaRE) – System and Software Quality Models
- Information technology – SEDRIS – Part 1: Functional specification
- Software Engineering – Software Life Cycle Processes – Maintenance
- Information technology – Environmental Data Coding Specification (EDCS)
- Systems and software engineering – Systems and software assurance – Part 3: System integrity levels
- IEEE Standard for Modeling and Simulation (M&S) High Level Architecture (HLA) – Object Model Template (OMT) Specification – Redline
- Information technology – Process assessment – Part 9: Target process profiles
- CUI Compliance Plans Overview and Recommendations for Departments and Agencies
- Executive Order 13556 “Controlled Unclassified Information”
- The DoDAF Architecture Framework Version 2.02
- IEEE Recommended Practice for Distributed Simulation Engineering and Execution Process (DSEEP)
- Information technology — Computer graphics and image processing – The Virtual Reality Modeling Language – Part 1: Functional specification and UTF-8 encoding
- Commercial Off-the-Shelf (COTS) Simulation Package Interoperability (CSPI) Reference Models
- IEEE Standard Classification for Software Anomalies
- IEEE Standard for Modeling and Simulation (M&S) High Level Architecture (HLA) – Framework and Rules
- IEEE Recommended Practice for Distributed Interactive Simulation Verification, Validation, and Accreditation
- IEEE Standard for Modeling and Simulation (M&S) High Level Architecture (HLA) – Federate Interface Specification
- Core Manufacturing Simulation Data (CMSD)
- Information and documentation – Records management processes – Metadata for records – Part 1: Principles
- Information technology – Spatial Reference Model (SRM)
- IEEE Standard for Information Technology – System and Software Life Cycle Processes – Reuse Processes
- Information technology – Open Distributed Processing – Unified Modeling Language (UML) Version 1.4.2
- Insider Risk Evaluation and Audit
- Best Practices for Mitigating and Investigating Insider Threats – Raytheon Whitepaper
- Information and documentation – Managing metadata for records – Part 2: Conceptual and Implementation Issues
- Software and systems engineering – Software measurement – IFPUG functional size measurement method 2009
- Information technology — Process assessment — Part 4: Guidance on use for process improvement and process capability determination
- IEEE Standard for Information Technology-Systems Design- Software Design Descriptions
- IEEE Standard for CASE Tool Interconnections-Reference Model for Specifying System Behavior
- Information technology — Process assessment — Part 2: Performing an assessment
- Software engineering – Guidelines for the application of ISO 9001:2000 to computer software
- Military Scenario Definition Language (MSDL)
- Software engineering – Mk II Function Point Analysis – Counting Practices Manual
- Information and Documentation – Work Process Analysis for Records
- Information technology – Process assessment – Part 1: Concepts and vocabulary
- ISO/IEC/IEEE Standard for Systems and Software Engineering – Software Life Cycle Processes
- Information technology – Security techniques – Systems Security Engineering – Capability Maturity Model (SSE-CMM)
- IEEE Standard for Software Reviews and Audits
- IT Security Guidelines
- IEEE Standard. Adoption of International Standard ISO/IEC 12119: 1994(E). Information Technology – Software Packages – Quality Requirements and Testing
- IEEE Recommended Practice for CASE Tool Interconnection – Characterization of Interconnections
- Information technology – Process assessment – Part 3: Guidance on performing an assessment
- IEEE Recommended Practice for Verification, Validation, and Accreditation of a Federationan Overlay to the High Level Architecture Federation Development and Execution Process
- Federal Information Processing Standards Publication 200, Minimum Security Requirements for Federal Information and Information Systems
- Base Object Model (BOM) Template Specification
- Guide for BOM Use and Implementation
- IEEE Standard for Developing a Software Project Life Cycle Process
- Standard for: Link16 Simulations
- IEEE Standard Dictionary of Measures of the Software Aspects of Dependability
- Ten Tales of Betrayal: The Threat to Corporate Infrastructures by Information Technology Insiders Analysis and Observations
- Knowledge management – a guide
- IEEE Standard for CASE Tool Interconnections-Reference Model for Specifying Software Behavior
- Dynamic Link Compatible HLA API Standard for the HLA Interface Specification Version 1.3
- Dynamic Link Compatible HLA API Standard for the HLA Interface Specification (IEEE 1516.1 Version)
- Federal Information Processing Standards Publication 199, Standards for Security Categorization of Federal Information and Information Systems
- IEEE Recommended Practice for High Level Architecture (HLA) Federation Development and Execution Process (FEDEP)
- IEEE Guide for CASE Tool Interconnections – Classification and Description
- IEEE Standard for Software User Documentation
- IEEE Guide for Information Technology – System Definition – Concept of Operations (ConOps) Document
- IEEE Recommended Practice for Software Requirements Specifications
- IEEE Guide for Developing System Requirements Specifications
- IEEE Standard for Software Quality Assurance Plans
