NIST eyes issuing second draft update of cyber framework for additional comments

GAITHERSBURG, MD – The National Institute of Standards and Technology is considering whether to revise and reissue its draft update to the framework on cybersecurity standards, based on industry calls for revisions of key sections regarding metrics, supply-chain risks and vulnerability disclosures, among other issues.

“We need to consider whether to revise and issue a second draft,” Matthew Barrett of NIST told participants today at the conclusion of a two-day workshop here on a proposed update to the framework issued...