NIST to Address Cyber Risks in Tech Supply Chains
The Commerce Department announced a new effort this week by the National Institute of Standards and Technology to “improve the security and integrity of the technology supply chain.” NIST will develop a framework to help industry build and assess “secure technology” and open-source software for cybersecurity risks, Commerce said.
Sign up for a free preview to unlock the rest of this article
Export Compliance Daily combines U.S. export control news, foreign border import regulation and policy developments into a single daily information service that reliably informs its trade professional readers about important current issues affecting their operations.
The agency said NIST will rely on private companies, government agencies and universities to help develop “usable and effective domestic and global supply chain risk management practices.” The agency will specifically focus on promoting these practices for international standards-setting bodies. James Olthoff, performing the nonexclusive functions and duties of the undersecretary of Commerce for Standards and Technology and director of NIST, said the effort will lead to “sound technical, trusted, practical solutions to help the nation better manage cybersecurity risks.”