Multistakeholder Process To Promote Collaboration on Vulnerability Research Disclosure, 74773 [2016-25944]
Download as PDF
<![CDATA[
Federal Register / Vol. 81, No. 208 / Thursday, October 27, 2016 / Notices
snake/hydro_supplemental_recovery_
plan_module_063014.pdf.
NMFS (National Marine Fisheries Service).
2014b. Snake River Harvest Module.
Portland, OR. https://
www.westcoast.fisheries.noaa.gov/
publications/recovery_planning/salmon_
steelhead/domains/interior_columbia/
snake/harvest_module_062514.pdf.
Authority: 16 U.S.C. 1531 et seq.
Dated: October 21, 2016.
Angela Somma,
Chief, Endangered Species Conservation
Division, Office of Protected Resources,
National Marine Fisheries Service.
[FR Doc. 2016–25973 Filed 10–26–16; 8:45 am]
BILLING CODE 3510–22–P
DEPARTMENT OF COMMERCE
National Telecommunications and
Information Administration
Multistakeholder Process To Promote
Collaboration on Vulnerability
Research Disclosure
National Telecommunications
and Information Administration, U.S.
Department of Commerce.
ACTION: Notice of open meeting.
AGENCY:
The National
Telecommunications and Information
Administration (NTIA) will convene a
meeting of a multistakeholder process
concerning the collaboration between
security researchers and software and
system developers and owners to
address security vulnerability disclosure
on November 7, 2016.
DATES: The meeting will be held on
November 7, 2016, from 12:00 p.m. to
4:00 p.m., Eastern Time. See
SUPPLEMENTARY INFORMATION for details.
ADDRESSES: The meeting will be held at
the American Institute of Architects,
1735 New York Ave. NW., Washington,
DC 20006.
FOR FURTHER INFORMATION CONTACT:
Allan Friedman, National
Telecommunications and Information
Administration, U.S. Department of
Commerce, 1401 Constitution Avenue
NW., Room 4725, Washington, DC
20230; telephone: (202) 482–4281;
email: afriedman@ntia.doc.gov. Please
direct media inquiries to NTIA’s Office
of Public Affairs: (202) 482–7002; email:
press@ntia.doc.gov.
SUPPLEMENTARY INFORMATION:
Background: On March 19, 2015, the
National Telecommunications and
Information Administration, working
with the Department of Commerce’s
Internet Policy Task Force (IPTF),
issued a Request for Comment to
‘‘identify substantive cybersecurity
sradovich on DSK3GMQ082PROD with NOTICES
SUMMARY:
VerDate Sep<11>2014
17:43 Oct 26, 2016
Jkt 241001
74773
issues that affect the digital ecosystem
and digital economic growth where
broad consensus, coordinated action,
and the development of best practices
could substantially improve security for
organizations and consumers.’’ 1 This
Request built on earlier work from the
Department, including the 2011 Green
Paper Cybersecurity, Innovation, and
the Internet Economy,2 as well as
comments the Department had received
on related issues.3 On July 9, 2015, after
reviewing the comments, NTIA
announced that the first issue to be
addressed would be ‘‘collaboration on
vulnerability research disclosure,’’ 4 and
subsequently announced that the first
meeting of a multistakeholder process
on this topic would be held on
September 29, 2015, and subsequent
meetings were convened on December
2, 2015, and April 8, 2016.5
Matters To Be Considered: The
November 7, 2016 meeting is a
continuation of a series of NTIAconvened multistakeholder discussions
concerning collaboration on
vulnerability disclosure. Stakeholders
will engage in an open, transparent,
consensus-driven process to develop
voluntary principles guiding the
collaboration between vendors and
researchers about vulnerability
information. Stakeholders will review
the work of the ongoing working groups,
and identify strategies for maximizing
the impact of stakeholder outputs. More
information about stakeholders’ work is
available at: https://www.ntia.doc.gov/
other-publication/2015/
multistakeholder-process-cybersecurityvulnerabilities.
Time and Date: NTIA will convene a
meeting of the multistakeholder process
to promote collaboration on
vulnerability research disclosure on
November 7, 2016, from 12:00 p.m. to
4:00 p.m., Eastern Time. The meeting
date and time are subject to change.
Please refer to NTIA’s Web site, https://
www.ntia.doc.gov/other-publication/
2015/multistakeholder-processcybersecurity-vulnerabilities, for the
most current information.
