National Cybersecurity Center of Excellence (NCCoE) and Electric Power Sector Identity and Access Management Use Case, 15100-15102 [2014-05960]
Download as PDF
<![CDATA[
15100
Federal Register / Vol. 79, No. 52 / Tuesday, March 18, 2014 / Notices
responsibility concerning the return or
destruction of proprietary information
disclosed under APO in accordance
with 19 CFR 351.305, which continues
to govern business proprietary
information in this segment of the
proceeding. Timely written notification
of the return/destruction of APO
materials or conversion to judicial
protective order is hereby requested.
Failure to comply with the regulations
and terms of an APO is a violation
which is subject to sanction.
This notice is issued and published in
accordance with section 777(i)(1) of the
Tariff Act of 1930, as amended, and 19
CFR 351.213(d)(4).
Dated: March 12, 2014.
Gary Taverman,
Senior Advisor for Antidumping and
Countervailing Duty Operations.
[FR Doc. 2014–05971 Filed 3–17–14; 8:45 am]
BILLING CODE 3510–DS–P
DEPARTMENT OF COMMERCE
International Trade Administration
[C–570–995]
Countervailing Duty Investigation of
Grain-Oriented Electrical Steel From
the People’s Republic of China:
Preliminary Determination and
Alignment of Final Determination With
Final Antidumping Duty Determination
Correction
In notice document 2014–05259
appearing on pages 13617–13619 in the
issue of Tuesday, March 11, 2014, make
the following correction:
On page 13617, in the third column,
in the DATES section, ‘‘March 12, 2014’’
should read ‘‘March 11, 2014’’.
[FR Doc. C1–2014–05259 Filed 3–17–14; 8:45 am]
BILLING CODE 1505–01–D
DEPARTMENT OF COMMERCE
International Trade Administration
United States Travel and Tourism
Advisory Board: Meeting of the United
States Travel and Tourism Advisory
Board
International Trade
Administration, U.S. Department of
Commerce.
ACTION: Notice of an open meeting.
emcdonald on DSK67QTVN1PROD with NOTICES
AGENCY:
The United States Travel and
Tourism Advisory Board (Board) will
hold the first meeting of its newly
appointed members on Tuesday, April
8, 2014. The Board was re-chartered on
August 2013, to advise the Secretary of
SUMMARY:
VerDate Mar<15>2010
18:34 Mar 17, 2014
Jkt 232001
Commerce on matters relating to the
travel and tourism industry. At the
meeting, members will be sworn-in and
will begin a discussion of the work they
will undertake during their term. They
are expected to discuss issues impacting
the travel and tourism industry,
including travel promotion, visa policy,
travel facilitation, infrastructure, Brand
USA, public-private partnerships, and
domestic travel and tourism issues, in
addition to other topics. The agenda
may change to accommodate Board
business. The final agenda will be
posted on the Department of Commerce
Web site for the Board at https://
trade.gov/ttab, at least one week in
advance of the meeting.
DATES: Tuesday, April 8, 2014, 9 a.m.–
11 a.m. and open for public comments
11 a.m.–11:30 a.m. Central Daylight
Time (CDT).
ADDRESSES: McCormick Place, 2310 S
Lake Shore Drive, Chicago, Illinois
60616. The meeting room will be
provided upon request.
FOR FURTHER INFORMATION CONTACT:
Jennifer Pilat, the United States Travel
and Tourism Advisory Board, Room
4043, 1401 Constitution Avenue NW.,
Washington, DC 20230, telephone: 202–
482–4501, email: jennifer.pilat@
trade.gov.
SUPPLEMENTARY INFORMATION:
Background: The Board advises the
Secretary of Commerce on matters
relating to the U.S. travel and tourism
industry.
Public Participation: The meeting will
be open to the public and will be
physically accessible to people with
disabilities. All guests are required to
register in advance. The meeting room
will be provided upon registration.
Seating is limited and will be on a first
come, first served basis. Requests for
sign language interpretation, other
auxiliary aids, or pre-registration,
should be submitted no later than 5 p.m.