- Information Technology – Guideline for the Evaluation and Selection of CASE Tools
- IEEE Standard for Functional Modeling Language – Syntax and Semantics for IDEF0
- Implementation note for IEEE adoption of ISO/IEC 14143-1:1998. Information technology – software measurement – functional size measurement. Part 1: definition of concepts
- IEEE Standard for Distributed Interactive Simulation – Application Protocols
- IEEE Recommended Practice for Software Acquisition
- IEEE Standard for Software Unit Testing
- IEEE Standard for Conceptual Modeling Language Syntax and Semantics for IDEF1X/Sub 97/ (IDEF/Sub Object/)
- Software Test Description (STD)
- Real-time Platform Reference Federation Object Model (RPR FOM 1.0)
- IEEE Standard for a Software Quality Metrics Methodology
CSIAC Reports
- Defense Acquisition University Secure Systems Design Course Experiment
- Cloud Computing for the Government Sector
- Handbook of Software Reliability and Security Testing
- Insider Threat Workshop Proceedings: Papers and Presentations from the CSIAC Insider Threat Workshop
- Firewalls
- Vulnerability Assessment
- Use of Mobile Technology for Information Collection & Dissemination
- Cloud Computing in the Government
- Risk Management for the Off-the-Shelf (OTS) Information Communications Technology (ICT) Supply Chain
- Malware
- Measuring Cyber Security and Information Assurance
- Enhancing the Development Life Cycle to Produce Secure Software
- The Insider Threat to Information Systems
- Software Project Management for Software Assurance
- A Business Case for Software Process Improvement (2007 Update), Measuring Return on Investment from Software Engineering and Management
- Software Security Assurance
- A Comprehensive Review of Common Needs and Capability Gaps
- Software Acquisition Gold Practice: Track Earned Value
- Wireless Wide Area Network (WWAN) Security
- Embedded Software Maintenance
- Agile Software Development
- Network Centric Warfare
- Exploring Biotechnology: Opportunities for the Department of Defense
- Malicious Code
- Software Tools for Knowledge Management
- Knowledge Management in Software Engineering
- Verification, Validation, and Accreditation (VV&A) Automated Support Tools, A State of the Art Report: Part 2 – Details
- Modeling and Simulation for Information Assurance
- Configuration Management Compliance Validation
- COTS Based Software Development and Integration
- Using Cost Benefit Analyses to Develop Software Process Improvement (SPI) Strategies
- IA Metrics
- Verification, Validation, and Accreditation (VV&A) Automated Support Tools, A State of the Art Report: Part 1 – Overview
- Defense In Depth
- Data Mining
- Mining Software Engineering Data: A Survey
- Data Embedding for Information Assurance
- Object-Oriented Database Management Systems Revisited
- Using Defect Tracking and Analysis to Improve Software Quality
- Understanding and Improving Technology Transfer in Software Engineering
- Modern Empirical Cost and Schedule Estimation Tools
- An Analysis of Two Formal Methods: VDM and Z
- Software Interoperability
- A History of Software Measurement at Rome Laboratory
- Software Engineering Baselines
- Technology Transfer Across the Internet
- Software Requirements: A Tutorial
- Electronic Publishing on the World Wide Web: An Engineering Approach
- Analyzing Quantitative Data Through the Web
- The Present Value of Software Maintenance
- Software Design Methods
- Rome Laboratory Research in Software Measurement: A DACS Custom Bibliographic Search
- A Review of Non-Ada to Ada Conversion
- A Review of Formal Methods
- A State of the Art Review of Distributed Database Technology
- Artificial Neural Networks Technology
- Software Prototyping and Requirements Engineering
- Software Analysis and Test Technologies
- An Overview of Object Oriented Design
Journal Issues
- Insider Threat and the Malicious Insider Threat
- Serious Games to Enhance Defense Capabilities – Modeling & Simulation Special Edition
- Tools & Testing Techniques for Assured Software – DoD Software Assurance Community of Practice: Volume 2
- Design and Development Process for Assured Software – DoD Software Assurance Community of Practice: Volume 1
- Cyber Science & Technology at the Army Research Laboratory (ARL)
- Modeling and Simulation Special Edition: Wargaming
- Basic Complexity
- Focus on Air Force Research Laboratory’s Information Directorate
- Modeling & Simulation Special Edition
- Early Prevention & Best Practices
- Applying Modeling & Simulation for Defense
- Games People Play Behavior and Security
- Knowledge Management
- Understanding Cyber Risks and Security Management
- Supervisory Control and Data Acquisition
- Secure Systems and Software Productivity
- Welcome to the CSIAC
- IA on a Tight Budget
- Social Media Malware
- Cost Estimation & Systems Acquisition
- Information Assurance: Then, Now, and Moving Forward
- Cloud Computing
- Security Automation: Addressing Operational Problems
- Analyzing and Measuring Information Quality
- IA in Acquisition
- Web Technology Initatives in the Government
- International Information Assurance
- DoD and Open Source Software
- Cyber Forensics in the Cloud
- Welcome to the New DACS
- Privacy and Enhanced Information Security
- A New Layer of Security
- Defensive Cyber Security: Policies and Procedures
- Software Quality, Reliability, and Error Prediction
- Cloud Computing: Silver Lining or Storm Ahead?
