Law and Policy on the Cyber Supply Chain Security in the United States -117th United States Congress 1st Session-

IR HANDLE Web Site Open Access

Bibliographic Information

Other Title
  • 米国サイバー・サプライチェーン・セキュリティ法政策の動向 -第117議会第1会期(2021-2022年)-
  • ベイコク サイバー ・ サプライチェーン ・ セキュリティ ホウセイサク ノ ドウコウ ーダイ117ギカイ ダイ1カイキ (2021-2022ネン)ー

Search this article

Abstract

application/pdf

The first session of the 117th Congress (2021-2022) was a year of significant change for supply chain security in two ways. The supply chain security community made progress on the revision of NIST SP 800-161, the basic document in the area of supply chain security, and on the rapid development of key policies in response to major security incidents, such as the Colonial Pipeline incident and the Log4j vulnerability incident. On the other hand, there have been the following room to do. The Cybersecurity Maturity Model Certification (CMMC), a framework for mandatory information security measures for contractors in the Department of Defense, was temporarily suspended. And a bill that would establish a new information sharing framework between the public and private sectors regarding security incidents did not reach an agreement. Those may indicate the difficulty of making information security management mandatory, which was originally based on the voluntary approach.

論文(Atticle)

Journal

Related Projects

See more

Keywords

Details 詳細情報について

Report a problem

Back to top