Daily News

NIST weighs integrating vulnerability disclosures into cybersecurity framework

July 26, 2017 |
Joshua Higgins
Bookmark and Share

The National Institute of Standards and Technology has offered several approaches to integrate coordinated disclosure of cyber vulnerabilities into future iterations of the federal framework of cybersecurity standards, based on proposals by industry and other stakeholders on updating the framework.

NIST is considering a phased integration of vulnerability disclosures that could be introduced in the “version 1.1” draft framework update, which is currently undergoing revisions, or in a later 2.0 version of the framework. These options are laid out by...

Not a subscriber? Sign up for 30 days free access to exclusive, behind-the-scenes reporting on cybersecurity policy under the Trump administration.

Log in to access this content.