- Model-Driven Development
- Security Automation: A New Approach to Managing and Protecting Critical Information
- Overcoming Cyber IA Challenges Through Better IA Policy Development and Implementation
- Information Assurance (IA) Challenges in an International Environment
- Project Management: Managing For Success
- Software Testing: A Lifecycle Perspective
- DoD Techipedia… A Way to Collaborate
- Earned Value Management: Keeping Your Project On Track
- Making GIG IA Architecture Real with AFG
- Phishing Warfare Against Armed Forces
- DoD Software Technology Challenges
- New Directions in Software Estimation
- Guarding the Cybercastle in 2020
- Intellectual Property and Software
- Defining the GIG Core
- Service-Oriented Architecture (SOA)
- Network Risk Assessment Tool (NRAT)
- Information Assurance for the Net-Centric Environment: Making the Mission Possible
- Future Directions in Software Engineering
- Implementing Internet Protocol Version 6 (IPv6) on an Army Installation
- System Engineering for the GIG: An Approach at the Enterprise Level
- Open Source
- Look out! It’s the Fuzz
- Performance Results from Process Improvement
- Phishing: Fraud for the 21st Century
- Net-Centric Software Architecture
- SAMATE’s Contribution to Information Assurance
- Generating Policies for Defense in Depth
- Functional Sizing of Real-time & Embedded Systems
- Processing Data to Construct Practical Visualizations for Network Security
- Functional Size Measurement
- Impact of International Information Assurance (IA) Standardization
- Measurement
- Net-Centric Assured Information Sharing – Moving Security to the Edge through Dynamic Certification & Accreditation
- Software Archaeology
- Secure Software Engineering
- IA Strategy: The Plan and Your Role
- Common Technology Needs and Capability Gaps Across DoD’s IA and CND Communities
- Total Electronic Migration System
- The Cyber Conflict Studies Association
- Software Reliabilty Engineering
- Ontology Development Challenges and Applications Using the DARPA Agent Markup Language (DAML)
- Software Cost, Quality and Productivity Benchmarks
- Grid Computing
- Information Assurance (IA) and Peer-to-Peer File Sharing
- The National Institute of Standards and Technology (NIST) Computer Security Incident Handling Guide
- A New Strategy – A New USSTRATCOM
- Software Quality
- The Peter Kiewit Institute (PKI)
- Training and Preparing for Net-Centric Warfare
- Topics in Software Engineering
- Growing Up With Guns” A Cultural Education and the Information Age
- Return-On-Investment from Software Process Improvement
- Security Benchmarks: A Gold Standard
- Experience Based Management
- Trust in Cyberspace?
- Software Engineering Education
- Information Systems Security Incident Response
- Software Agents Part 2
- Cyber Terror: Potential for Mass Effect
- Software Agents
- FAA
- CERT/CC: Tracking, Preventing & Resolving Computer Security Incidents
- Information Analysis Center (IAC) Program Overview
- Modeling & Simulation
- SPACECOM
- High Performance Computing HPC
- A Software Engineering Course for Trustworthy Software
- USPACOM Theater Network Operations
- Warfighter Support in a Coalition Environment
- Defense in Depth
- Testing Software Based Systems: The Final Frontier
- USSOUTHCOM
- Newsletter Series: Software Testing
- Coalition IA
- Win Win: A System for Negotiating Requirements
- COTS Software: Five Key Implications for the System Architect
- JTF-CND
- The Defense-Wide Information Assurance Program
- Risk Management Map
- Incorporating IA into GLOBAL GUARDIAN
- Defending Against C2W and IW Attack
- Rapid Application Development (RAD): A Brief Overview
- DIA Support to Information Operations
- Information Assurance: The Road to 2010
- Earned Value (EV) and Automated Information Systems (AIS)
- DACS Named the DoD Software Information Clearinghouse
- DACS Newsletter Summer 1996
- DACS Newsletter Spring 1996
- DACS Newsletter Fall 1995
- DACS Newsletter Summer 1995
- DACS Newsletter Spring 1995
- DACS Newsletter Winter 1993
- DACS Newsletter Fall 1993
- DACS Newsletter Summer 1993
- DACS Newsletter
Journal Articles
- Detect, Contain and Control Cyberthreats
- Offensive Intrusion Analysis: Uncovering Insiders with Threat Hunting and Active Defense
- Accessing the Inaccessible: Incident Investigation in a World of Embedded Devices
- Compliant but not Secure: Why PCI-Certified Companies Are Being Breached
- Extensions to Carnegie-Mellon University’s Malicious Insider Ontology to Model Human Error
- Introduction: Insider Threat and the Malicious Insider Threat – Analyze. Deter. Discover. Prevent. Respond
- Early Synthetic Prototyping Digital Warfighting For Systems Engineering
- Crowd-Driven Tactical Decision Game: Training Tactical Creativity
- Serious Gaming Design for Adaptability Training of Military Personnel
- Learning Cyber Operations Through Gaming: An overview of current and up and coming gamified learning environments
- Introduction to Serious Games to Enhance Defense Capabilities – Modeling & Simulation Special Edition
- Piloting Software Assurance Tools in the Department of Defense
- The Software Assurance State-of-the-Art Resource
- Engineering Software Assurance into Weapons Systems During the DoD Acquisition Life Cycle
- Software Assurance Measurement – Establishing a Confidence that Security is Sufficient
- Software Assurance Adoption through Open Source Tools
- Improving Software Assurance through Static Analysis Tool Expositions
- SARD: Thousands of Reference Programs for Software Assurance
- Introduction to Tools & Testing Techniques for Assured Software – DoD Software Assurance Community of Practice: Volume 2
- Cyber Risk to Transportation Industrial Control Systems
- First Consolidated Basic Center Operations Contract to Quanterion
- Air Force Research Laboratory’s In-Residence Professor Becomes Cybersecurity Preceptor in South Korea
- Shaping Preventive Policy in “Cyber War” and Cyber Security: A Pragmatic Approach
- Securing Systems through Software Reliability Engineering
- Signcryption for Biometric Security
- Cyber Security… the Virtual Frontier
- Welcome to the New and Enhanced Cyber Security and Information Systems Information Analysis Center – CSIAC
- Software productivity progress during the first decade of the 21st Century: Quantifying productivity
- Advances in the Acquisition of Secure Systems Based on Open Architectures
- Development and Transition of the SEI Software Assurance Curriculum
- Defense Technical Information Center’s (DTIC’s) Hidden Gems
- Is Our Software REALLY Secure?