Place: The meeting will be held at the
American Institute of Architects, 1735
New York Ave. NW., Washington, DC
20006. The location of the meeting is
subject to change. Please refer to NTIA’s
Web site, https://www.ntia.doc.gov/
other-publication/2015/
multistakeholder-process-cybersecurityvulnerabilities, for the most current
information.
Other Information: The meeting is
open to the public and the press. The
meeting is physically accessible to
people with disabilities. Requests for
sign language interpretation or other
auxiliary aids should be directed to
Allan Friedman at (202) 482–4281 or
afriedman@ntia.doc.gov at least seven
(7) business days prior to the meeting.
The meeting will also be webcast.
Requests for real-time captioning of the
webcast or other auxiliary aids should
be directed to Allan Friedman at (202)
482–4281 or afriedman@ntia.doc.gov at
least seven (7) business days prior to the
meeting. There will be an opportunity
for stakeholders viewing the webcast to
participate remotely in the meeting
through a moderated conference bridge,
including polling functionality. Access
details for the meeting are subject to
change. Please refer to NTIA’s Web site,
https://www.ntia.doc.gov/otherpublication/2015/multistakeholderprocess-cybersecurity-vulnerabilities, for
the most current information.
1 U.S. Department of Commerce, Internet Policy
Task Force, Request for Public Comment,
Stakeholder Engagement on Cybersecurity in the
Digital Ecosystem, 80 FR 14360, Docket No.
150312253–5253–01 (Mar. 19, 2015), available at:
https://www.ntia.doc.gov/files/ntia/publications/
cybersecurity_rfc_03192015.pdf.
2 U.S. Department of Commerce, Internet Policy
Task Force, Cybersecurity, Innovation, and the
Internet Economy (June 2011) (Green Paper),
available at: https://www.nist.gov/itl/upload/
Cybersecurity_Green-Paper_FinalVersion.pdf.
3 See Comments Received in Response to Federal
Register Notice Developing a Framework for
Improving Critical Infrastructure Cybersecurity,
Docket No. 140721609–4609–01, available at:
https://csrc.nist.gov/cyberframework/rfi_comments_
10_2014.html.
4 NTIA, Enhancing the Digital Economy Through
Collaboration on Vulnerability Research Disclosure
(July 9, 2015), available at: https://
www.ntia.doc.gov/blog/2015/enhancing-digitaleconomy-through-collaboration-vulnerabilityresearch-disclosure.
5 NTIA, Cybersecurity Vulnerabilities, https://
www.ntia.doc.gov/other-publication/2015/
multistakeholder-process-cybersecurityvulnerabilities.
Dated: October 21, 2016.
Kathy D. Smith,
Chief Counsel, National Telecommunications
and Information Administration.
PO 00000
Frm 00012
Fmt 4703
Sfmt 4703
[FR Doc. 2016–25944 Filed 10–26–16; 8:45 am]
BILLING CODE 3510–60–P
DEPARTMENT OF COMMERCE
Patent and Trademark Office
Submission for OMB Review;
Comment Request; Post Allowance
and Refiling
The United States Patent and
Trademark Office (USPTO) will submit
to the Office of Management and Budget
(OMB) for clearance the following
proposal for collection of information
under the provisions of the Paperwork
Reduction Act (44 U.S.C. Chapter 35).
E:\FR\FM\27OCN1.SGM
27OCN1
]]>Agencies
[Federal Register Volume 81, Number 208 (Thursday, October 27, 2016)]
[Notices]
[Page 74773]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2016-25944]
-----------------------------------------------------------------------
DEPARTMENT OF COMMERCE
National Telecommunications and Information Administration
Multistakeholder Process To Promote Collaboration on
Vulnerability Research Disclosure
AGENCY: National Telecommunications and Information Administration,
U.S. Department of Commerce.
ACTION: Notice of open meeting.
-----------------------------------------------------------------------
SUMMARY: The National Telecommunications and Information Administration
(NTIA) will convene a meeting of a multistakeholder process concerning
the collaboration between security researchers and software and system
developers and owners to address security vulnerability disclosure on
November 7, 2016.
DATES: The meeting will be held on November 7, 2016, from 12:00 p.m. to
4:00 p.m., Eastern Time. See SUPPLEMENTARY INFORMATION for details.
ADDRESSES: The meeting will be held at the American Institute of
Architects, 1735 New York Ave. NW., Washington, DC 20006.
FOR FURTHER INFORMATION CONTACT: Allan Friedman, National
Telecommunications and Information Administration, U.S. Department of
Commerce, 1401 Constitution Avenue NW., Room 4725, Washington, DC
20230; telephone: (202) 482-4281; email: afriedman@ntia.doc.gov. Please
direct media inquiries to NTIA's Office of Public Affairs: (202) 482-
7002; email: press@ntia.doc.gov.