EDT on March 25, 2014 to Jennifer Pilat,
the U.S. Travel and Tourism Advisory
Board, Room 4043, 1401 Constitution
Avenue NW., Washington, DC 20230,
telephone 202–482–4501, OACIE@
trade.gov. Last minute requests will be
accepted, but may be impossible to fill.
There will be 30 minutes of time
allotted for oral comments from
members of the public attending the
meeting. Any member of the public may
submit pertinent written comments
concerning the Board’s affairs at any
time before or after the meeting.
Comments may be submitted to
Jennifer Pilat at the contact information
indicated above. To be considered
during the meeting, comments must be
received no later than 5:00 p.m. EDT on
PO 00000
Frm 00006
Fmt 4703
Sfmt 4703
March 25, 2014, to ensure transmission
to the Board prior to the meeting.
Comments received after that date will
be distributed to the members but may
not be considered at the meeting. Copies
of Board meeting minutes will be
available within 90 days of the meeting.
Dated: March 14, 2014.
Jennifer Pilat,
Executive Secretary, United States Travel and
Tourism Advisory Board.
[FR Doc. 2014–06078 Filed 3–17–14; 8:45 am]
BILLING CODE 3510–DR–P
DEPARTMENT OF COMMERCE
National Institute of Standards and
Technology
[Docket No.: 140307213–4213–01]
National Cybersecurity Center of
Excellence (NCCoE) and Electric
Power Sector Identity and Access
Management Use Case
National Institute of Standards
and Technology, Department of
Commerce.
ACTION: Notice.
AGENCY:
The National Institute of
Standards and Technology (NIST)
invites organizations to provide
products and technical expertise to
support and demonstrate security
platforms for identity and access
management for the electric power
sector. This notice is the initial step for
the National Cybersecurity Center of
Excellence (NCCoE) in collaborating
with technology companies to address
cybersecurity challenges identified
under the Energy Sector program.
Participation in the use case is open to
all interested organizations.
DATES: Interested parties must contact
NIST to request a letter of interest.
Collaborative activities will commence
as soon as enough completed and signed
letters of interest have been returned to
address all the necessary components
and capabilities, but no earlier than
April 17, 2014.
ADDRESSES: The NCCoE is located at
9600 Gudelsky Drive, Rockville, MD
20850. Letters of interest must be
submitted to Energy_NCCoE@nist.gov;
or via hardcopy to National Institute of
Standards and Technology, NCCoE;
9600 Gudelsky Drive; MS 2002;
Rockville, MD 20850. Organizations
whose letters of interest are accepted in
accordance with the Process set forth in
the SUPPLEMENTARY INFORMATION section
of this notice will be asked to sign a
Cooperative Research and Development
Agreement (CRADA) with NIST. A
SUMMARY:
E:\FR\FM\18MRN1.SGM
18MRN1
emcdonald on DSK67QTVN1PROD with NOTICES
Federal Register / Vol. 79, No. 52 / Tuesday, March 18, 2014 / Notices
CRADA template can be found at:
https://nccoe.nist.gov/The-Center/Get_
Involved/NCCoE_Consortium_CRADA_
Example.pdf.
FOR FURTHER INFORMATION CONTACT: Nate
Lesser via email at Energy_NCCoE@
nist.gov; or telephone 240–314–6823;
National Institute of Standards and
Technology, NCCoE; 9600 Gudelsky
Drive; MS 2002; Rockville, MD 20850.
Additional details about the NCCoE
Energy Sector program are available at
https://nccoe.nist.gov/energy.
SUPPLEMENTARY INFORMATION:
Background: The NCCoE, part of
NIST, is a public-private collaboration
for accelerating the widespread
adoption of integrated cybersecurity
tools and technologies. The NCCoE
brings together experts from industry,
government, and academia under one
roof to develop practical, interoperable
cybersecurity approaches that address
the real-world needs of complex
Information Technology (IT) systems.
