Multistakeholder Process To Promote Collaboration on Vulnerability Research Disclosure, 74773 [2016-25944]

Download as PDF Federal Register / Vol. 81, No. 208 / Thursday, October 27, 2016 / Notices snake/hydro_supplemental_recovery_ plan_module_063014.pdf. NMFS (National Marine Fisheries Service). 2014b. Snake River Harvest Module. Portland, OR. http:// www.westcoast.fisheries.noaa.gov/ publications/recovery_planning/salmon_ steelhead/domains/interior_columbia/ snake/harvest_module_062514.pdf. Authority: 16 U.S.C. 1531 et seq. Dated: October 21, 2016. Angela Somma, Chief, Endangered Species Conservation Division, Office of Protected Resources, National Marine Fisheries Service. [FR Doc. 2016–25973 Filed 10–26–16; 8:45 am] BILLING CODE 3510–22–P DEPARTMENT OF COMMERCE National Telecommunications and Information Administration Multistakeholder Process To Promote Collaboration on Vulnerability Research Disclosure National Telecommunications and Information Administration, U.S. Department of Commerce. ACTION: Notice of open meeting. AGENCY: The National Telecommunications and Information Administration (NTIA) will convene a meeting of a multistakeholder process concerning the collaboration between security researchers and software and system developers and owners to address security vulnerability disclosure on November 7, 2016. DATES: The meeting will be held on November 7, 2016, from 12:00 p.m. to 4:00 p.m., Eastern Time. See SUPPLEMENTARY INFORMATION for details. ADDRESSES: The meeting will be held at the American Institute of Architects, 1735 New York Ave. NW., Washington, DC 20006. FOR FURTHER INFORMATION CONTACT: Allan Friedman, National Telecommunications and Information Administration, U.S. Department of Commerce, 1401 Constitution Avenue NW., Room 4725, Washington, DC 20230; telephone: (202) 482–4281; email: afriedman@ntia.doc.gov. Please direct media inquiries to NTIA’s Office of Public Affairs: (202) 482–7002; email: press@ntia.doc.gov. SUPPLEMENTARY INFORMATION: Background: On March 19, 2015, the National Telecommunications and Information Administration, working with the Department of Commerce’s Internet Policy Task Force (IPTF), issued a Request for Comment to ‘‘identify substantive cybersecurity sradovich on DSK3GMQ082PROD with NOTICES SUMMARY: VerDate Sep<11>2014 17:43 Oct 26, 2016 Jkt 241001 74773 issues that affect the digital ecosystem and digital economic growth where broad consensus, coordinated action, and the development of best practices could substantially improve security for organizations and consumers.’’ 1 This Request built on earlier work from the Department, including the 2011 Green Paper Cybersecurity, Innovation, and the Internet Economy,2 as well as comments the Department had received on related issues.3 On July 9, 2015, after reviewing the comments, NTIA announced that the first issue to be addressed would be ‘‘collaboration on vulnerability research disclosure,’’ 4 and subsequently announced that the first meeting of a multistakeholder process on this topic would be held on September 29, 2015, and subsequent meetings were convened on December 2, 2015, and April 8, 2016.5 Matters To Be Considered: The November 7, 2016 meeting is a continuation of a series of NTIAconvened multistakeholder discussions concerning collaboration on vulnerability disclosure. Stakeholders will engage in an open, transparent, consensus-driven process to develop voluntary principles guiding the collaboration between vendors and researchers about vulnerability information. Stakeholders will review the work of the ongoing working groups, and identify strategies for maximizing the impact of stakeholder outputs. More information about stakeholders’ work is available at: http://www.ntia.doc.gov/ other-publication/2015/ multistakeholder-process-cybersecurityvulnerabilities. Time and Date: NTIA will convene a meeting of the multistakeholder process to promote collaboration on vulnerability research disclosure on November 7, 2016, from 12:00 p.m. to 4:00 p.m., Eastern Time. The meeting date and time are subject to change. Please refer to NTIA’s Web site, http:// www.ntia.doc.gov/other-publication/ 2015/multistakeholder-processcybersecurity-vulnerabilities, for the most current information. Place: The meeting will be held at the American Institute of Architects, 1735 New York Ave. NW., Washington, DC 20006. The location of the meeting is subject to change. Please refer to NTIA’s Web site, http://www.ntia.doc.gov/ other-publication/2015/ multistakeholder-process-cybersecurityvulnerabilities, for the most current information. Other Information: The meeting is open to the public and the press. The meeting is physically accessible to people with disabilities. Requests for sign language interpretation or other auxiliary aids should be directed to Allan Friedman at (202) 482–4281 or afriedman@ntia.doc.gov at least seven (7) business days prior to the meeting. The meeting will also be webcast. Requests for real-time captioning of the webcast or other auxiliary aids should be directed to Allan Friedman at (202) 482–4281 or afriedman@ntia.doc.gov at least seven (7) business days prior to the meeting. There will be an opportunity for stakeholders viewing the webcast to participate remotely in the meeting through a moderated conference bridge, including polling functionality. Access details for the meeting are subject to change. Please refer to NTIA’s Web site, http://www.ntia.doc.gov/otherpublication/2015/multistakeholderprocess-cybersecurity-vulnerabilities, for the most current information. 1 U.S. Department of Commerce, Internet Policy Task Force, Request for Public Comment, Stakeholder Engagement on Cybersecurity in the Digital Ecosystem, 80 FR 14360, Docket No. 150312253–5253–01 (Mar. 19, 2015), available at: http://www.ntia.doc.gov/files/ntia/publications/ cybersecurity_rfc_03192015.pdf. 2 U.S. Department of Commerce, Internet Policy Task Force, Cybersecurity, Innovation, and the Internet Economy (June 2011) (Green Paper), available at: http://www.nist.gov/itl/upload/ Cybersecurity_Green-Paper_FinalVersion.pdf. 3 See Comments Received in Response to Federal Register Notice Developing a Framework for Improving Critical Infrastructure Cybersecurity, Docket No. 140721609–4609–01, available at: http://csrc.nist.gov/cyberframework/rfi_comments_ 10_2014.html. 4 NTIA, Enhancing the Digital Economy Through Collaboration on Vulnerability Research Disclosure (July 9, 2015), available at: http:// www.ntia.doc.gov/blog/2015/enhancing-digitaleconomy-through-collaboration-vulnerabilityresearch-disclosure. 5 NTIA, Cybersecurity Vulnerabilities, http:// www.ntia.doc.gov/other-publication/2015/ multistakeholder-process-cybersecurityvulnerabilities. Dated: October 21, 2016. Kathy D. Smith, Chief Counsel, National Telecommunications and Information Administration. PO 00000 Frm 00012 Fmt 4703 Sfmt 4703 [FR Doc. 2016–25944 Filed 10–26–16; 8:45 am] BILLING CODE 3510–60–P DEPARTMENT OF COMMERCE Patent and Trademark Office Submission for OMB Review; Comment Request; Post Allowance and Refiling The United States Patent and Trademark Office (USPTO) will submit to the Office of Management and Budget (OMB) for clearance the following proposal for collection of information under the provisions of the Paperwork Reduction Act (44 U.S.C. Chapter 35). E:\FR\FM\27OCN1.SGM 27OCN1

