Cybersecurity Standards Need Flexibility, NIST Told

Law360, New York (May 20, 2013, 6:27 PM EDT) -- The National Institute of Standards and Technology on Thursday released an analysis of hundreds of initial comments on proposed cybersecurity measures to protect critical infrastructure, with respondents stressing that the framework should allow for flexibility and emphasize risk management over compliance standards. 

In preparation for the agency’s May 29-31 workshop at Carnegie Mellon University on its proposed infrastructure cybersecurity framework, the NIST unveiled a breakdown of nearly 250 comments submitted by public- and private-sector representatives, revealing concerns over the framework’s flexibility, global impact and provisions for...
To view the full article, register now.