On July 22-23, the National Institute of Standards and Technology (NIST) will host a virtual-only event: Building the Federal Profile For IoT Device Cybersecurity: Next Steps for Securing Federal Systems.
NIST leveraged the Core Baseline established in NISTIR 8259A and analyzed the controls found in NIST SP 800-53 to develop a catalog of key IoT (Internet of Things) device cybersecurity capabilities and supporting non-technical manufacturer capabilities and associated IoT device customer controls. This catalog is a critical building block for establishing a federal profile of the Core Baseline (“Federal Profile”) to help government entities securely incorporate IoT devices into their systems and meet security requirements for federal information and systems.
The future Federal Profile aims to help manufacturers looking at federal customers and use cases go beyond identifying the types of cybersecurity capabilities listed in NISTIR 8259A to considering additionally needed technical and non-technical cybersecurity capabilities. Manufacturers can engineer the technical capabilities and provide non-technical capabilities to IoT device customers to help ensure that customers’ systems meet an established level of management, operational, and technical security control requirements.
The workshop will consist of two sessions, one per day and each lasting two hours. It will feature presentations from NIST Program Manager Kat Megas and Michael Fagan (Technical Lead, Cybersecurity for IoT Program) along with panels on key topics. Participants involved in Federal IoT cybersecurity or the manufacture of IoT devices are encouraged to attend.
Registration closes on July 20, 2020. Virtual Meeting Links will be sent to registered attendees on July 21, 2020.