Ionic Encrypted Search (IonES) Outsourcing data to the cloud is often cheaper, more dependable, and more convenient than in-house solutions, but it also comes with risk. Standard encryption protects against some threats but is not effective … ...
The Missing Piece of NIST 800-171
NIST 800-171 governs Controlled Unclassified Information (CUI), and it’s a fact of life when doing business with the US Federal Government. This regulation is table stakes for data protection, but it doesn’t go down to the data object level. If you’re focused on mere compliance, then you’re an easy target.
This paper addresses some of the key elements of NIST 800-171, especially in light of the separate Cybersecurity Maturity Model Certification (CMMC) program announced by the Office of the Under Secretary of Defense for Acquisition and Sustainment, and it outlines a better way to meet the true intent of these initiatives.