January 12, 2017–In a “green paper” released today, the Department of Commerce proposes several ways in which the department can foster the development of the Internet of things (IoT), including “fostering the physical and spectrum-related assets needed to support IoT growth and advancement.”

The paper, titled “Fostering the Advancement of the Internet of Things,” was informed by comments submitted in response to an April 2016 request for comment (TRDaily, April 5, 2016) and a September 2016 workshop (TRDaily, Sept. 1, 2016).

The department said that a notice will appear in tomorrow’s “Federal Register” in which the department’s National Telecommunications and Information Administration will seek “public input on the green paper’s findings, proposed approach, and next steps.” Continue reading →

January 12, 2017–Research presented at the Federal Trade Commission’s second annual PrivacyCon event today looked at consumers’ expectations for privacy, their willingness to accept privacy risks in exchange for content, apps, and IoT (Internet of things) connections, and possible solutions. In opening remarks at the conference, FTC Chairwoman Edith Ramirez recalled some of the consumer technology she saw earlier this month on the show floor at CES: including autonomous vehicle, TVs “as thin as cellphones,” drones that can carry organs for transplant, drones that are outfitted for virtual reality, and smart trash can that can scan bar codes of discarded items to create a shopping list of items that need to be replaced.

All this technology, however means that consumers’ data can be accessed by many players, including device makers, app makers, content publishers, software vendors for IoT devices, and advertising companies. The situation is “exacerbated when non-consumer-facing entities increasingly handle consumer data,” Chairwoman Ramirez added. And not only is consumer privacy at risk, she said; some of these devices, including autonomous vehicles, pose threats to health and safety from the failure of security. Continue reading →

The National Association of State Procurement Officials (NASPO) and the National Association of State Chief Information Officers (NASCIO) have developed an action plan for navigating the ever-changing terrain shaping state procurement efforts and information technology (IT) updates. While Chief Procurement Officers (CPOs) and Chief Information Officers (CIOs) have shared interests in working together to improve IT procurement, they face many challenges as states struggle to reform sometimes decades old procurement systems, and at the same time, keep up with the rapid changes of the technology landscape.

“Leading IT procurement transformation continues to be a priority for state procurement leaders nationally, and NASPO is committed to working with our IT partners to be at the forefront of this effort,” said Larry Maxwell, NASPO President and New Mexico State Purchasing Director. Continue reading →

January 10, 2017–The National Institute of Standards and Technology said today it issued a draft update of its voluntary cybersecurity framework for critical infrastructure sectors that it originally published in 2014, and is seeking comments on the draft through April 10. According to NIST the draft update includes new details on managing cyber supply chain risks, and measurement methods for cybersecurity improvements, among others.

“We wrote this update to refine and enhance the original document and to make it easier to use,” said Matt Barrett, NIST’s program manager for cyber framework, in a statement. “This update is fully compatible with the original framework, and the framework remains voluntary and flexible to adaptation,” he said. “In the update we introduce the notion of cybersecurity measurement to get the conversation started,” Mr. Barrett said, adding, “Measurements will be critical to ensure that cybersecurity receives proper consideration in a larger enterprise risk management discussion.” – John Curran, john.curran@wolterskluwer.com

Courtesy TRDaily