By accelerating dissemination and use
of these integrated tools and
technologies for protecting IT assets, the
NCCoE will enhance trust in U.S. IT
communications, data, and storage
systems; reduce risk for companies and
individuals using IT systems; and
encourage development of innovative,
job-creating cybersecurity products and
services.
Process: NIST is soliciting responses
from all sources of relevant security
capabilities (see below). Interested
parties should contact NIST using the
information provided in the FOR
FURTHER INFORMATION CONTACT section of
this notice. Upon receiving statements
of interest, NIST will provide each
interested party with a letter of interest,
which the party must complete and
submit to NIST by the date provided in
the DATES section of this notice. The
letter of interest must be completed and
submitted to NCCoE by the responding
organization. NCCoE will contact
interested parties if there are questions
regarding the responsiveness of the
letters of interest to the use case
objective or requirements identified
below. NCCoE will select participants
who have submitted complete letters of
interest on a first come, first served
basis within each category of product
components or capabilities listed below
up to the number of participants in each
category necessary to carry out this use
case. However, there may be continuing
opportunity to participate even after
initial activity commences. Selected
participants will be required to enter
into a consortium Cooperative Research
and Development Agreement (CRADA)
with NIST. NIST published a notice in
VerDate Mar<15>2010
18:34 Mar 17, 2014
Jkt 232001
the Federal Register on October 19,
2012 (77 FR 64314) inviting U.S.
companies to enter into National
Cybersecurity Excellence Partnerships
(NCEPs) in furtherance of the NCCoE.
For this demonstration project NCEP
partners will not be given priority for
participation.
Use Case Objective: In order to protect
power generation, transmission and
distribution, energy companies need to
be able to control physical and logical
access to their resources, including
buildings, equipment, information
technology and Industrial Control
Systems (ICS). They must be able to
authenticate the individuals and
systems to which they are giving access
rights with a high degree of certainty,
whether they are employees,
contractors, vendors, or partners. In
addition, energy companies must be
able to enforce access control policies
(e.g. allow, deny, inquire further)
consistently, uniformly and in a timely
way across all of their resources.
Requirements: Each organization must
complete and execute the letter of
interest and certify that it is accurate
and complete.
Each organization will be asked to
identify which security platform
components or capabilities it is offering.
Product components or capabilities
include one or more of the following:
1. Services for authenticating and
authorizing users based on identity,
role, third-party affiliation (e.g.,
federation) or other attributes (e.g.,
attribute-based access control)
2. Services for authenticating and
authorizing devices
3. Services for whitelisting applications
4. Identity and access governance
capability that translates humanreadable access needs into machinereadable authorizations
5. Security incident and event
management (SIEM) or log analysis
software for monitoring access
management events
6. ICS equipment, such as Remote
Terminal Units (RTUs),
programmable logic controllers
(PLC), and relays, along with
associated software and
communications equipment (e.g.,
radios, encryptors)
7. Physical access control devices that
use standard communication
interfaces
8. ‘‘Bump-in-the-wire’’ devices for
augmenting Operational
Technology (OT) with
authentication, authorization,
access control, encrypted
communication and logging
capabilities
PO 00000
Frm 00007
Fmt 4703
Sfmt 4703
15101
Capability requirements of the
Identity and Access Management for
Electric Utilities Use Case are as
follows:
1. Compatibility with various electric
utility ICS equipment and software
2. Strong authentication of users,
devices, and software, based on
credentials or attributes, along with
appropriate encryption to enable
reasonably secure exchange of
identity and access management
information
3. Compatibility with protocols and
communication media commonly
used by electric utilities
4. Federated authorization for
communication across security
domains
5. Ease of use (e.g., installation,
configuration, maintenance,
provisioning, de-provisioning,
credentialing, revoking credentials)
Organizational requirements of the
Identity and Access Management for
Electric Utilities Use Case are as
follows:
1. Access by project staff to component
interfaces and the organization’s
experts necessary to make
functional connections among
security platform components
2. Development and demonstration of
use cases in NCCoE facilities
3. Development and demonstration
activities will be conducted in a
manner consistent with Federal
requirements (e.g., FIPS 200, FIPS
201, SP 800–53, and SP 800–63)
Additional details about the Identity
and Access Management for Electric
Utilities Use Case are available at https://
nccoe.nist.gov/energy.
