81 FR 17146 - Multistakeholder Process To Promote Collaboration on Vulnerability Research Disclosure
DEPARTMENT OF COMMERCE
National Telecommunications and Information Administration Federal Register Volume 81, Issue 59 (March 28, 2016)
National Telecommunications and Information Administration
Federal Register Volume 81, Issue 59 (March 28, 2016)
| Page Range | 17146-17146 | |
| FR Document | 2016-06966 |
[Federal Register Volume 81, Number 59 (Monday, March 28, 2016)] [Notices] [Page 17146] From the Federal Register Online [www.thefederalregister.org] [FR Doc No: 2016-06966] ----------------------------------------------------------------------- DEPARTMENT OF COMMERCE National Telecommunications and Information Administration Multistakeholder Process To Promote Collaboration on Vulnerability Research Disclosure AGENCY: National Telecommunications and Information Administration, U.S. Department of Commerce. ACTION: Notice of open meeting. ----------------------------------------------------------------------- SUMMARY: The National Telecommunications and Information Administration (NTIA) will convene a meeting of a multistakeholder process concerning the collaboration between security researchers and software and system developers and owners to address security vulnerability disclosure on April 8, 2016. DATES: The meeting will be held on April 8, 2016 from 10:00 a.m. to 4:00 p.m., Central Time. See SUPPLEMENTARY INFORMATION for details. ADDRESSES: The meeting will be held at the Westin Chicago River North, 320 North Dearborn Street, Chicago, IL 60654. FOR FURTHER INFORMATION CONTACT: Allan Friedman, National Telecommunications and Information Administration, U.S. Department of Commerce, 1401 Constitution Avenue NW., Room 4725, Washington, DC 20230; telephone (202) 482-4281; email; [email protected]. Please direct media inquiries to NTIA's Office of Public Affairs, (202) 482- 7002; email [email protected]. SUPPLEMENTARY INFORMATION: Background: On March 19, 2015, the National Telecommunications and Information Administration, working with the Department of Commerce's Internet Policy Task Force (IPTF), issued a Request for Comment to ``identify substantive cybersecurity issues that affect the digital ecosystem and digital economic growth where broad consensus, coordinated action, and the development of best practices could substantially improve security for organizations and consumers.'' \1\ This Request built on earlier work from the Department, including the 2011 Green Paper Cybersecurity, Innovation, and the Internet Economy,\2\ as well as comments the Department had received on related issues.\3\ On July 9, 2015, after reviewing the comments, NTIA announced that the first issue to be addressed would be ``collaboration on vulnerability research disclosure,'' \4\ and subsequently announced that the first meeting of a multistakeholder process on this topic would be held on September 29, 2015. A second meeting was convened on December 2, 2015.\5\ --------------------------------------------------------------------------- \1\ U.S. Department of Commerce, Internet Policy Task Force, Request for Public Comment, Stakeholder Engagement on Cybersecurity in the Digital Ecosystem, 80 FR 14360, Docket No. 150312253-5253-01 (Mar. 19, 2015), available at: http://www.ntia.doc.gov/files/ntia/publications/cybersecurity_rfc_03192015.pdf. \2\ U.S. Department of Commerce, Internet Policy Task Force, Cybersecurity, Innovation, and the Internet Economy (June 2011) (Green Paper), available at: http://www.nist.gov/itl/upload/Cybersecurity_Green-Paper_FinalVersion.pdf. \3\ See Comments Received in Response to Federal Register Notice Developing a Framework for Improving Critical Infrastructure Cybersecurity, Docket No. 140721609-4609-01, available at: http://csrc.nist.gov/cyberframework/rfi_comments_10_2014.html. \4\ NTIA, Enhancing the Digital Economy Through Collaboration on Vulnerability Research Disclosure (July 9, 2015), available at: http://www.ntia.doc.gov/blog/2015/enhancing-digital-economy-through-collaboration-vulnerability-research-disclosure. \5\ NTIA, Cybersecurity Vulnerabilities, http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities. --------------------------------------------------------------------------- Matters to Be Considered: The April 8, 2016 meeting is a continuation of a series of NTIA-convened multistakeholder discussions concerning collaboration on vulnerability disclosure. Stakeholders will engage in an open, transparent, consensus-driven process to develop voluntary principles guiding the collaboration between vendors and researchers about vulnerability information. The April 8, 2016 meeting will build on stakeholders' previous work. More information about stakeholders' work is available at: http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities. Time and Date: NTIA will convene a meeting of the multistakeholder process to promote collaboration on vulnerability research disclosure on April 8, 2016, from 10:00 a.m. to 4:00 p.m., Central Time. The meeting date and time are subject to change. Please refer to NTIA's Web site, http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities, for