- Hacker 101 & Secure Coding: A Grassroots Movement towards Software Assurance
- Software Assurance in The Agile Software Development Lifecycle
- Keys to Successful DoD Software Project Execution
- Introduction to Design and Development Process for Assured Software – DoD Software Assurance Community of Practice: Volume 1
- Risk Analysis with Execution-Based Model Generation
- Information Security Continuous Monitoring (ISCM)
- Security of Cyber-Physical Systems
- Synergistic Architecture for Human-Machine Intrusion Detection
- Machine Learning and Network Intrusion Detection: Results from Grammatical Inference
- The Cyber Security Collaborative Research Alliance: Unifying Detection, Agility, and Risk in Mission-Oriented Cyber Decision Making
- Cyber Science and Technology at the Army Research Laboratory
- Adjudication in Wargaming for Discovery
- Computer Assisted Military Wargaming: The SWIFT Wargame Tool
- Wargaming at the Naval Postgraduate School
- Air Force Research Laboratory Innovation – Pushing the Envelope in Analytical Wargaming
- M&S Support to Wargaming
- Introduction to Modeling and Simulation Special Edition: Wargaming
- Tech Views
- One Side Now: The Need to Adopt a Business Systems Approach to Cloud Security
- Automating Cloud Security Authorizations
- Cloud Nine, Are we there yet?
- Cloud Computing – How Easy is it?
- Cloudonomics: A Rigorous Approach to Cloud Benefit Quantification
- Quantum Key Distribution: Boon or Bust?
- Computer Supported Training Solutions: Discussion of a New Framework for Effective Development and Deployment
- Back to Basics: Firmware in NFV Security
- Modeling and Simulation Data Integration – Inviting Complexity
- Tech Views
- Tech Views
- Outcome-Based Acquisition
- Parametric Modeling to Support System Acquisition
- History is the Key to Estimation Success
- A Roadmap for Reforming the DoD’s Acquisition of Information Technology
- Selling Your Software Estimate
- An Innovative Approach to Quantifying Uncertainty in Early Lifecycle Cost Estimation
- DACS Software & Systems Cost and Performance Analysis Toolkit
- Tech Views – Data as a Critical Service in Acquisition
- Implementing Open Standards in Open Source
- Military Open Source Community Growing
- Tech Views
- Additional OSS Resources
- Running Open Technology Development Projects
- Evaluating Open Source Software
- Software is a Renewable Military Resource
- Open Source Software Is Commercial
- Publicly Releasing Open Source Software Developed for the U.S. Government
- Application Specific Abstractions: A Research
- Physics of Information Assurance
- Networking Modeling and Simulation: Bridging the Gap from Theory to Field Tests
- Cyber Deception
- Air Force Research Laboratory / Information Directorate (Rome NY)
- Cross-domain Transfer: Information Support Server Environment (ISSE)
- The Junior Force Council: Reaching Out to New Employees
- Bridging Fault Tolerance and Game Theory for Assuring Cyberspace
- A Science of Network Configuration
- Command and Control of Proactive Defense
- Introduction
- Case Study: Applying Agile Software Methods to Systems Engineering
- Software Protection Against Side Channel Analysis Through a Hardware Level Power Difference Eliminating Mask
- The Efficacy and Challenges of SCADA and Smart Grid Integration
- 4G LTE Security for Mobile Network Operators
- An Overview of the Schedule Compliance Risk Assessment Methodology (SCRAM)
- Metrinome – Continuous Monitoring and Security Validation of Distributed Systems
- Search…Backwards
- BEC: Applying Behavioral Economics to Harden Cyberspace
- BYOD Topic: How Complicated Can Calendars Be?
