• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to footer
  • Our Services
  • Contact Us
  • Newsletter
  • Top Nav Social Icons

Mobile ID World

Mobile ID World

Identification Revolution

  • Mobile ID
    • What Is Mobile ID?
    • Identity Associations
    • Premier Partners
    • FAQ
  • News
  • Solutions
    • Behavioral
    • Facial Recognition
    • Fingerprint Biometrics
    • Iris Biometrics
    • Second Factor
    • Smart Cards
    • Smartphones
    • Vital
    • Voice
    • Wearable Tech
    • Other
  • Applications
    • Access Control
    • Cloud Technology
    • Commerce
    • Enterprise
    • Healthcare
    • Identification
    • Internet of Things
    • Law Enforcement
    • Strong Online Authentication
  • Exclusive
    • Interviews
    • Featured Articles
    • Podcasts
  • Companies
  • Events

NIST Publishes Cybersecurity Guide for Hospitality Industry

April 7, 2021

The National Institute of Standards and Technology (NIST) has published a new cybersecurity guide that addresses the specific needs of the hospitality industry. Securing Property Management Systems (aka NIST Special Publication 1800-27) is divided into three parts, and details best data protection practices for the property management systems (PMS) that hotels use to store the personal and credit card information of their guests.

NIST Publishes Cybersecurity Guide for Hospitality Industry

In that regard, the report serves as a primer for some of the commercially available data protection technologies, and explains how operators can integrate those technologies into their existing infrastructure. The NIST refrained from endorsing any particular product, but instead offered examples and strategy recommendations that are based on the NIST’s own Cybersecurity and Privacy Frameworks. The report emphasized the importance of zero trust protocols, which require an organization to verify both the device and the individual before giving that person access to sensitive materials.

The NIST noted that the hospitality industry has historically been one of the most attractive targets for cybercriminals. Thirteen percent of all data breaches in 2019 involved the hospitality sector, making it the third-most common victim of fraud as a collective industry. Roughly two-thirds of those attacks went after corporate servers that communicate with PMS systems.

“Our practice guide documents how we enabled cybersecurity concepts such as zero trust architecture, moving target defense, tokenization of credit card data, and role-based authentication in a reference design that addresses cybersecurity and privacy risk,” said Bill Newhouse, a representative for the NIST’s National Cybersecurity Center of Excellence (NCCoE). “We also offer specific use cases to show the functionality of the design.”

The NIST released the new guide in the hopes that hotels will be able to ensure that only those with the proper credentials will be able to gain access to the organization’s electronic payment system and other essential services. It arrives several months after the NIST released a Quick Start manual to make it easier for businesses to comply with its separate Risk Management Framework.

Filed Under: Industry News Tagged With: Biometric, biometrics, cybersecurity, data protection, hospitality, National Institute of Standards and Technology, NIST, NIST Special Publications, Property Management Systems, zero trust architecture

Related News & Articles

GSMA Announces Nominees for 2020 GLOMO Awards

Mastercard Abandons the Signature Ahead of Biometric Card Rollout

FIDO Alliance Praises OMB’s New Federal MFA Initiative

Primary Sidebar

Register For the Next Virtual Identity Summit

Register now!

Tweets

Sponsored Links

facetec logo

FaceTec’s patented, industry-leading 3D Face Authentication software anchors digital identity, creating a chain of trust from user onboarding to ongoing authentication on all modern smart devices and webcams. FaceTec’s 3D FaceMaps™ make trusted, remote identity verification finally possible. As the only technology backed by a persistent spoof bounty program and NIST/iBeta Certified Liveness Detection, FaceTec is the global standard for Liveness and 3D Face Matching with millions of users on six continents in financial services, border security, transportation, blockchain, e-voting, social networks, online dating and more. www.facetec.com

FACEPHI is a global leader in Facial Recognition technology and in Mobile Biometrics technologies. With a strong concentration in the financial sector, FacePhi’s product is rapidly becoming a service used by banks all over the world. Its implementation doesn’t just save money, it is also a way to attract clients and build loyalty, while increasing the security of transactions for both the customer and the business. To learn more about FacePhi, visit https://www.facephi.com/en/

Recent Posts

  • Transatlantic Digital Traveler Identity Project Gets High-Profile Tech Partner
  • Digital Identity Tech Demo Online Event
  • Mobile ID Comes to Another US Campus
  • New York DMV Developing Mobile Driver’s License
  • Mobile ID World & FindBiometrics Partner With Access Control Executive Brief – Join Us at ISC West 2023

Footer

  • About Us
  • Company Directory
  • Advertise With Us
  • Contact Us
  • Privacy Policy
  • Terms of Use
  • Archives
  • CCPA: Do not sell my personal info.

Follow Us

Copyright © 2023 MobileIDWorld