Software Security Code of Practice - Assurance Principles and Claims (APCs)
Helps vendors measure how well they meet the Software Security Code of Practice, and suggests remedial actions should they fall short.
NCSC Feed
Decommissioning assets
11 months 1 week ago
How to retire digital assets (such as data, software, or hardware) from operation.
Impact of AI on cyber threat from now to 2027
11 months 2 weeks ago
An NCSC assessment highlighting the impacts on cyber threat from AI developments between now and 2027.
Ransomware: 'WannaCry' guidance for home users and small businesses
11 months 3 weeks ago
Guidance for home users or small businesses who want to reduce the likelihood of being held to ransom by WannaCry (or other types of ransomware).
Introduction to logging for security purposes
11 months 3 weeks ago
Laying the groundwork for incident readiness.
Cyber security for major events
11 months 3 weeks ago
Assessing the cyber security needs of major events.
Software Code of Practice: building a secure digital future
11 months 3 weeks ago
New voluntary code of practice for technology providers defines a market baseline for cyber security.
Advanced Cryptography: new approaches to data privacy
1 year ago
A new NCSC paper discusses the suitability of emerging Advanced Cryptography techniques.
Building Web Check using PaaS
1 year ago
How Platform as a Service (PaaS) can make good security easier to achieve.
New guidance on securing HTTP-based APIs
1 year ago
Why it’s essential to secure your APIs to build trust with your customers and partners.
New online training helps board members to govern cyber risk
1 year ago
The NCSC’s CEO, Richard Horne on the new cyber governance resources giving Boards the tools they need to govern cyber security risks.
Protective DNS for the private sector
1 year 1 month ago
Advice on the selection and deployment of Protective Domain Name Systems (DNS).
CyberFirst Girls Competition: a proud milestone and exciting future
1 year 1 month ago
The future of the CyberFirst Girls Competition and reflecting on brilliant progress.
Privileged access workstations: introducing our new set of principles
1 year 1 month ago
Principles-based guidance for organisations setting up a PAW solution.
Passkeys: they're not perfect but they're getting better
1 year 1 month ago
Passkeys are the future of authentication, offering enhanced security and convenience over passwords, but widespread adoption faces challenges that the NCSC is working to resolve.
Passkeys: the promise of a simpler and safer alternative to passwords
1 year 1 month ago
The merits of choosing passkeys over passwords to help keep your online accounts more secure, and explaining how the technology promises to do this
Setting direction for the UK's migration to post-quantum cryptography
1 year 1 month ago
Why the key milestones for PQC migration are part of building and maintaining good cyber security practice.
A different future for telecoms in the UK
1 year 1 month ago
NCSC Technical Director Dr Ian Levy explains the technical impact of the recent US sanctions on the security of Huawei equipment in the UK.
Security, complexity and Huawei; protecting the UK's telecoms networks
1 year 1 month ago
With 5G set to transform mobile services, Ian Levy explains how the UK has approached telecoms security, and what that means for the future.
Use of Russian technology products and services following the invasion of Ukraine
1 year 1 month ago
Cyber security – even in a time of global unrest – remains a balance of different risks. Ian Levy, the NCSC's Technical Director, explains why.
Checked
7 hours 6 minutes ago
This includes feeds from report, guidance and blog-post
NCSC Feed feed