the most current information. Place: The meeting will be held at the Westin Chicago River North, 320 North Dearborn Street, Chicago, IL 60654. The location of the meeting is subject to change. Please refer to NTIA's Web site, http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities, for the most current information. Other Information: The meeting is open to the public and the press. The meeting is physically accessible to people with disabilities. Requests for sign language interpretation or other auxiliary aids should be directed to Allan Friedman at (202) 482-4281 or [email protected] at least seven (7) business days prior to the meeting. The meeting will also be webcast. Requests for real-time captioning of the webcast or other auxiliary aids should be directed to Allan Friedman at (202) 482-4281 or [email protected] at least seven (7) business days prior to the meeting. There will be an opportunity for stakeholders viewing the webcast to participate remotely in the meeting through a moderated conference bridge, including polling functionality. Access details for the meeting are subject to change. Please refer to NTIA's Web site, http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities, for the most current information. Dated: March 23, 2016. Kathy D. Smith, Chief Counsel, National Telecommunications and Information Administration. [FR Doc. 2016-06966 Filed 3-25-16; 8:45 am] BILLING CODE 3510-60-P
![17146 Federal Register / Vol. 81, No. 59 / Monday, March 28, 2016 / Notices
Dated: March 23, 2016. Request built on earlier work from the location of the meeting is subject to
Tracey L. Thompson, Department, including the 2011 Green change. Please refer to NTIA’s Web site,
Acting Deputy Director, Office of Sustainable Paper Cybersecurity, Innovation, and http://www.ntia.doc.gov/other-
Fisheries, National Marine Fisheries Service. the Internet Economy,2 as well as publication/2015/multistakeholder-
[FR Doc. 2016–06893 Filed 3–25–16; 8:45 am] comments the Department had received process-cybersecurity-vulnerabilities, for
BILLING CODE 3510–22–P on related issues.3 On July 9, 2015, after the most current information.
reviewing the comments, NTIA Other Information: The meeting is
announced that the first issue to be open to the public and the press. The
DEPARTMENT OF COMMERCE addressed would be ‘‘collaboration on meeting is physically accessible to
vulnerability research disclosure,’’ 4 and people with disabilities. Requests for
National Telecommunications and subsequently announced that the first sign language interpretation or other
Information Administration meeting of a multistakeholder process auxiliary aids should be directed to
on this topic would be held on Allan Friedman at (202) 482–4281 or
Multistakeholder Process To Promote September 29, 2015. A second meeting afriedman@ntia.doc.gov at least seven
Collaboration on Vulnerability was convened on December 2, 2015.5 (7) business days prior to the meeting.
Research Disclosure Matters to Be Considered: The April 8, The meeting will also be webcast.
AGENCY: National Telecommunications 2016 meeting is a continuation of a Requests for real-time captioning of the
and Information Administration, U.S. series of NTIA-convened webcast or other auxiliary aids should
Department of Commerce. multistakeholder discussions be directed to Allan Friedman at (202)
concerning collaboration on 482–4281 or afriedman@ntia.doc.gov at
ACTION: Notice of open meeting.
vulnerability disclosure. Stakeholders least seven (7) business days prior to the
SUMMARY: The National will engage in an open, transparent, meeting. There will be an opportunity
Telecommunications and Information consensus-driven process to develop for stakeholders viewing the webcast to
Administration (NTIA) will convene a voluntary principles guiding the participate remotely in the meeting
meeting of a multistakeholder process collaboration between vendors and through a moderated conference bridge,
concerning the collaboration between researchers about vulnerability including polling functionality. Access
security researchers and software and information. The April 8, 2016 meeting details for the meeting are subject to
system developers and owners to will build on stakeholders’ previous change. Please refer to NTIA’s Web site,
address security vulnerability disclosure work. More information about http://www.ntia.doc.gov/other-
on April 8, 2016. stakeholders’ work is available at: publication/2015/multistakeholder-
http://www.ntia.doc.gov/other- process-cybersecurity-vulnerabilities, for
DATES: The meeting will be held on
publication/2015/multistakeholder- the most current information.
April 8, 2016 from 10:00 a.m. to 4:00 process-cybersecurity-vulnerabilities.
p.m., Central Time. See SUPPLEMENTARY Time and Date: NTIA will convene a Dated: March 23, 2016.
INFORMATION for details. meeting of the multistakeholder process Kathy D. Smith,
ADDRESSES: The meeting will be held at to promote collaboration on Chief Counsel, National Telecommunications
the Westin Chicago River North, 320 vulnerability research disclosure on and Information Administration.
