Software Security Code of Practice - Assurance Principles and Claims (APCs)
Helps vendors measure how well they meet the Software Security Code of Practice, and suggests remedial actions should they fall short.
NCSC Feed
Decommissioning assets
6 months 3 weeks ago
How to retire digital assets (such as data, software, or hardware) from operation.
Impact of AI on cyber threat from now to 2027
7 months ago
An NCSC assessment highlighting the impacts on cyber threat from AI developments between now and 2027.
Ransomware: 'WannaCry' guidance for home users and small businesses
7 months 1 week ago
Guidance for home users or small businesses who want to reduce the likelihood of being held to ransom by WannaCry (or other types of ransomware).
Introduction to logging for security purposes
7 months 1 week ago
Laying the groundwork for incident readiness.
Cyber security for major events
7 months 1 week ago
Assessing the cyber security needs of major events.
Software Code of Practice: building a secure digital future
7 months 1 week ago
New voluntary code of practice for technology providers defines a market baseline for cyber security.
Advanced Cryptography: new approaches to data privacy
7 months 3 weeks ago
A new NCSC paper discusses the suitability of emerging Advanced Cryptography techniques.
Building Web Check using PaaS
8 months ago
How Platform as a Service (PaaS) can make good security easier to achieve.
New guidance on securing HTTP-based APIs
8 months 1 week ago
Why it’s essential to secure your APIs to build trust with your customers and partners.
New online training helps board members to govern cyber risk
8 months 2 weeks ago
The NCSC’s CEO, Richard Horne on the new cyber governance resources giving Boards the tools they need to govern cyber security risks.
Protective DNS for the private sector
8 months 2 weeks ago
Advice on the selection and deployment of Protective Domain Name Systems (DNS).
CyberFirst Girls Competition: a proud milestone and exciting future
8 months 3 weeks ago
The future of the CyberFirst Girls Competition and reflecting on brilliant progress.
Privileged access workstations: introducing our new set of principles
8 months 3 weeks ago
Principles-based guidance for organisations setting up a PAW solution.
Passkeys: they're not perfect but they're getting better
8 months 3 weeks ago
Passkeys are the future of authentication, offering enhanced security and convenience over passwords, but widespread adoption faces challenges that the NCSC is working to resolve.
Passkeys: the promise of a simpler and safer alternative to passwords
8 months 3 weeks ago
The merits of choosing passkeys over passwords to help keep your online accounts more secure, and explaining how the technology promises to do this
Setting direction for the UK's migration to post-quantum cryptography
8 months 3 weeks ago
Why the key milestones for PQC migration are part of building and maintaining good cyber security practice.
A different future for telecoms in the UK
8 months 3 weeks ago
NCSC Technical Director Dr Ian Levy explains the technical impact of the recent US sanctions on the security of Huawei equipment in the UK.
Security, complexity and Huawei; protecting the UK's telecoms networks
8 months 3 weeks ago
With 5G set to transform mobile services, Ian Levy explains how the UK has approached telecoms security, and what that means for the future.
Use of Russian technology products and services following the invasion of Ukraine
8 months 3 weeks ago
Cyber security – even in a time of global unrest – remains a balance of different risks. Ian Levy, the NCSC's Technical Director, explains why.
Checked
9 hours 22 minutes ago
This includes feeds from report, guidance and blog-post
NCSC Feed feed