FASC final rule addresses industry concerns over confidentiality, information use

The final rule implementing processes and procedures for the Federal Acquisition Security Council responds to industry concerns over how information collected by the new interagency body will be used for assessments, but leaves some room open for debate over liability protections, according to former federal CISO Grant Schneider.

The FASC was established to focus on information and communications technology used by the federal government, and is empowered to make recommendations for removal and exclusion of specific products. Schneider led the...