September 2023

There were 1,516 posts published in September 2023 (this is page 77 of 152).

Biden-Harris Administration Invests $1 Billion for Nearly 400 Projects to Expand Access to Trees and Green Spaces in Communities and Neighborhoods Nationwide through Investing in America Agenda

WASHINGTON, Sept. 14, 2023 – Today, Agriculture Secretary Tom Vilsack announced the U.S. Department of Agriculture’s Forest Service is awarding more than $1 billion in competitive grants to plant and maintain trees, combat extreme heat and climate change, and improve access to nature in cities, towns, and suburbs where more than 84% of Americans live, work, and play. Communities in all 50 states, the District of Columbia, and several U.S.

Fortinet Releases Security Updates for Multiple Products

Fortinet has released security updates to address vulnerabilities (CVE-2023-29183 and CVE-2023-34984) affecting FortiOS, FortiProxy, and FortiWeb. A cyber threat actor can exploit one of these vulnerabilities to take control of an affected system.

CISA encourages users and administrators to review Fortinet security advisories (FG-IR-23-106 and FG-IR-23-068) and apply the necessary updates.

CISA Releases Continuous Diagnostics and Mitigation Program: Identity, Credential, and Access Management (ICAM) Reference Architecture

Today, CISA released the Continuous Diagnostics and Mitigation Program: Identity, Credential, and Access Management (ICAM) Reference Architecture to help federal civilian departments and agencies integrate their identity and access management (IDAM) capabilities into their ICAM architectures. Prior to this release, there was no singular, authoritative, and recognized reference for architecting an ICAM capability across an enterprise. 

This publication provides:

  • a description of the federal ICAM practice area, including how ICAM services and components implement ICAM use cases,
  • a description of related CDM capabilities,
  • an introduction to federation services, and 
  • a high-level notional physical implementation.

In addition, it explores zero trust architecture and illustrates how ICAM and CDM help enable it.

CISA encourages federal departments and agencies to use this publication to create their most robust and effective ICAM capability. CISA’s Continuous Diagnostics and Mitigation Program web page offers additional resources.