Bentley Communities
Bentley Communities
  • Site
  • User
  • Site
  • Search
  • User
Licensing, Cloud and Web Services
  • Welcome to Bentley Communities
  • Bentley's Communities
  • Licensing, Cloud and Web Services
  • Cancel
Licensing, Cloud and Web Services
Licensing, Cloud and Web Services Wiki Executive Order on Improving the Nation’s Cybersecurity (May 2021)
    • Sign In
    • Contacting Entitlements Support (Licensing and User Management)
    • Eastern Europe Continuity Plan
    • Guest Accounts - Review Access
    • +Web Services
    • +SES Activation
    • +CONNECTION Client
    • +CONNECT Advisor
    • -Federated Identity
      • Federation Frequently Asked Questions
      • Configuring your Azure AD for OIDC Federation and Automatic User Provisioning
      • Configuring Microsoft Azure AD for B2B Guest Users Using OIDC
      • Configuring Okta for OIDC federation
      • Configuring OIDC with other Identity Providers
      • Configuring Microsoft Azure AD for SAML 2.0 federation
      • Configuring Azure AD for OIDC federation
      • Configuring Microsoft ADFS for SAML 2.0 federation
      • Configuring SAML 2.0 with other Identity Providers
      • +Certificate and Secret Rotations
      • Browser and App Token Lifetimes
      • -IMS Help and Troubleshooting
        • Capturing a SAML Trace
        • Capturing A Browser Based Network Trace
        • 2022 IMS Certificate Rotation Announcement
        • Executive Order on Improving the Nation’s Cybersecurity (May 2021)
      • +Microsoft Azure AD Automatic User Provisioning Configuration
    • +SELECTserver based Activation
    • +Pre-SELECTserver Based Activation
    • +Product-Specific Licensing
    • Understanding why you received a TL Invoice
    • Working from Home using Bentley Licensing
    • What you need to know/request when consolidating Accounts
    • +Licensing Workflow
    • How to leave a Product Review
    • +Serviços ProjectWise 365
    • About Bentley Trust Licensing
    • Customer Number, Account Number, Entitlements, Users
    • Support for non-Bentley technologies utilized by Bentley products
    • Support for V8i applications after December 31st, 2021
    • +Support Homepage - Localized

    You are currently reviewing an older revision of this page.

    • History View current version

    Executive Order on Improving the Nation’s Cybersecurity (May 2021)

    On May 12, 2021, US President Biden signed an executive order titled, Executive Order on Improving the Nation’s Cybersecurity. One section of this order specifies that federal agencies implement multifactor authentication (MFA) and encryption for all data at rest or in transit within 90 days:

       (d)  Within 180 days of the date of this order, agencies shall adopt multi-factor authentication and encryption for data at rest and in transit, to the maximum extent consistent with Federal records laws and other applicable laws.  To that end:
              (i)    Heads of FCEB Agencies shall provide reports to the Secretary of Homeland Security through the Director of CISA, the Director of OMB, and the APNSA on their respective agency’s progress in adopting multifactor authentication and encryption of data at rest and in transit.  Such agencies shall provide such reports every 60 days after the date of this order until the agency has fully adopted, agency-wide, multi-factor authentication and data encryption.
              (ii)   Based on identified gaps in agency implementation, CISA shall take all appropriate steps to maximize adoption by FCEB Agencies of technologies and processes to implement multifactor authentication and encryption for data at rest and in transit.
              (iii)  Heads of FCEB Agencies that are unable to fully adopt multi-factor authentication and data encryption within 180 days of the date of this order shall, at the end of the 180-day period, provide a written rationale to the Secretary of Homeland Security through the Director of CISA, the Director of OMB, and the APNSA.
         (e)  Within 90 days of the date of this order, the Secretary of Homeland Security acting through the Director of CISA, in consultation with the Attorney General, the Director of the FBI, and the Administrator of General Services acting through the Director of FedRAMP, shall establish a framework to collaborate on cybersecurity and incident response activities related to FCEB cloud technology, in order to ensure effective information sharing among agencies and between agencies and CSPs.
         (f)  Within 60 days of the date of this order, the Administrator of General Services, in consultation with the Director of OMB and the heads of other agencies as the Administrator of General Services deems appropriate, shall begin modernizing FedRAMP by:
              (i)    establishing a training program to ensure agencies are effectively trained and equipped to manage FedRAMP requests, and providing access to training materials, including videos-on-demand;
              (ii)   improving communication with CSPs through automation and standardization of messages at each stage of authorization.  These communications may include status updates, requirements to complete a vendor’s current stage, next steps, and points of contact for questions;
              (iii)  incorporating automation throughout the lifecycle of FedRAMP, including assessment, authorization, continuous monitoring, and compliance;
              (iv)   digitizing and streamlining documentation that vendors are required to complete, including through online accessibility and pre-populated forms; and
              (v)    identifying relevant compliance frameworks, mapping those frameworks onto requirements in the FedRAMP authorization process, and allowing those frameworks to be used as a substitute for the relevant portion of the authorization process, as appropriate.

    If you are federated with Bentley IMS, it will not interfere with your organization's existing internal MFA authentication flow. Implementing MFA in your organization does not require any change to the federation with Bentley, and can be done without any consultation with us.  Further, if you require IMS to use multifactor authentication for any non-federated domains/users, Bentley's IMS can enable MFA for any email domain as needed. If you want to learn more, just submit a Bentley Service Request, and one of our engineers will reach out to you to discuss it.

    Communities
    • Home
    • Getting Started
    • Community Central
    • Products
    • Support
    • Secure File Upload
    • Feedback
    Support and Services
    • Home
    • Product Support
    • Downloads
    • Subscription Services Portal
    Training and Learning
    • Home
    • About Bentley Institute
    • My Learning History
    • Reference Books
    Social Media
    •    LinkedIn
    •    Facebook
    •    Twitter
    •    YouTube
    •    RSS Feed
    •    Email

    © 2023 Bentley Systems, Incorporated  |  Contact Us  |  Privacy |  Terms of Use  |  Cookies