Security

GSA’s Fedramp Celebrates 10 Years of Impact on Cloud Security

GSA’s FedRAMP Celebrates 10 Years of Impact on Cloud Security—Today, the Federal Risk and Authorization Management Program (FedRAMP) celebrates its 10-year anniversary. On December 8, 2011, the Office of Management and Budget (OMB) signed a memo establishing FedRAMP to provide a cost-effective, risk-based approach for the adoption and use of cloud services. This landmark reflects GSA and FedRAMP’s commitment to protecting public and federal information through supporting IT modernization and securing IT infrastructure. Over the past ten years, the program has seen an incredible increase in the adoption of FedRAMP-authorized services and will play a critical role in improving the nation’s cybersecurity.— via General Services Administration

Dec 08, 2021

Unique Vulnerability Counts with Container Scanning

Unique Vulnerability Counts with Container Scanning—As Cloud Service Providers (CSPs) start to submit their container vulnerability scans in order to meet Container Scanning Guidance requirements, stakeholders monitoring submissions should expect to see large increases in the number of unique vulnerabilities. Learn what’s different, and the potential impact for agencies and CSPs.— via FedRAMP

Dec 02, 2021

Privacy

How login.gov incorporated human centered design and continuous discovery into their product development process to improve the user experience.

Julia Solórzano

Mar 02, 2021

The New FedRAMP.gov

The New FedRAMP.gov—FedRAMP is excited to announce the launch of our revamped website. Thanks to feedback from our partners and stakeholders, the website has an improved user experience that makes FedRAMP information and resources more accessible. The website provides more in-depth information about FedRAMP’s authorization process, enabling agencies, Cloud Service Providers (CSPs), and Third-Party Assessment Organizations (3PAOs) to easily access pertinent information related to their role in the FedRAMP Authorization process.— via FedRAMP

Feb 16, 2021

A Dashboard for Privacy Offices

A Dashboard for Privacy Offices—Through work funded by 10x, a team from 18F investigated how technology can help busy privacy offices manage your PII, and make their work more accessible and understandable for the public.— via 18F

Dec 15, 2020

TTS Bug Bounty Program: 3 Year Review

We’re reflecting on our Bug Bounty program for the last 3 years and highlighting some lessons learned.

Aidan Feldman

Alyssa Feola

Dec 14, 2020

Security

True Crime Detectives: How We Used Free Web Metrics Tools To Uncover a Cybersecurity Incident

Join USA.gov as we slowly uncover a conspiracy to scam Americans using fake government websites… and then try to foil the caper!

David Kaufmann

Oct 26, 2020

This summit brings together the federal community to share success stories and best practices for utilizing federal source code and open source software, and examine the implementation of the Federal Source Code policy.

10x project teams will demonstrate their work to date and provide brief overviews of each project. We hope that these talks will highlight some of the most interesting work happening in government today and inspire others to submit ideas to 10x.

Watch Video

Alicia Rouault

Ben Judy

Gray Brooks

Mike Gintz

Mike Stern

Peter Rowland

Sarah Crane

Shaudi Hosseini

Making .gov More Secure by Default

Making .gov More Secure by Default — The DotGov Program announces its intent to preload the .gov top-level domain in order to protect .gov site visitors.— via DotGov Registry

Jun 22, 2020

Building, deploying, and hosting fast, secure, and compliant federal web sites and applications with Federalist.

Watch Video

David Corwin

Making Critical Government Information More Resilient

Making Critical Government Information More Resilient—A roundup of steps that federal agencies, and other government entities, can take right now to improve the resilience of their websites and serve information more efficiently to the people that need it.— via 18F

Jun 04, 2020

Learn how organizations can securely collaborate using cryptographic technologies.

Watch Video

Dr. Emily Shen

This week, Login.gov has surpassed 20 million registered users! 🎉 Congratulations to the team for hitting this milestone while keeping the product simple and secure for the public.— via Login.gov

Jan 22, 2020

Betsy Steele, of the Federal Risk and Authorization Management Program (FedRAMP) team, shares how a crowdsourcing initiative invited the larger cybersecurity community to help inform the next iteration of government’s cloud security authorization program.

Watch Video

Betsy Steele

Tammy White

GSA Steps Up Security for .gov

GSA’s DotGov Program is modernizing the security of .gov to make government websites and systems more secure.

Cameron Dixon

Marina Fox

Oct 29, 2018

The Ethics Working Group in GSA’s Technology Transformation Service hosts a presentation about data trusts; a legal structure designed to manage data, code, and other digital assets.

Watch Video

Jeremy Zilar

A Conversation With ITIF About the State of Federal Government Websites

Since it’s been nearly six months since their report was released, we wanted to check in with ITIF and see what they’ve learned, what they’ve heard from agencies and what their future plans are to build on this research.

Andrea Sigritz

Sep 20, 2017

The Data Briefing: How Blockchain’s Future Growth Will Affect Federal Agencies

Blockchains are an innovative technology which promises to radically change how society conducts business. It will take significant changes in organizational processes before agencies can begin to support blockchains.

Bill Brantley

Sep 13, 2017

Joel Minton, a member of the U.S. Digital Service, is working with GSA’s Technology Transformation Service as the director of login.gov. Tom Mills is the Chief Technology Architect at U.S. Customs and Border Protection. In early April, the U.S. Digital Service and 18F launched login.gov, a single sign-on solution for government websites that will enable

Joel Minton

Tom Mills

Aug 28, 2017

Security

GSA’s Fedramp Celebrates 10 Years of Impact on Cloud Security

Unique Vulnerability Counts with Container Scanning

The New FedRAMP.gov

A Dashboard for Privacy Offices

TTS Bug Bounty Program: 3 Year Review

True Crime Detectives: How We Used Free Web Metrics Tools To Uncover a Cybersecurity Incident

Federal Source Code Summit: Towards a Source Code Community

10x Project Lightning Talks: 2020

Making .gov More Secure by Default

Building for the 21st-Century Web with Federalist

Making Critical Government Information More Resilient

Dr. Emily Shen on Secure Multi-Party Computation

Federal Crowdsourcing Webinar Series, Episode 6: The FedRAMP Ideation

GSA Steps Up Security for .gov

Conversations on Public Impact: How data trusts can preserve and protect your digital initiatives

A Conversation With ITIF About the State of Federal Government Websites

The Data Briefing: How Blockchain’s Future Growth Will Affect Federal Agencies

More News and Events on Security