Federal officials tout the strategy as a more proactive approach to securing government networks.
The US Office of Management and Budget (OMB) today published details of a government-wide strategy for adopting zero-trust architecture principles across federal agency networks.
Agencies are required to adopt specific standards and security practices by fiscal year 2024 that encompass the security of user identities, devices, networks, applications, and data. These include multifactor authentication, full accounting of all devices authorized for use in government, encrypting all DNS and HTTP traffic, regular security testing of all applications, and adoption of data categorization and cloud security services to monitor data access.
"This strategy is a major step in our efforts to build a defensible and coherent approach to our federal cyber defenses," said National Cyber Director Christopher Inglis in a statement. "We are not waiting to respond to the next cyber breach. Rather, this Administration is continuing to reduce the risk to our nation by taking proactive steps towards a more resilient society."
Details of the feds' new zero-trust strategy was issued in a memorandum by OMB.
About the Author(s)
You May Also Like
Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024