National Cyber Security Partnership Task Force (NCSP) announced new standards for IT products for “out of the box” security.

NCSP released the new basic configurations due to the pressure being put by Educational facilities, consumers, and the government. The consumers are asking for better baseline security.

The security group said it will pressure vendors to make sure that the default security is improved and it is properly configured for consumers.

Some of the key changes in the 104-page document includes:

+ Vendors should provide more substantive security recommendations, configuration checklists and best practices to customers.

+ The U.S. government, user groups and customers should encourage more independent security evaluations of IT products.

+ The U.S. government should help offset the costs of an IT vendor going through a Common Criteria security evaluation through tax credits or other methods.

+ The U.S. government should fund the development of code-scanning tools that detect flaws in software code.

The task force has some of the best players in the security field. One of these important people include Mary Davidson, who works for Oracle and is a co-chairperson in the force.

With the support of key security people fighting for consumers' right, we can sure that the consumer will be the ultimate winner in the end. Once the vendors start to take precautions in the default security and properly configure it, there will be far less vulnerable machines on the internet.

[Home]