IT and Business Insights for SMB Solution Providers

Jay Ferron

I am a self proclaimed geek who has authored, may technical training courses. As a speaker Jay has presented at many events including, user groups, Computer trade shows, DOD and federal conferences, ISPCON, TechEd, and WPC. Jay is on the global board member of GITCA. Past President of ISACA-CT, Past president APCUG and is a Microsoft MVP Enterprise Security. Jay has been a MVP in in Windows, HPC, and Azure.

My information Resource
September 24th, 2022 | Jay Ferron | My information Resource
 The National Institute of Standards and Technology (NIST) has released the third public draft of NIST Special Publication (SP) 800-90C, Recommendation for Random Bit Generator (RBG) Constructions. The NIST SP 800-90 series of documents supports the generation of high-quality random bits for - Read More
 
September 24th, 2022 | Jay Ferron | My information Resource
 NIST has released NIST Internal Report (IR) 8286C, Staging Cybersecurity Risks for Enterprise Risk Management and Governance Oversight. This report completes the cybersecurity risk management (CSRM) and enterprise risk management (ERM) integration cycle described throughout the NIST IR 8286 series - Read More
 
September 24th, 2022 | Jay Ferron | My information Resource
 Our analysis of a recent version of a previously reported info-stealing Android malware, delivered through an ongoing SMS campaign, demonstrates the continuous evolution of mobile threats. Masquerading as a banking rewards app, this new version has additional remote access trojan (RAT) - Read More
 
September 24th, 2022 | Jay Ferron | My information Resource
 Microsoft researchers recently investigated an attack where malicious OAuth applications were deployed on compromised cloud tenants and then used to control Exchange Online settings and spread spam. The investigation revealed that the threat actor launched credential stuffing attacks against high- - Read More
 
September 24th, 2022 | Jay Ferron | My information Resource
 CISA and the National Security Agency (NSA) have published a joint cybersecurity advisory about control system defense for operational technology (OT) and industrial control systems (ICSs). Control System Defense: Know the Opponent is intended to provide critical infrastructure owners and - Read More
 
September 24th, 2022 | Jay Ferron | My information Resource
 NIST’s Cybersecurity for the Internet of Things (IoT) program has released two new documents: The final version of Profile of the IoT Core Baseline for Consumer IoT Products (NIST IR 8425). The public draft (June 2022) took the consumer IoT cybersecurity criteria from our February - Read More
 
September 24th, 2022 | Jay Ferron | My information Resource
 As a part of the periodic review of NIST’s cryptographic standards and guidelines, NIST's Crypto Publication Review Board announcedthe review of FIPS 198-1 The Keyed-Hash Message Authentication Code (HMAC) in August 2021. In response, NIST received public comments. NIST proposes to convert FIPS - Read More
 
September 9th, 2022 | Jay Ferron | My information Resource
 The National Institute of Standards and Technology (NIST) has released the initial public draft of NIST Interagency Report (IR) 8427, Discussion on the Full Entropy Assumption of the SP 800-90 Series. This document is being released at the same time as the third public draft of NIST Special - Read More
 
September 6th, 2022 | Jay Ferron | My information Resource
The Post-Quantum Cryptography (PQC) standardization process is continuing into a fourth round with the following key-encapsulation mechanisms (KEMs) still under consideration: BIKE, Classic McEliece, HQC, and SIKE. However, there are no remaining digital signature candidates under consideration. As - Read More
 
August 19th, 2022 | Jay Ferron | My information Resource
 NIST is in the process of a periodic review and maintenance of its cryptography standards and guidelines.    This announcement initiates the review of Federal Information Processing Standard (FIPS) 180-4, Secure Hash Standard (SHS), 2015. NIST requests public comments on all aspects of FIPS 180-4 - Read More
 

Pages