NIST cannot guarantee that all of the
products proposed by respondents will
be used in the demonstration. Each
prospective participant will be expected
to work collaboratively with NIST staff
and other project participants under the
terms of the consortium agreement in
the development of the Identity and
Access Management for Electric Utilities
capability. Prospective participants’
contribution to the collaborative effort
will include assistance in establishing
the necessary interface functionality,
connection and set-up capabilities and
procedures, demonstration harnesses,
environmental and safety conditions for
use, integrated platform user
instructions, and demonstration plans
and scripts necessary to demonstrate the
desired capabilities. Each prospective
participant will train NIST personnel as
necessary, to operate its product in
capability demonstrations to the
healthcare community. Following
successful demonstrations, NIST will
E:\FR\FM\18MRN1.SGM
18MRN1
15102
Federal Register / Vol. 79, No. 52 / Tuesday, March 18, 2014 / Notices
publish a description of the security
platform and its performance
characteristics sufficient to permit other
organizations to develop and deploy
security platforms that meet the security
objectives of the Identity and Access
Management for Electric Utilities Use
Case. These descriptions will be public
information.
Under the terms of the consortium
agreement, NIST will support
development of interfaces among
participants’ products, including IT
infrastructure, laboratory facilities,
office facilities, collaboration facilities,
and staff support to component
composition, security platform
documentation, and demonstration
activities.
The dates of the demonstration of the
Identity and Access Management for
Electric Utilities capability will be
announced on the NCCoE Web site at
least two weeks in advance at https://
nccoe.nist.gov/. The expected outcome
of the demonstration is to improve
identity and access management on
electric utility OT systems. Participating
organizations will gain from the
knowledge that their products are
interoperable with other participants’
offerings.
For additional information on the
NCCoE governance, business processes,
and NCCoE operational structure, visit
the NCCoE Web site https://
nccoe.nist.gov/.
Dated: March 12, 2014.
Mary H. Saunders,
Associate Director for Management
Resources.
[FR Doc. 2014–05960 Filed 3–17–14; 8:45 am]
BILLING CODE 3510–13–P
DEPARTMENT OF COMMERCE
United States Patent and Trademark
Office
emcdonald on DSK67QTVN1PROD with NOTICES
Submission for OMB Review;
Comment Request
The United States Patent and
Trademark Office (USPTO) will submit
to the Office of Management and Budget
(OMB) for clearance the following
proposal for collection of information
under the provisions of the Paperwork
Reduction Act (44 U.S.C. Chapter 35).
Agency: United States Patent and
Trademark Office (USPTO).
Title: Trademark Trial and Appeal
Board (TTAB) Actions.
Form Number(s): None.
Agency Approval Number: 0651–
0040.
Type of Request: Extension of a
currently approved collection.
VerDate Mar<15>2010
18:34 Mar 17, 2014
Jkt 232001
Burden: 15,524 hours annually.
Number of Respondents: 76,017
responses per year.
Avg. Hours per Response: The USPTO
estimates that it will take the public
approximately 10 to 30 minutes (0.17 to
0.50 hours) to complete the submission,
depending on the request. This includes
time to gather the necessary
information, prepare the petitions,
notices, extensions, or additional
papers, and submit the completed
request to the USPTO, depending on the
complexity of the situation.
Needs and Uses: This information is
required by the Trademark Act of 1946,
Sections 13, 14, and 20, 15 U.S.C. 1063,
1064, and 1070, respectively. The
information in this collection is a matter
of public record and is used by the
public for a variety of private business
purposes related to establishing and
enforcing trademark rights. This
information is important to the public,
as both common law trademark owners
and Federal trademark registrants must
actively protect their own rights. This
collection includes the information
needed by the USPTO to review the
various types of petitions to cancel the
registration of a mark, notices of
opposition to the registration of a mark,
extensions of time to file an opposition,
appeals, and other papers filed in
connection with inter partes and ex
parte proceedings.