Agencies

[Federal Register Volume 81, Number 208 (Thursday, October 27, 2016)]
[Notices]
[Page 74773]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2016-25944]


-----------------------------------------------------------------------

DEPARTMENT OF COMMERCE

National Telecommunications and Information Administration


Multistakeholder Process To Promote Collaboration on 
Vulnerability Research Disclosure

AGENCY: National Telecommunications and Information Administration, 
U.S. Department of Commerce.

ACTION: Notice of open meeting.

-----------------------------------------------------------------------

SUMMARY: The National Telecommunications and Information Administration 
(NTIA) will convene a meeting of a multistakeholder process concerning 
the collaboration between security researchers and software and system 
developers and owners to address security vulnerability disclosure on 
November 7, 2016.

DATES: The meeting will be held on November 7, 2016, from 12:00 p.m. to 
4:00 p.m., Eastern Time. See SUPPLEMENTARY INFORMATION for details.

ADDRESSES: The meeting will be held at the American Institute of 
Architects, 1735 New York Ave. NW., Washington, DC 20006.

FOR FURTHER INFORMATION CONTACT: Allan Friedman, National 
Telecommunications and Information Administration, U.S. Department of 
Commerce, 1401 Constitution Avenue NW., Room 4725, Washington, DC 
20230; telephone: (202) 482-4281; email: afriedman@ntia.doc.gov. Please 
direct media inquiries to NTIA's Office of Public Affairs: (202) 482-
7002; email: press@ntia.doc.gov.

