Risks to supply chain, emerging 5G networks top list of concerns for regulators

The National Institute of Standards and Technology has changed tack in its much-anticipated revisions to cybersecurity guidelines in acquisition rules for defense contractors, a move with implications for all industry sectors as part of broader efforts for securing the national supply chain and the rollout of 5G telecom networks.

A key NIST official says security controls for advanced persistent threats will be developed separately from longstanding requirements for protecting controlled unclassified information.

NIST had planned an “appendix” to its 800-171...