NIST seeks comment on revised cyber framework 'profile' for manufacturers

The National Institute of Standards and Technology has issued draft revisions to a cybersecurity framework “profile” for manufactures to incorporate updates to the framework that were issued in 2018.

“These updates include managing cybersecurity within the supply chain, self-assessing cybersecurity risk, vulnerability disclosure, system integrity, and more comprehensive controls for identity management,” according to NIST in announcing the proposed revisions on Wednesday. “Additional changes include updating language to change references from 'security levels' to 'impact levels.'"

NIST is requesting...