- A Knowledge Management (KM) Primer
- Cyber Profiling: Using Instant Messaging Author Writeprints for Cybercrime Investigations
- BECO: Behavioral Economics of Cyberspace Operations
- Toward Realistic Modeling Criteria of Games in Internet Security
- How Does an Analyst Select M&S to Support the Entire DoD Acquisition Lifecycle Process?
- Sensor Life Cycle Acquisition and Training with Modeling & Simulation
- A Probability of 1
- Achieving Information Dominance: Unleashing the Ozone Widget Framework
- Increasing Assurance Levels Through Early Verification with Type Safety – Unabridged Version
- Managing Operational Resilience
- Looking at M&S Education Through the Prism of the Video Game Industry
- Best Practices
- Agile at Scale (AAS)
- Increasing Assurance Levels Through Early Verification with Type Safety
- Rediscover the Defense Modeling & Simulation Catalog
- A Marine Take on Live, Virtual, and Constructive Initiatives
- Director’s Introduction
- Army Modeling and Simulation Enterprise
- Air Force Analytics for Decision Support
- The Need for “Acquisition Visibility”
Authors & Presenters
- Tim Watkins
- Dr. Kenneth E. Nidiffer
- Matt Hosburgh
- Eric Jodoin
- Christian Moldes
- Eric Cole, PhD
- Dr. John W. Coffey
- Roderick A. Nettles
- Jordan Henry
- Sarah N. Hostetler
- Richard Boyd
- Kevin Joyce
- Michael VanSteenburg
- Nicholas Maida
- Yuzhe (Richard) Tang
- James Rice
- Dr. Robert Smith
- Brian Vogt
- Maj. Erik Douze
- Floor Thönissen
- Rudy Boonekamp
- Jan Maarten Schraagen
- Karel Van Den Bosch
- Andrea Jetten
- Esther Oprins
- Anja van der Hulst
- Yelim Mun
- Frank DiGiovanni
- Dr. P. Shane Gallagher
- Fred Hartman
- Ken Kaminski
- Timothy A. Chick
- Dr. Thomas P. Scanlon
- Mr. Thomas Hurt
- Dr. Scott M. Brown
- Dr. Robert J. Ellison
- Dr. Carol C. Woody
- Patrick Hart
- Corbin Moyer
- Damien Cupif
- Aurelien Delaitre
- Charles D. De Oliveira
- Elizabeth Fong
- Vadim Okun
- Terry S. Cohen
- Paul E. Black
- Robert Gold
- Dr. Andrew Hurd
- Von Welch
- Barton Miller
- Miron Livny
- Rachael Orzechowski
- Joe Weiss
- Craig Jordan
- Peter Foytik
- Dr. Barry Ezell
- Dr. Mike Robinson
- Vijay Srinivas
- Dr. Samuel Mantravadi
- Nancy R. Mead
- Francis “Frank” Mayer
- Scott Nickeson
- Roger Lamb
- Paul McFall
- Matt Hackman
- Kolby Hoover
- Joel McCormick
- Jasen Moran
- Joe Heil
- Bradley Lanford
- Carol Lee
- Rebecca Onuskanich
- Danfeng (Daphne) Yao
- Reg Harnish
- Tony Gillespie
- Shiu-Kai Chin
- Thomas Schreck
- Curtis Arnold
- Greg Weaver
- Akhilomen Oniha
- Dr. Edward Colbert
- Xinming Ou
- John Homer
- Edgar Padilla
- Jaime Acosta
- Paul Yu
- Dr. Noam Ben-Asher
- Dr. Richard Harang
- Ananthram Swami
- Patrick McDaniel
- Dr. Alexander Kott
- Charles Turnitsa
- Michael Ottenberg
- Karl Selke
- William Ellerbe
- Jeff Kline
- Robert E. Burks
- Fred Cameron
- Jeff Appleget
- Jaime J. Bestard
- John Lawson III
- Mark Gorak
- Dr. Josh White
- Larry Clinton
- Kaus Phaltankar
- Tom Kwasniewski
- Joe Weinman
- Pauline Johnson
- Tammie McClellan
- Andrew Dolan
- Robert Dora
- Chris Oehmen
- Michael Messuri
- Gerald B. Baumgartner
- Colin V. McLaughlin
- Douglas D. Hodson
- Logan O. Mailloux
- Maj Matthew C. Denney
- Dr. Amela Sadagic
- Dr. Gary Allen
- Sean Bird
- Mike Corley
- Dr. Thomas Dube
- Lance James
- Karen Miller
- Peter Allor
- Mark Woeppel
- Paul Morrisseau
- Jay Abraham
- Russell Kegley
- Jonathan Preston
- Jules White
- Douglas Schmidt
- Carol Dekkers
- Gary Gack
- Rex Black
- Larry H. Putnam Jr.