SUPPLEMENTARY INFORMATION:
Background: On March 19, 2015, the National Telecommunications and
Information Administration, working with the Department of Commerce's
Internet Policy Task Force (IPTF), issued a Request for Comment to
``identify substantive cybersecurity issues that affect the digital
ecosystem and digital economic growth where broad consensus,
coordinated action, and the development of best practices could
substantially improve security for organizations and consumers.'' \1\
This Request built on earlier work from the Department, including the
2011 Green Paper Cybersecurity, Innovation, and the Internet
Economy,\2\ as well as comments the Department had received on related
issues.\3\ On July 9, 2015, after reviewing the comments, NTIA
announced that the first issue to be addressed would be ``collaboration
on vulnerability research disclosure,'' \4\ and subsequently announced
that the first meeting of a multistakeholder process on this topic
would be held on September 29, 2015, and subsequent meetings were
convened on December 2, 2015, and April 8, 2016.\5\
---------------------------------------------------------------------------
\1\ U.S. Department of Commerce, Internet Policy Task Force,
Request for Public Comment, Stakeholder Engagement on Cybersecurity
in the Digital Ecosystem, 80 FR 14360, Docket No. 150312253-5253-01
(Mar. 19, 2015), available at: https://www.ntia.doc.gov/files/ntia/publications/cybersecurity_rfc_03192015.pdf.
\2\ U.S. Department of Commerce, Internet Policy Task Force,
Cybersecurity, Innovation, and the Internet Economy (June 2011)
(Green Paper), available at: https://www.nist.gov/itl/upload/Cybersecurity_Green-Paper_FinalVersion.pdf.
\3\ See Comments Received in Response to Federal Register Notice
Developing a Framework for Improving Critical Infrastructure
Cybersecurity, Docket No. 140721609-4609-01, available at: https://csrc.nist.gov/cyberframework/rfi_comments_10_2014.html.
\4\ NTIA, Enhancing the Digital Economy Through Collaboration on
Vulnerability Research Disclosure (July 9, 2015), available at:
https://www.ntia.doc.gov/blog/2015/enhancing-digital-economy-through-collaboration-vulnerability-research-disclosure.
\5\ NTIA, Cybersecurity Vulnerabilities, https://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities.
---------------------------------------------------------------------------
Matters To Be Considered: The November 7, 2016 meeting is a
continuation of a series of NTIA-convened multistakeholder discussions
concerning collaboration on vulnerability disclosure. Stakeholders will
engage in an open, transparent, consensus-driven process to develop
voluntary principles guiding the collaboration between vendors and
researchers about vulnerability information. Stakeholders will review
the work of the ongoing working groups, and identify strategies for
maximizing the impact of stakeholder outputs. More information about
stakeholders' work is available at: https://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities.
Time and Date: NTIA will convene a meeting of the multistakeholder
process to promote collaboration on vulnerability research disclosure
on November 7, 2016, from 12:00 p.m. to 4:00 p.m., Eastern Time. The
meeting date and time are subject to change. Please refer to NTIA's Web
site, https://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities, for the most current
information.
Place: The meeting will be held at the American Institute of
Architects, 1735 New York Ave. NW., Washington, DC 20006. The location
of the meeting is subject to change. Please refer to NTIA's Web site,
https://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities, for the most current
information.
Other Information: The meeting is open to the public and the press.
The meeting is physically accessible to people with disabilities.
Requests for sign language interpretation or other auxiliary aids
should be directed to Allan Friedman at (202) 482-4281 or
afriedman@ntia.doc.gov at least seven (7) business days prior to the
meeting. The meeting will also be webcast. Requests for real-time
captioning of the webcast or other auxiliary aids should be directed to
Allan Friedman at (202) 482-4281 or afriedman@ntia.doc.gov at least
seven (7) business days prior to the meeting. There will be an
opportunity for stakeholders viewing the webcast to participate
remotely in the meeting through a moderated conference bridge,
including polling functionality. Access details for the meeting are
subject to change. Please refer to NTIA's Web site, https://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities, for the most current information.
Dated: October 21, 2016.
Kathy D. Smith,
Chief Counsel, National Telecommunications and Information
Administration.
[FR Doc. 2016-25944 Filed 10-26-16; 8:45 am]
BILLING CODE 3510-60-P
