New York, April 10, 2017 - The EastWest Institute (EWI) has submitted "Comments on Developing a Framework to Improve Critical Infrastructure Cybersecurity" to the National Institute of Standards and Technology (NIST). These comments—submitted on behalf of the Breakthrough Group on Increasing the Global Availability and Use of Secure ICT Products and Services under EWI's Global Cooperation in Cyberspace program—are designed to assist the U.S. government in improving its guidance to federal agencies and private sector critical infrastructure owners and operators on how to better secure their critical information systems.
This work builds on EWI's Purchasing Secure ICT Products and Services: A Buyers Guide. The Guide—released in September 2016, in cooperation with our partners, Huawei Technologies, Microsoft and The Open Group—is intended to help the buyers, suppliers and users of information and communications technologies better understand and address the cybersecurity and privacy risks inherent in information and communications technology (ICT) products and services. Supporting the work outlined in the Guide, the comments submitted to NIST recommend to increase the importance of acquiring secure commercial hardware and software as a part of an organization's overall cybersecurity practices.
NIST is a federal agency within the United States Department of Commerce. NIST's mission is to develop and promote measurement, standards, and technology to enhance productivity, facilitate trade, and improve the quality of life. NIST is also responsible for establishing computer- and information technology-related standards and guidelines for federal agencies to use. Many private sector organizations are already making use of the cybersecurity framework to improve the security of their information resources.