Multistakeholder Process on Promoting Software Component Transparency, 38602-38603 [2019-16891]

Download as PDF jspears on DSK3GMQ082PROD with NOTICES 38602 Federal Register / Vol. 84, No. 152 / Wednesday, August 7, 2019 / Notices collaborating with federal, state and local government, and industry leaders working to advance smart city and broadband initiatives designed to attract new employers, create quality jobs, improve educational opportunities, increase health outcomes and advance public safety. BroadbandUSA convenes workshops on a regular basis to bring stakeholders together to discuss ways to improve broadband policies, share best practices, and connect state and local stakeholders to other federal agencies and funding sources for the purpose of expanding broadband infrastructure and adoption throughout America. Experts from NTIA’s BroadbandUSA program are available to provide technical assistance and to connect stakeholders with additional resources, such as best practices, guides and program models. NTIA’s BroadbandUSA team convenes events around the country to bring together government, industry and non-profit personnel working to expand broadband connectivity and improve digital inclusion and workforce skills. These webinars are among the events BroadbandUSA uses to share broadband information with the public, broadband stakeholders, tribal, local and state governments and federal programs. Details on specific webinar topics and webinar registration information will be posted on the BroadbandUSA website, https://broadbandusa.ntia.doc.gov under Events. These webinars are subject to change. Webinar time changes will be posted on the BroadbandUSA website, https:// broadbandusa.ntia.doc.gov under Events, at least thirty days in advance of the webinar. Any webinar cancellation will also be posted on the same website. Any date changes will be published in a new Federal Register notice and posted on the website. The presentation, transcript, and recording of each webinar will be posted on the BroadbandUSA website within 7 days following the live webinar. The public is invited to participate in these webinars. General questions and comments are welcome at any time during webinars via email to BroadbandUSAwebinars@ntia.gov. The webinars are open to the public and press. Pre-registration is recommended. NTIA asks each registrant to provide their first and last name, city, state, zip code, job title, organization and email address for both registration purposes and to receive any updates on the BroadbandUSA program via email at BroadbandUSA@ntia.gov. Information on webinar content and how to register for one or more webinars will be available on NTIA’s website at https:// VerDate Sep<11>2014 16:49 Aug 06, 2019 Jkt 247001 broadbandusa.ntia.doc.gov under Events. Individuals requiring accommodations, such as sign language interpretation or other ancillary aids, are asked to notify the NTIA contact listed above at least seven (7) business days before the meeting. Dated: August 2, 2019. Kathy Smith, Chief Counsel, National Telecommunications and Information Administration. [FR Doc. 2019–16890 Filed 8–6–19; 8:45 am] BILLING CODE 3510–60–P DEPARTMENT OF COMMERCE National Telecommunications and Information Administration Multistakeholder Process on Promoting Software Component Transparency National Telecommunications and Information Administration, U.S. Department of Commerce. ACTION: Notice of open meeting. AGENCY: The National Telecommunications and Information Administration (NTIA) will convene a meeting of a multistakeholder process on promoting software component transparency on September 5, 2019. DATES: The meeting will be held on September 5, 2019, from 10:00 a.m. to 4:00 p.m., Eastern Time. ADDRESSES: The meeting will be held at the American Institute of Architects, 1735 New York Ave. NW, Washington, DC 20006. FOR FURTHER INFORMATION CONTACT: Allan Friedman, National Telecommunications and Information Administration, U.S. Department of Commerce, 1401 Constitution Avenue NW, Room 4725, Washington, DC 20230; telephone: (202) 482–4281; email: afriedman@ntia.doc.gov. Please direct media inquiries to NTIA’s Office of Public Affairs: (202) 482–7002; email: press@ntia.doc.gov. SUPPLEMENTARY INFORMATION: Background: This National Telecommunications and Information Administration cybersecurity multistakeholder process focuses on promoting software component transparency. Most modern software is not written completely from scratch, but includes existing components, modules, and libraries from the open source and commercial software world. Modern development practices such as code reuse, and a dynamic IT marketplace with acquisitions and mergers, make it challenging to track the use of software SUMMARY: PO 00000 Frm 00016 Fmt 4703 Sfmt 4703 components. The Internet of Things compounds this phenomenon, as new organizations, enterprises, and