News

02:15 PM
Connect Directly
RSS
E-Mail
50%
50%

South Dakota Establishes Financial Security Center

Dakota State University becomes central to securing the U.S. financial infrastructure.

South Dakota's Dakota State University (DSU) is about to become the epicenter of security for the nation's financial system. The Madison, S.D.-based university is creating the National Center for the Protection of the Financial Infrastructure.

Already the research center has received $2 million from the state of South Dakota and has garnered support from federal agencies and the private sector. DSU is partnering with New York-based Citibank ($2.2 trillion in assets), San Francisco-based Wells Fargo ($609 billion in assets), Sioux Falls, S.D.-based First Premier Bank ($900 million in assets), the Federal Reserve, the FDIC and the Department of Homeland Security to establish the center.

Mel Ustad, director of commercialization in the South Dakota Governor's Office of Economic Development, says the goal of the center is to advance the security and safety of the nation's financial infrastructure through education and the development of new technologies. "This is going to be a training program so that students and those currently employed in the financial industry are better prepared to protect institutions," he comments.

According to Kevin Streff, the center's director, it will focus on six primary goals: creating improvements in security, preparedness and resiliency of the financial system; developing rapid and accurate methods to prevent security incidents at financial institutions; developing tools and strategic applications to mitigate cyber incidents; developing tools to facilitate recovery from cyber incidents and resume stable operations; developing a process for rapidly communicating with the public/customers in the event of a security incident; and delivering high-quality education and training to students and professionals.

Streff says the center provides an opportunity for academia to offer solutions to the private sector's problems. "Academia has resources that can be brought to bear to help solve information security problems," he explains. "In fact, several academicians have been active in information security research. However, their efforts are not prioritized or coordinated to meet the needs of the financial industry." The new program, he adds, designates DSU as the lead in national efforts to protect financial information.

DSU: Center for Excellence

According to Ustad, DSU is considered by the Department of Homeland Security and the National Security Agency as one of the centers for academic excellence in information assurance, specializing in financial services. It is the only one focused on financial services information security.

Further, the state has a history with the financial services sector. In 1984 Citi established its credit card operations in South Dakota, Ustad explains. "Once Citi arrived, [DSU's mission] changed to a focus on IT and developing IT people that Citi needed for its credit card business," he relates.

Wells Fargo and Premier Bankcard, the card arm of First Premier, also have card operations in the state. In fact, the financial services sector contributes $6.4 billion to South Dakota's $32 billion gross state product.

"Now we're bringing in additional people and resources. Citi, Wells Fargo, the FDIC and the others have representatives sitting on the center's advisory board," Ustad explains. "They will help set the agenda and focus on the areas most needed by the industry."

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Janice, I think I've got a message from the code father!
Current Issue
Security Operations and IT Operations: Finding the Path to Collaboration
A wide gulf has emerged between SOC and NOC teams that's keeping both of them from assuring the confidentiality, integrity, and availability of IT systems. Here's how experts think it should be bridged.
Flash Poll
New Best Practices for Secure App Development
New Best Practices for Secure App Development
The transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.

Dark Reading Radio
Archived Dark Reading Radio
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.