- Joe Lofgren
- Juan Carlos Molina
- Karen McRitchie
- Dan O’Neill
- Edward Jones
- Zbigniew Kalbarczyk
- Randall Trzeciak
- Trent Brunson
- Mark Troutman
- Richard Cook
- James Henderson
- Randy Trzeciak
- Matthew Sweeney
- Bruce Gabrielson
- Thomas “TJ” Vestal
- Gordon Morrison
- Brian Baney
- Qi Li
- Dennis R. Goldenson
- William Roetzheim
- Arlene Minkiewicz
- Roger Stewart
- Lew Priven
- John Dingman
- Jo Ann Lane
- Kate Armel
- John M. Gilligan
- Thomas McGibbon
- Christopher Zember
- Phillip Griffin
- Paul Engelhart
- Tony Guo
- Dr. Kevin A. Kwiat
- Preston MacDiarmid
- Elfriede Dustin
- Struan Clark
- Thomas Alspaugh
- Walt Scacchi
- Jim Marcinkowski
- Dr. David A. Wheeler
- John Scott
- J.C. Herz
- Mr Mark Lucas
- Kane McLean
- Lawrence Rosen
- Donald J. Reifer
- Dr. Mark Addleson
- Nupul Kukreja
- Les Cardwell
- Annie Shebanow
- David A. Umphress
- Capt John R. Bochert
- Dr. Michael R. Grimaila
- Dr. Yong C. Kim
- Matthew Kennedy
- Greg Metzler
- Chet Hosmer
- Mark Webb
- Jim McCurley
- Robert Stoddard
- Dave Zubrow
- Joshua White
- Steve McConnell
- Girish Seshagiri
- Robert L. Nord
- Brad Clark
- Peter Feiler
- Lawrence H. Brinker
- Eric Treadwell
- Michael Weir
- Michael Atighetchi
- Dr. Vatche Ishakian
- Dr. Joseph Loyal
- Dr. Partha Pal
- Asher Sinclair
- Robert Grant
- Victoria Fineberg
- Hugh “Taz” Daughtrey
- Aaron Grace
- Ipek Ozkaya
- Julien Delange
- Charles Weinstock
- Robert Ferguson
- Pamela Curtis
- Nader Mehravari
- Julia H. Allen
- Mike Ware
- Jason Hills
- Adrian Pitman
- Elizabeth K. Clark
- Angela Tuffley
- Daksha Bhasker
- Jonathan Spring
- Dr. Angela Orebaugh
- Dr. Jason Kinser
- Dr. Jeremy Allnutt
- Mr. Gary Hamilton
- Ms. Philomena Zimmerman
- Richard Wisniewski
- Wes Fulton
- Ann Marie Neufelder
- CSIAC
- Richard “Rick” Aldrich
- Ross Roley
- Dr. Kenric P. Nelson
- Dr. Paula Donovan
- Leonard Popyack, PhD
- Matt Sweeney
- Ben Pokines
- Dr. Paul Losiewicz
- Brent Brockman
- Patricia Diercks
- George Galdorisi
- Amanda George
- Wanda Lam
- Analiza Lozano
- Glenn Tolentino
- Rita Painter Wos
- Susan Harkrider
- Keith Krapels
- Andrew Krug
- Lana E. McGlynn
- Barbara Endicott-Popovsky
- Christopher McGroarty
- Christopher J. Metevier
- Scott Gallant
- Joseph S. McDonnell, Ph.D
- Marilyn Sperka
- Rick Murphy
- John Lawson III
- Carnegie Mellon University
- Salim Hariri
- Dr. John Bay
- Anandi Hira
- Leslie Corbo
- Glen Roberts
- Dr. Mark A. Gallagher
- Mr. Brett Telford
- COL Joseph Nolan
- Hart Rutherford
- Frank Mullen
- Jesse Citizen
- Juanita L. Riley
- Charles Messenger
- David Last
- David Myers
- Matthew Heffernan
- Meghan Caiazzo
- Captain Nicholas Paltzer
- Dave Climek
- Anthony Macera
- Walt Tirenin
- Sanjai Narain
- Elizabeth Serena Bentley
- Sunil Kumar
- Joel Dallaire
- Jerry Reaper
- Soroush Tamizi
- Charles A. Kamhoua
- Donald Telesca
- Victoria Horan
- Lok Yan
- Alex Gwin
- Richard Barrett
- Mr. Wade Kastorff
- Mark Krzysko
CS Digests
- 12 Jun 2018
- 29 May 2018
- 15 May 2018
- 01 May 2018
- 17 Apr 2018
- 03 Apr 2018
- 20 Mar 2018
- 06 Mar 2018
- 20 Feb 2018
- 06 Feb 2018
- 23 Jan 2018
- 09 Jan 2018
- 26 Dec 2017
- 12 Dec 2017
- 28 Nov 2017
- 14 Nov 2017
- 31 Oct 2017
- 17 Oct 2017
- 03 Oct 2017
- 19 Sep 2017
- 05 Sep 2017
- 22 Aug 2017
- 08 Aug 2017
- 25 Jul 2017
- 11 Jul 2017
- 27 Jun 2017
- 13 Jun 2017
- 30 May 2017
- 16 May 2017
- 02 May 2017
- 18 Apr 2017
- 04 Apr 2017
- 21 Mar 2017
- 07 Mar 2017
- 21 Feb 2017
- 07 Feb 2017
- 24 Jan 2017
- 10 Jan 2017
- 27 Dec 2016
- 13 Dec 2016
- 29 Nov 2016
- 15 Nov 2016
- 01 Nov 2016
- 18 Oct 2016
- 04 Oct 2016
- 20 Sep 2016
- 06 Sep 2016
- 23 Aug 2016
- 09 Aug 2016
- 26 Jul 2016
- 12 Jul 2016
- 28 Jun 2016
- 14 Jun 2016
- 31 May 2016
- 17 May 2016
- 03 May 2016
- 19 Apr 2016
- 05 Apr 2016
- 22 Mar 2016
- 08 Mar 2016
- 23 Feb 2016
- 9 Feb 2016
- 26 Jan 2016
- 12 Jan 2016
- 29 Dec 2015
- 15 Dec 2015
- 01 Dec 2015