North Dearborn Street, Chicago, IL April 8, 2016, from 10:00 a.m. to 4:00 [FR Doc. 2016–06966 Filed 3–25–16; 8:45 am]
60654. p.m., Central Time. The meeting date BILLING CODE 3510–60–P
FOR FURTHER INFORMATION CONTACT: and time are subject to change. Please
Allan Friedman, National refer to NTIA’s Web site, http://
Telecommunications and Information www.ntia.doc.gov/other-publication/ BUREAU OF CONSUMER FINANCIAL
Administration, U.S. Department of 2015/multistakeholder-process- PROTECTION
Commerce, 1401 Constitution Avenue cybersecurity-vulnerabilities, for the
most current information. [Docket No: CFPB–2016–0015]
NW., Room 4725, Washington, DC
20230; telephone (202) 482–4281; email; Place: The meeting will be held at the
Westin Chicago River North, 320 North Agency Information Collection
afriedman@ntia.doc.gov. Please direct Activities: Comment Request
media inquiries to NTIA’s Office of Dearborn Street, Chicago, IL 60654. The
Public Affairs, (202) 482–7002; email AGENCY: Bureau of Consumer Financial
150312253–5253–01 (Mar. 19, 2015), available at: Protection.
press@ntia.doc.gov. http://www.ntia.doc.gov/files/ntia/publications/
SUPPLEMENTARY INFORMATION: cybersecurity_rfc_03192015.pdf. ACTION: Notice and request for comment.
Background: On March 19, 2015, the 2 U.S. Department of Commerce, Internet Policy
National Telecommunications and Task Force, Cybersecurity, Innovation, and the SUMMARY: In accordance with the
Information Administration, working Internet Economy (June 2011) (Green Paper), Paperwork Reduction Act of 1995
available at: http://www.nist.gov/itl/upload/ (PRA), the Consumer Financial
with the Department of Commerce’s Cybersecurity_Green-Paper_FinalVersion.pdf.
Internet Policy Task Force (IPTF), 3 See Comments Received in Response to Federal Protection Bureau (Bureau) is requesting
issued a Request for Comment to Register Notice Developing a Framework for to renew the Office of Management and
‘‘identify substantive cybersecurity Improving Critical Infrastructure Cybersecurity, Budget (OMB) approval for an existing
Docket No. 140721609–4609–01, available at: information collection titled, ‘‘Generic
issues that affect the digital ecosystem http://csrc.nist.gov/cyberframework/rfi_comments_
and digital economic growth where 10_2014.html.
Information Collection Plan for the
broad consensus, coordinated action, 4 NTIA, Enhancing the Digital Economy Through Office of Intergovernmental Affairs
and the development of best practices Collaboration on Vulnerability Research Disclosure Outreach Activities.’’
Lhorne on DSK5TPTVN1PROD with NOTICES
(July 9, 2015), available at: http:// DATES: Written comments are
could substantially improve security for www.ntia.doc.gov/blog/2015/enhancing-digital-
organizations and consumers.’’ 1 This economy-through-collaboration-vulnerability- encouraged and must be received on or
research-disclosure. before May 27, 2016 to be assured of
1 U.S. Department of Commerce, Internet Policy 5 NTIA, Cybersecurity Vulnerabilities, http:// consideration.
Task Force, Request for Public Comment, www.ntia.doc.gov/other-publication/2015/
Stakeholder Engagement on Cybersecurity in the multistakeholder-process-cybersecurity- ADDRESSES: You may submit comments,
Digital Ecosystem, 80 FR 14360, Docket No. vulnerabilities. identified by the title of the information
VerDate Sep<11>2014 14:52 Mar 25, 2016 Jkt 238001 PO 00000 Frm 00014 Fmt 4703 Sfmt 4703 E:\FR\FM\28MRN1.SGM 28MRN1](https://thefederalregister.org/doc/81_FR_17205/page/1.svg)
Document Created: 2016-03-26 00:13:09
Document Modified: 2016-03-26 00:13:09
| Category | Regulatory Information | |
| Collection | Federal Register | |
| sudoc Class | AE 2.7: GS 4.107: AE 2.106: | |
| Publisher | Office of the Federal Register, National Archives and Records Administration | |
| Section | Notices | |
| Action | Notice of open meeting. | |
| Dates | The meeting will be held on April 8, 2016 from 10:00 a.m. to 4:00 p.m., Central Time. See SUPPLEMENTARY INFORMATION for details. | |
| Contact | Allan Friedman, National Telecommunications and Information Administration, U.S. Department of Commerce, 1401 Constitution Avenue NW., Room 4725, Washington, DC 20230; telephone (202) 482-4281; email; [email protected] Please direct media inquiries to NTIA's Office of Public Affairs, (202) 482- 7002; email [email protected] | |
| FR Citation | 81 FR 17146 |
2025 Federal Register | Disclaimer | Privacy Policy
USC | CFR | eCFR