innovators take on the role of software developer to add ‘‘smart’’ features or connectivity to their products. While the majority of libraries and components do not have known vulnerabilities, many do, and the sheer quantity of software means that some software products ship with vulnerable or out-ofdate components. The first meeting of this multistakeholder process was held on July 19, 2018, in Washington, DC.1 Stakeholders presented multiple perspectives, and identified several inter-related work streams: Understanding the Problem, Use Cases and State of Practice, Standards and Formats, and Healthcare Proof of Concept. Since then, stakeholders have been discussing key issues and developing products such as guidance documents. NTIA acts as the convener, but stakeholders drive the outcomes. Success of the process will be evaluated by the extent to which broader findings on software component transparency are implemented across the ecosystem. The main objectives of the September 5, 2019, meeting are to review drafts provided by the working groups, discuss how they complement each other, and hear feedback from the broader stakeholder community. Stakeholders will also identify next steps in this effort, how progress can be made on extending the basic model, collecting tooling, and promoting awareness and adoption of stakeholder work. More information about stakeholders’ work is available at: https://www.ntia.doc.gov/ SoftwareTransparency. Time and Date: NTIA will convene the next meeting of the multistakeholder process on Software Component Transparency on September 5, 2019, from 10:00 a.m. to 4:00 p.m. Eastern Time. Please refer to NTIA’s website, https://www.ntia.doc.gov/ SoftwareTransparency, for the most current information. Place: The meeting will be held at the American Institute of Architects, 1735 New York Ave. NW, Washington, DC 20006. The location of the meeting is subject to change. Please refer to NTIA’s website, https://www.ntia.doc.gov/ SoftwareTransparency, for the most current information. Other Information: The meeting is open to the public and the press on a first-come, first-served basis. Space is limited. 1 Notes, presentations, and a video recording of the July 19, 2018, kickoff meeting are available at: https://www.ntia.doc.gov/SoftwareTransparency. E:\FR\FM\07AUN1.SGM 07AUN1 Federal Register / Vol. 84, No. 152 / Wednesday, August 7, 2019 / Notices The meeting is physically accessible to people with disabilities. Requests for sign language interpretation or other auxiliary aids should be directed to Allan Friedman at (202) 482–4281 or afriedman@ntia.doc.gov at least seven (7) business days prior to each meeting. The meetings will also be webcast. Requests for real-time captioning of the webcast or other auxiliary aids should be directed to Allan Friedman at (202) 482–4281 or afriedman@ntia.doc.gov at least seven (7) business days prior to each meeting. There will be an opportunity for stakeholders viewing the webcast to participate remotely in the meetings through a moderated conference bridge, including polling functionality. Access details for the meetings are subject to change. Please refer to NTIA’s website, https:// www.ntia.doc.gov/ SoftwareTransparency, for the most current information. Dated: August 2, 2019. Kathy Smith, Chief Counsel, National Telecommunications and Information Administration. [FR Doc. 2019–16891 Filed 8–6–19; 8:45 am] BILLING CODE 3510–60–P DEPARTMENT OF DEFENSE Office of the Secretary Defense Business Board; Notice of Federal Advisory Committee Meeting Office of the Chief Management Officer, Department of Defense. ACTION: Notice of Federal Advisory Committee meeting. AGENCY: The Department of Defense (DoD) is publishing this notice to announce that the following Federal Advisory Committee meeting of the Defense Business Board (‘‘the Board’’) will take place. DATES: Closed to the public Wednesday, August 7, 2019 from 7:55 a.m. to 3 p.m. ADDRESSES: The closed meeting will be in Room 3E869 in the Pentagon, Washington, DC. FOR FURTHER INFORMATION CONTACT: Roma Laster, (703) 695–7563 (Voice), (703) 614–4365 (Facsimile), roma.k.laster.civ@mail.mil (Email). Mailing address is Defense Business Board, 1155 Defense Pentagon, Room 5B1088A, Washington, DC 20301–1155. Website: http://dbb.defense.gov/. The most up-to-date changes to the meeting agenda can be found on the website. SUPPLEMENTARY INFORMATION: Due to circumstances beyond the control of the Department of Defense (DoD) and the jspears on DSK3GMQ082PROD with NOTICES SUMMARY: VerDate Sep<11>2014 16:49 Aug 06, 2019 Jkt 247001 Designated Federal Officer, the Defense Business Board was unable to provide public notification required by 41 CFR 102–3.150(a) concerning the August 7, 2019 meeting of the Defense Business Board. Accordingly, the Advisory Committee Management Officer for the Department of Defense, pursuant to 41 CFR 102–3.150(b), waives