Affected Public: Businesses or other
for-profits or non-profit institutions.
Frequency: On occasion.
Respondent’s Obligation: Required to
obtain or retain benefits.
OMB Desk Officer: Nicholas A. Fraser,
email:
Nicholas_A._Fraser@omb.eop.gov.
Once submitted, the request will be
publicly available in electronic format
through the Information Collection
Review page at www.reginfo.gov.
Paper copies can be obtained by:
• Email: InformationCollection@
uspto.gov. Include ‘‘0651–0040 copy
request’’ in the subject line of the
message.
• Mail: Susan K. Fawcett, Records
Officer, Office of the Chief Information
Officer, United States Patent and
Trademark Office, P.O. Box 1450,
Alexandria, VA 22313–1450.
Written comments and
recommendations for the proposed
information collection should be sent on
or before April 17, 2014 to Nicholas A.
Fraser, OMB Desk Officer, via email to
Nicholas_A_Fraser@omb.eop.gov or by
fax to 202–395–5167, marked to the
attention of Nicholas A. Fraser.
PO 00000
Frm 00008
Fmt 4703
Sfmt 4703
Dated: March 12, 2014.
Susan K. Fawcett,
Records Officer, USPTO, Office of the Chief
Information Officer.
[FR Doc. 2014–05877 Filed 3–17–14; 8:45 am]
BILLING CODE 3510–16–P
DEPARTMENT OF DEFENSE
Department of the Navy
[Docket ID USN–2014–0007]
Privacy Act of 1974; System of
Records
Department of the Navy, DoD.
Notice to alter a System of
Records.
AGENCY:
ACTION:
The Department of the Navy
proposes to alter the system of records,
N05820–1, entitled ‘‘Foreign Criminal
Jurisdiction Files’’ in its inventory of
record systems subject to the Privacy
Act of 1974, as amended. This system
will be used by International and
Operational Law Division personnel in
the performance of their official duties
when monitoring and reporting foreign
criminal litigation, foreign confinement,
and legal hold status of the individuals
involved.
DATES: Comments will be accepted on or
before April 17, 2014. This proposed
action will be effective the day
following the end of the comment
period unless comments are received
which result in a contrary
determination.
ADDRESSES: You may submit comments,
identified by docket number and title,
by any of the following methods:
* Federal Rulemaking Portal: https://
www.regulations.gov. Follow the
instructions for submitting comments.
* Mail: Federal Docket Management
System Office, 4800 Mark Center Drive,
East Tower, 2nd Floor, Suite 02G09,
Alexandria, VA 22350–3100.
Instructions: All submissions received
must include the agency name and
docket number for this Federal Register
document. The general policy for
comments and other submissions from
members of the public is to make these
submissions available for public
viewing on the Internet at https://
www.regulations.gov as they are
received without change, including any
personal identifiers or contact
information.
FOR FURTHER INFORMATION CONTACT: Ms.
Robin Patterson, Head, PA/FOIA Office
(DNS–36), Department of the Navy,
2000 Navy Pentagon, Washington, DC
20350–2000, or by phone at (202) 685–
6545.
SUMMARY:
E:\FR\FM\18MRN1.SGM
18MRN1
]]>Agencies
[Federal Register Volume 79, Number 52 (Tuesday, March 18, 2014)]
[Notices]
[Pages 15100-15102]
From the Federal Register Online via the Government Printing Office [www.gpo.gov]
[FR Doc No: 2014-05960]
-----------------------------------------------------------------------
DEPARTMENT OF COMMERCE
National Institute of Standards and Technology
[Docket No.: 140307213-4213-01]
National Cybersecurity Center of Excellence (NCCoE) and Electric
Power Sector Identity and Access Management Use Case
AGENCY: National Institute of Standards and Technology, Department of
Commerce.