- 17 Nov 2015
- 03 Nov 2015
- 20 Oct 2015
- 06 Oct 2015
- 22 Sep 2015
- 08 Sep 2015
- 25 Aug 2015
- 11 Aug 2015
- 28 Jul 2015
- 14 Jul 2015
- 23 Jun 2015
- 09 Jun 2015
- 26 May 2015
- 12 May 2015
- 28 Apr 2015
- 14 Apr 2015
- 31 Mar 2015
- 17 Mar 2015
- 03 Mar 2015
- 17 Feb 2015
- 03 Feb 2015
- 20 Jan 2015
- 06 Jan 2015
- 23 Dec 2014
- 09 Dec 2014
- 25 Nov 2014
- 11 Nov 2014
- 28 Oct 2014
- 14 Oct 2014
- 30 Sep 2014
- 16 Sep 2014
- 02 Sep 2014
- 19 Aug 2014
- 05 Aug 2014
- 22 Jul 2014
- 08 Jul 2014
- 24 Jun 2014
- 10 Jun 2014
- 27 May 2014
- 19 Mar 2014
- 17 Feb 2014
- 20 Jan 2014
- 11 Sep 2013
- 02 Jul 2013
- 04 Jun 2013
- 07 May 2013
- 29 Mar 2013
- 05 Mar 2013
FAQs
- Where can I find information about the DoD IAC Program?
- Does CSIAC have classified documents and media in its collection?
- How do I donate documents, records and media to the CSIAC collection?
- How do I obtain access to DTIC Information Resources and the IAC TEMS Database?
- How do I access the CSIAC Document Collection?
- What is the CSIAC’s SME Program?
- What is the CSIAC Community?
- Why Register for the CSIAC Website?
- How do I get a conference, workshop, or symposium posted on the CSIAC Calendar of Events?
- How do I edit my Profile (username, email address, password, etc.)?
- How do I Change my Subscription/Notification Settings?
- What is the Cybersecurity Digest? How do I subscribe?
- How do I place an ad in the CSIAC Journal?
- How do I submit an article for publication in the CSIAC Journal?
- How do I subscribe to the CSIAC Journal?
- What is a Core Analysis Task (CAT)?
- How do I get answers to my technical questions?
Events
- 2018 NICE Conference and Expo
- CERT Data Science in Cybersecurity Symposium 2018
- CSIAC Webinars – Autonomic Cyber Security (ACS)
- KNOW Identity Conference
- IEEE SecDev – CALL FOR PAPERS
- IEEE SecDev
- Safer Internet Day
- Cyber-Enabled Emerging Technologies Symposium
- MODSIM World 2018
- AIAA Modeling and Simulation Technologies Conference
- RSA Conference 2018
- Cyber Security for Critical Assets Summit
- Linux Security Summit (LSS)
- Northsec
- Black Hat USA 2018
- DEF CON 26
- CSIAC Webinar – Meeting DFARS Controlled Unclassified Information (CUI) Compliance Standards for Federal Contractors
- Data Privacy Day
- National Association of Corporate Directors (NACD) Global Cyber Forum
- Industrial IoT USA
- Transport Security and Safety Expo – TSSX 2018
- Global Privacy Summit 2018
- RSA® Conference 2018
- Legal Cyber Security Expo
- Cyber Security for Critical Assets (CS4CA) USA
- HIMSS18: Where the World Connects for Health
- SANS Automotive Cybersecurity Summit
- Cyber Tech International Conference & Exhibition
- Computers, Privacy & Data Protection – CPDP2018
- Blockchain: Applications, Security Promises and Internals
- Software Defined WAN (SD-WAN): Security Implications and Design Solutions
- Applying the 20 Critical Controls for Risk Assessment
- NexGen 2017 Conference & Technology Expo
- DISA Weekly Meetings: BeaKen Systems & Technologies Solutions, Inc
- Weaving a Fabric of Trust: Ensured Security, Privacy, Resilience, and Accountability
- KA Connect 2017
- 85th MORS Symposium
- 19th International Conference on Knowledge Management Systems
- Cyber Resilience Summit: Modernizing and Securing Government IT
- DISA Weekly Meetings: PacketViper
- DISA Weekly Meetings: QbitLogic
- DISA Weekly Meetings: Nexsan
- DISA Weekly Meetings: Hadean
- DISA Weekly Meetings: LGS Innovations
- 28th Annual IEEE Software Technology Conference
- Crypto 2017 International Association for Cryptologic Research (IACR)
- I/ITSEC 2017
- FloCon 2018: Using Data to Defend
- IEEE-CYBER 2017
- Standards Based Cyber Risk Assessment Framework
- Enterprise Mission Assurance Support Service (eMASS) Instructor-Led Free Training
- Enterprise Mission Assurance Support Service (eMASS) Instructor-Led Free Training