SUPPLEMENTARY INFORMATION: 
    Background: On March 19, 2015, the National Telecommunications and 
Information Administration, working with the Department of Commerce's 
Internet Policy Task Force (IPTF), issued a Request for Comment to 
``identify substantive cybersecurity issues that affect the digital 
ecosystem and digital economic growth where broad consensus, 
coordinated action, and the development of best practices could 
substantially improve security for organizations and consumers.'' \1\ 
This Request built on earlier work from the Department, including the 
2011 Green Paper Cybersecurity, Innovation, and the Internet 
Economy,\2\ as well as comments the Department had received on related 
issues.\3\ On July 9, 2015, after reviewing the comments, NTIA 
announced that the first issue to be addressed would be ``collaboration 
on vulnerability research disclosure,'' \4\ and subsequently announced 
that the first meeting of a multistakeholder process on this topic 
would be held on September 29, 2015, and subsequent meetings were 
convened on December 2, 2015, and April 8, 2016.\5\
---------------------------------------------------------------------------

    \1\ U.S. Department of Commerce, Internet Policy Task Force, 
Request for Public Comment, Stakeholder Engagement on Cybersecurity 
in the Digital Ecosystem, 80 FR 14360, Docket No. 150312253-5253-01 
(Mar. 19, 2015), available at: http://www.ntia.doc.gov/files/ntia/publications/cybersecurity_rfc_03192015.pdf.
    \2\ U.S. Department of Commerce, Internet Policy Task Force, 
Cybersecurity, Innovation, and the Internet Economy (June 2011) 
(Green Paper), available at: http://www.nist.gov/itl/upload/Cybersecurity_Green-Paper_FinalVersion.pdf.
    \3\ See Comments Received in Response to Federal Register Notice 
Developing a Framework for Improving Critical Infrastructure 
Cybersecurity, Docket No. 140721609-4609-01, available at: http://csrc.nist.gov/cyberframework/rfi_comments_10_2014.html.
    \4\ NTIA, Enhancing the Digital Economy Through Collaboration on 
Vulnerability Research Disclosure (July 9, 2015), available at: 
http://www.ntia.doc.gov/blog/2015/enhancing-digital-economy-through-collaboration-vulnerability-research-disclosure.
    \5\ NTIA, Cybersecurity Vulnerabilities, http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities.
---------------------------------------------------------------------------

    Matters To Be Considered: The November 7, 2016 meeting is a 
continuation of a series of NTIA-convened multistakeholder discussions 
concerning collaboration on vulnerability disclosure. Stakeholders will 
engage in an open, transparent, consensus-driven process to develop 
voluntary principles guiding the collaboration between vendors and 
researchers about vulnerability information. Stakeholders will review 
the work of the ongoing working groups, and identify strategies for 
maximizing the impact of stakeholder outputs. More information about 
stakeholders' work is available at: http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities.
    Time and Date: NTIA will convene a meeting of the multistakeholder 
process to promote collaboration on vulnerability research disclosure 
on November 7, 2016, from 12:00 p.m. to 4:00 p.m., Eastern Time. The 
meeting date and time are subject to change. Please refer to NTIA's Web 
site, http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities, for the most current 
information.
    Place: The meeting will be held at the American Institute of 
Architects, 1735 New York Ave. NW., Washington, DC 20006. The location 
of the meeting is subject to change. Please refer to NTIA's Web site, 
http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities, for the most current 
information.
    Other Information: The meeting is open to the public and the press. 
The meeting is physically accessible to people with disabilities. 
Requests for sign language interpretation or other auxiliary aids 
should be directed to Allan Friedman at (202) 482-4281 or 
afriedman@ntia.doc.gov at least seven (7) business days prior to the 
meeting. The meeting will also be webcast. Requests for real-time 
captioning of the webcast or other auxiliary aids should be directed to 
Allan Friedman at (202) 482-4281 or afriedman@ntia.doc.gov at least 
seven (7) business days prior to the meeting. There will be an 
opportunity for stakeholders viewing the webcast to participate 
remotely in the meeting through a moderated conference bridge, 
including polling functionality. Access details for the meeting are 
subject to change. Please refer to NTIA's Web site, http://www.ntia.doc.gov/other-publication/2015/multistakeholder-process-cybersecurity-vulnerabilities, for the most current information.

    Dated: October 21, 2016.
Kathy D. Smith,
Chief Counsel, National Telecommunications and Information 
Administration.
[FR Doc. 2016-25944 Filed 10-26-16; 8:45 am]
 BILLING CODE 3510-60-P