查看文章 |
美国众议院科学与技术委员会今天通过一项新的法案,增加了NIST在网际安全(cybersecurity)方面的职能. 根据此法案, NIST将负责指定一个计划来协调政府和国际组织间在开发新的网际安全标准方面的合作. 同时, NIST也将于政府机构, 业界和学术界共同合作, 对网际安全风险和最佳实践等, 进行公众教育 NIST-美国国家标准技术研究院(National Institute of Standards and Technoligy)是属于美国商业部的技术管理部门,前身是1901年建立的联邦政府的第一个物理科学实验室,位于马里兰州的Gaithersburg,是目前NIST总部所在地,另一分部,位于科罗拉多州的Boulder,还有两个设在大学的联合研究所,JILA在Colorado大学,CARB在Maryland大学。NIST的任务是为提高劳动生产率、促进贸易和改善生活质量、提高计量、标准和技术。 法案全文:
Bill Status and Summary Reported (as amended) by the Technology and Innovation Subcommittee on November 4, 2009
Section-by-Section SEC 1 Short Title Sets the title as, “Cybersecurity Coordination and Awareness Act”. SEC 2 Definitions Defines the terms Director and Institute. SEC 3 International Cybersecurity Technical Standards NIST shall develop and implement a plan to ensure a coordinated United States Government representation in international cybersecurity technical standards development. This plan is due to Congress no later than one year after enactment. SEC 4 Promoting Cybersecurity Awareness and Education NIST shall deliver a plan to Congress within 90 days describing how it will develop and implement a cybersecurity awareness and education program. The program shall be aimed at disseminating cybersecurity best practices and standards and shall include how NIST will make these usable by individuals, small business, state and local governments, and educational institutions. This plan will include how NIST can utilize established Manufacturing Extension Partnership networks to have cybersecurity information readily available to small manufacturing companies.
SEC 5 Identity Management Research and Development
NIST shall engage in research and development programs to improve identity management systems.
SEC 6 Amendment to the Cybersecurity Research and Development Act of 2002 The section amends Sec. 8(c) of the Cybersecurity R&D Act (PL 107-305) and updates the technical terms in original statute to reflect the extant technologies and networked systems. |