ACTION: Notice.
-----------------------------------------------------------------------
SUMMARY: The National Institute of Standards and Technology (NIST)
invites organizations to provide products and technical expertise to
support and demonstrate security platforms for identity and access
management for the electric power sector. This notice is the initial
step for the National Cybersecurity Center of Excellence (NCCoE) in
collaborating with technology companies to address cybersecurity
challenges identified under the Energy Sector program. Participation in
the use case is open to all interested organizations.
DATES: Interested parties must contact NIST to request a letter of
interest. Collaborative activities will commence as soon as enough
completed and signed letters of interest have been returned to address
all the necessary components and capabilities, but no earlier than
April 17, 2014.
ADDRESSES: The NCCoE is located at 9600 Gudelsky Drive, Rockville, MD
20850. Letters of interest must be submitted to Energy_NCCoE@nist.gov;
or via hardcopy to National Institute of Standards and Technology,
NCCoE; 9600 Gudelsky Drive; MS 2002; Rockville, MD 20850. Organizations
whose letters of interest are accepted in accordance with the Process
set forth in the SUPPLEMENTARY INFORMATION section of this notice will
be asked to sign a Cooperative Research and Development Agreement
(CRADA) with NIST. A
[[Page 15101]]
CRADA template can be found at: https://nccoe.nist.gov/The-Center/Get_Involved/NCCoE_Consortium_CRADA_Example.pdf.
FOR FURTHER INFORMATION CONTACT: Nate Lesser via email at Energy_NCCoE@nist.gov; or telephone 240-314-6823; National Institute of
Standards and Technology, NCCoE; 9600 Gudelsky Drive; MS 2002;
Rockville, MD 20850. Additional details about the NCCoE Energy Sector
program are available at https://nccoe.nist.gov/energy.
SUPPLEMENTARY INFORMATION:
Background: The NCCoE, part of NIST, is a public-private
collaboration for accelerating the widespread adoption of integrated
cybersecurity tools and technologies. The NCCoE brings together experts
from industry, government, and academia under one roof to develop
practical, interoperable cybersecurity approaches that address the
real-world needs of complex Information Technology (IT) systems. By
accelerating dissemination and use of these integrated tools and
technologies for protecting IT assets, the NCCoE will enhance trust in
U.S. IT communications, data, and storage systems; reduce risk for
companies and individuals using IT systems; and encourage development
of innovative, job-creating cybersecurity products and services.
Process: NIST is soliciting responses from all sources of relevant
security capabilities (see below). Interested parties should contact
NIST using the information provided in the FOR FURTHER INFORMATION
CONTACT section of this notice. Upon receiving statements of interest,
NIST will provide each interested party with a letter of interest,
which the party must complete and submit to NIST by the date provided
in the DATES section of this notice. The letter of interest must be
completed and submitted to NCCoE by the responding organization. NCCoE
will contact interested parties if there are questions regarding the
responsiveness of the letters of interest to the use case objective or
requirements identified below. NCCoE will select participants who have
submitted complete letters of interest on a first come, first served
basis within each category of product components or capabilities listed
below up to the number of participants in each category necessary to
carry out this use case. However, there may be continuing opportunity
to participate even after initial activity commences. Selected
participants will be required to enter into a consortium Cooperative
Research and Development Agreement (CRADA) with NIST. NIST published a
notice in the Federal Register on October 19, 2012 (77 FR 64314)
inviting U.S. companies to enter into National Cybersecurity Excellence
Partnerships (NCEPs) in furtherance of the NCCoE. For this
demonstration project NCEP partners will not be given priority for
participation.
Use Case Objective: In order to protect power generation,
transmission and distribution, energy companies need to be able to
control physical and logical access to their resources, including
buildings, equipment, information technology and Industrial Control
Systems (ICS). They must be able to authenticate the individuals and
systems to which they are giving access rights with a high degree of
certainty, whether they are employees, contractors, vendors, or
partners. In addition, energy companies must be able to enforce access
control policies (e.g. allow, deny, inquire further) consistently,
uniformly and in a timely way across all of their resources.