- Enterprise Mission Assurance Support Service (eMASS) Instructor-Led Free Training
- Enterprise Mission Assurance Support Service (eMASS) Instructor-Led Free Training
- Enterprise Mission Assurance Support Service (eMASS) Instructor-Led Free Training
- Enterprise Mission Assurance Support Service (eMASS) Instructor-Led Free Training
- Secure Knowledge Management Workshop 2017 (SKM 2017)
- eMASS, the True Story
- 2017 Autonomous Networking Technology Symposium
- CERT Data Science in Cybersecurity Symposium
- Democratize Anomaly Detection Technologies: Challenges, Advances, and Opportunities
- Information Assurance Symposium (IAS)
- Cyber Intelligence Crisis Simulation
- Future Applications of Cyber Intelligence
- NGA Cyber Security Day
- Cybersecurity Framework Workshop 2017
- CryptoLocker: Surviving a Ransomware Attack
- 9th NATO Military Sensing Symposium (SET-241)
- Integrated Adaptive Cyber Defense (IACD) Community Day
- Comply to Connect (C2C)
- Annual Symposium on Information Assurance (ASIA ’17)
- Tax Identity Theft Awareness Week
- APQC’s Knowledge Management Conference
- SCS Spring Simulation Multi-Conference
- MODSIM World
- Air, Space & Cyber Conference 2017
- Linux Security Summit
- 3rd Annual International Cyber Risk Management Conference
- 2017 New York State Cyber Security Conference
- Protecting Controlled Unclassified Information (CUI) in Nonfederal Systems and Organizations
- BlackHat 2017
- National Data Privacy Day
- Rocky Mountain Cyberspace Symposium 2017
- Certified Security by Design for the Internet of Things
- A Faster Method for Bot Detection on Social Networks That Eliminates the Need for Expensive Algorithms
- DoD Modeling and Simulation (M&S) Catalog
- CERT Situational Awareness Symposium – Automated Decision Making for Cyber Defense Operations
- Guidance for DISN Connection Approval Process
- Guidance for DISN Connection Approval Process
- Guidance for DISN Connection Approval Process
- Guidance for DISN Connection Approval Process
- Guidance for DISN Connection Approval Process
- Guidance for DISN Connection Approval Process
- Cyber Threat Landscape: What can you do to mitigate the risks?
- National Cyber Security Awareness Month
- Up Close With Admiral Rogers
- 7th Annual National Initiative for Cybersecurity Education (NICE)
- Cyber Electromagnetic Activity 2016
- What Makes a Good Cyber Operator?
- CIKM 2016
- Data-Intensive Science and Computing
- Air, Space & Cyber Conference
- KMWorld 2016
- Winter Simulation Conference 2016
- I/ITSEC 2016
- DeveloperWeek 2017
- LinuxCon North America
- JavaOne Conference
- QCon San Francisco
- Linux Security Summit
- CSX 2016
- SecureWorld Expo 2016
- AppSecUSA 2016
- RSA Conference 2017
- Asymmetric Resilient Cybersecurity (ARC)
- From Secure Coding to Secure Software- SEI Webinar
- MILCOM 2016
- The Air Force Information Technology & Cyberpower Conference
- DoD-Cyber Solutions Meeting
- Next Generation Service Model Architectures
- Information Assurance Symposium
- 2016 Command, Control, Communications, Computers, Intelligence (C4I) and Cyber Conference
- Secure Software Development Considerations
- DEF CON 24
- Black Hat USA 2016
- Deep Dive into the Dark Web
- Managing Transformational Projects in a Military Setting
- Lessons Learned from the Jeep Hack: How to Reduce Software Vulnerabilities in Cyber-Physical Systems
- 2016 New York State Cyber Security Conference
- VERGE Hawaii – Asia Pacific Clean Energy Summit
- Securing Your Company for Today’s Cyber War: A Three-Pronged Approach to a Comprehensive IT Security Strategy
- CERDEC two-day Technology Interchange Meeting with industry
- Insider Threat Summit
- ICCWS 2016
- The Atlantic Council’s Cyber 9/12 Student Challenge
- InterConnect 2016
- SANS 2016
- Central New York Hackathon
- Cybersecurity Metrics Workshop
- Insider Threat Workshop
Leave a Comment
You must be logged in to post a comment.