Cybersecurity of Federal Networks

Click on image for more information

The American National Standards Institute (ANSI) encourages its members and stakeholders to respond to a newly released draft report by the U.S. Department of Commerce (DOC) and the U.S. Department of Homeland Security (DHS), issued as a response to the May 11, 2017, Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure. The draft report highlights the role of globally relevant standards in strengthening cybersecurity worldwide.

The Executive Order called for “resilience against botnets and other automated, distributed threats,” directing the departments to “lead an open and transparent process to identify and promote action by appropriate stakeholders” with the goal of “dramatically reducing threats perpetrated by automated and distributed attacks (e.g., botnets).”

DOC and DHS identified five complementary goals that would improve the resilience of the ecosystem:

1. Identify a clear pathway toward an adaptable, sustainable, and secure technology marketplace
2. Promote innovation in the infrastructure for dynamic adaptation to evolving threats
3. Promote innovation at the edge of the network to prevent, detect, and mitigate bad behavior
4. Build coalitions between the security, infrastructure, and operational technology communities domestically and around the world
5. Increase awareness and education across the ecosystem

The draft report emphasizes the need to augment standards to improve the resilience of the ecosystem. According to the document, “the U.S. government and industry should also jointly engage with developers of international standards and specifications, such as the IETF and the Joint Technical Committee 1 of the International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC) (ISO/IEC JTC 1), to establish globally relevant standards. As these standards evolve, federal profiles should be re-aligned or replaced as appropriate.”

Responses are due to DOC at Counter_Botnet@list.commerce.gov by 5 p.m. ET on February 12, 2018.

Link to original ANSI announcement