Requirements: Each organization must complete and execute the
letter of interest and certify that it is accurate and complete.
Each organization will be asked to identify which security platform
components or capabilities it is offering. Product components or
capabilities include one or more of the following:
1. Services for authenticating and authorizing users based on identity,
role, third-party affiliation (e.g., federation) or other attributes
(e.g., attribute-based access control)
2. Services for authenticating and authorizing devices
3. Services for whitelisting applications
4. Identity and access governance capability that translates human-
readable access needs into machine-readable authorizations
5. Security incident and event management (SIEM) or log analysis
software for monitoring access management events
6. ICS equipment, such as Remote Terminal Units (RTUs), programmable
logic controllers (PLC), and relays, along with associated software and
communications equipment (e.g., radios, encryptors)
7. Physical access control devices that use standard communication
interfaces
8. ``Bump-in-the-wire'' devices for augmenting Operational Technology
(OT) with authentication, authorization, access control, encrypted
communication and logging capabilities
Capability requirements of the Identity and Access Management for
Electric Utilities Use Case are as follows:
1. Compatibility with various electric utility ICS equipment and
software
2. Strong authentication of users, devices, and software, based on
credentials or attributes, along with appropriate encryption to enable
reasonably secure exchange of identity and access management
information
3. Compatibility with protocols and communication media commonly used
by electric utilities
4. Federated authorization for communication across security domains
5. Ease of use (e.g., installation, configuration, maintenance,
provisioning, de-provisioning, credentialing, revoking credentials)
Organizational requirements of the Identity and Access Management
for Electric Utilities Use Case are as follows:
1. Access by project staff to component interfaces and the
organization's experts necessary to make functional connections among
security platform components
2. Development and demonstration of use cases in NCCoE facilities
3. Development and demonstration activities will be conducted in a
manner consistent with Federal requirements (e.g., FIPS 200, FIPS 201,
SP 800-53, and SP 800-63)
Additional details about the Identity and Access Management for
Electric Utilities Use Case are available at https://nccoe.nist.gov/energy.
NIST cannot guarantee that all of the products proposed by
respondents will be used in the demonstration. Each prospective
participant will be expected to work collaboratively with NIST staff
and other project participants under the terms of the consortium
agreement in the development of the Identity and Access Management for
Electric Utilities capability. Prospective participants' contribution
to the collaborative effort will include assistance in establishing the
necessary interface functionality, connection and set-up capabilities
and procedures, demonstration harnesses, environmental and safety
conditions for use, integrated platform user instructions, and
demonstration plans and scripts necessary to demonstrate the desired
capabilities. Each prospective participant will train NIST personnel as
necessary, to operate its product in capability demonstrations to the
healthcare community. Following successful demonstrations, NIST will
[[Page 15102]]
publish a description of the security platform and its performance
characteristics sufficient to permit other organizations to develop and
deploy security platforms that meet the security objectives of the
Identity and Access Management for Electric Utilities Use Case. These
descriptions will be public information.
Under the terms of the consortium agreement, NIST will support
development of interfaces among participants' products, including IT
infrastructure, laboratory facilities, office facilities, collaboration
facilities, and staff support to component composition, security
platform documentation, and demonstration activities.
The dates of the demonstration of the Identity and Access
Management for Electric Utilities capability will be announced on the
NCCoE Web site at least two weeks in advance at https://nccoe.nist.gov/.
The expected outcome of the demonstration is to improve identity and
access management on electric utility OT systems. Participating
organizations will gain from the knowledge that their products are
interoperable with other participants' offerings.
For additional information on the NCCoE governance, business
processes, and NCCoE operational structure, visit the NCCoE Web site
https://nccoe.nist.gov/.
Dated: March 12, 2014.
Mary H. Saunders,
Associate Director for Management Resources.
[FR Doc. 2014-05960 Filed 3-17-14; 8:45 am]
BILLING CODE 3510-13-P
