最新イベントはこちら！ 本連載ではセキュリティコンサルタントの内海良氏がサプライチェーンの新標準である「NIST SP800-171」を詳しく解説していきます。第2回目は、NIST SP800-171が立案された背景、経緯、目的などを解説するとともに、「171」がなぜ ...

NIST SP 800-171 Revision 3, currently available as an Initial Public Draft, adds a specific "Supply Chain Risk Management" domain with three subsections: • 3.17.1. Supply Chain Risk Management ...

The NIST Cyber Supply Chain Risk Management (C-SCRM) Interdependency Tool is a prototype with sample code designed to provide a basic measurement of the potential impact of a cyber supply chain event.

In Cybersecurity Risk Management: Mastering the Fundamentals Using the NIST Cybersecurity Framework, veteran technology analyst Cynthia Brumfield, with contributions from cybersecurity expert Brian ...

While there isn't a silver bullet for eradicating threats entirely, prioritizing a targeted focus on effective supply chain risk management principles in 2025 is a critical place to start.

Within the U.S. government, NIST and other agencies collaborate with the public and private sector to research, develop, and share supply-chain risk management tools and practices. Many firms ...

There was a backlog of over 18,000 vulnerabilities over the next few months, but NIST announced in late May that it had awarded a contract to Analygence for additional processing support for the NVD.

including advancements in the Department of Commerce’s Supply Chain Center, as well as AI standards from the National Institute of Standards and Technology (NIST). Specifically, the white ...