Cybersecurity

NIST opens latest cyber framework draft for public comment

keyhole digital

The National Institute of Standards and Technology on Oct. 29 officially launched the public comment period for feedback on the most recent iteration of its proposed cybersecurity framework.

The Federal Register request for comments formally opens a 45-day period for the public to weigh in on the latest draft framework, released Oct. 22. The comment period will close Dec. 13.

The request for comment is the latest in a series of engagements with the general public, including private sector companies, operators of critical infrastructure, public sector employees and members of academia, among others.

The broad involvement in the framework's development has help lay the groundwork for the guidelines, with a final version due in February 2014 under requirements from President Barack Obama's February executive order addressing cybersecurity. NIST officials have held a series of workshops across the country throughout the year, with a final event slated for Nov. 14-15 in Raleigh, N.C.

"We knew it was essential to have early and substantive involvement" of the public, NIST Director Patrick Gallagher told reporters on Oct. 22. "As part of this effort more than 3,000 people have participated in the development, either through workshops, webinars, comments on drafts – this participation is absolutely essential."

The latest draft, and perhaps some of the feedback to date, will be up for discussion at the next workshop, as will be options for an industry-led governance structure for the framework, Gallagher said. It is likely that questions about how to measure compliance, privacy and civil liberties, and how to maintain the framework as a flexible document, even past February, also will be on the table in Raleigh.

"This is not going to be in a fully mature state when it's released in February," Gallagher said. "The framework must be a living document [and] allow for continuous improvement and technology and threats change and as business mature. It must evolve to meet business needs in real time."

About the Author

Amber Corrin is a former staff writer for FCW and Defense Systems.

Featured

  • Defense
    Ryan D. McCarthy being sworn in as Army Secretary Oct. 10, 2019. (Photo credit: Sgt. Dana Clarke/U.S. Army)

    Army wants to spend nearly $1B on cloud, data by 2025

    Army Secretary Ryan McCarthy said lack of funding or a potential delay in the JEDI cloud bid "strikes to the heart of our concern."

  • Congress
    Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

    Jim Langevin's view from the Hill

    As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.