the 15calendar day notification requirement. This meeting is being held under the provisions of the Federal Advisory Committee Act (FACA) (5 U.S.C., Appendix), the Government in the Sunshine Act (5 U.S.C. 552b), and 41 CFR 102–3.140 and 102–3.150. Purpose of the Meeting: To obtain, review, and evaluate information related to the Board’s mission in advising the Secretary of Defense on overall DoD management and governance on (a) issues central to strategic DoD planning; (b) policy implications of U.S. force structure and force modernization and on DoD’s ability to execute U.S. defense strategy; (c) U.S. regional defense policies; and (d) other research and analysis of topics raised by the Secretary of Defense, Deputy Secretary of Defense, or Chief Management Officer (CMO) to allow the Board to provide informed, independent advice reflecting an outside private sector perspective of proven and effective best practices that can be applied to the DoD. Agenda: The meeting will begin on August 7, 2019 at 7:55 a.m. with opening remarks by Ms. Roma Laster, the Designated Federal Officer, and Mr. Atul Vashistha, Interim Board Chairman. The day’s presentations will begin with a series of panel discussions featuring DoD officials and private sector experts that will inform the Board’s advice and recommendations to be provided on the CMO’s ongoing reform efforts. Panels scheduled are: —Human Capital and Talent Management Reform Panel with senior executives from Goldman Sachs, Activision, Ernst & Young, and Yale School of Management along with representatives from the Office of the Under Secretary of Defense for Acquisitions and Sustainment, Office of the Under Secretary of Defense for Personnel and Readiness, and the Office of the Deputy Assistant Secretary of Defense for Civilian Personnel Policy. —Data Management Strategy Reform Panel with a senior executive from Activision along with representatives from the Office of the Under Secretary of Defense (Comptroller), DoD’s Office of the Chief Information Officer, DoD’s Office of the Chief Data Officer, and the Office of CMO Business Systems. PO 00000 Frm 00017 Fmt 4703 Sfmt 4703 38603 —Shared Services Reform Panel with senior executives from PepsiCo and United Parcel Service along with representatives from the Defense Logistics Agency, Defense Counterintelligence and Security Agency, and Washington Headquarters Service. Panel participants will provide information on current issues and challenges, and engage in discussions involving commercial or financial information that is privileged or confidential. Mr. James Baker, Director, Office of Net Assessment (ONA) and Mr. David Ochmanek will provide a classified briefing on current and future strategic challenges to DoD. The meeting will adjourn at 3:00 p.m. Meeting Accessibility: In accordance with section 10(d) of the FACA and 41 CFR 102–3.155, the DoD has determined that the Board’s meeting will be closed to the public. Specifically, the CMO, after consultation with the DoD Office of General Counsel, has determined in writing that the meeting will be closed as it will consider commercial or financial information obtained from a person that is privileged or confidential covered by 5 U.S.C. 552b(4), as well as classified information covered by 5 U.S.C. 552b(c)(1). The 5 U.S.C. 552b(4) determination is based on the consideration that it is expected panel discussions will involve the sharing of commercial or financial information that is privileged or confidential by the private sector participants. The 5 U.S.C. 552b(c)(1) determination is based on the consideration that the ONA briefing is classified and it is expected that discussions throughout the briefing will involve classified matters of national security concern. Such privileged and proprietary information and classified material are so intertwined with the unclassified material that the sessions cannot reasonably be segregated into separate discussions without defeating the effectiveness and meaning of the overall meeting. To permit the meeting to be open to the public would preclude any substantive discussion of such matters and would serve to greatly diminish the ultimate utility of the Board’s findings and recommendations to the Secretary of Defense, the Deputy Secretary of Defense, and to the CMO. Written Statements: Written comments may be submitted to the Designated Federal Officer via email to mailbox address: osd.pentagon.odam.mbx.defensebusiness-board@mail.mil in either Adobe Acrobat or Microsoft Word format. Please note that because the Board operates under the provisions of E:\FR\FM\07AUN1.SGM 07AUN1

Agencies

[Federal Register Volume 84, Number 152 (Wednesday, August 7, 2019)]
[Notices]
[Pages 38602-38603]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2019-16891]


-----------------------------------------------------------------------

DEPARTMENT OF COMMERCE

National Telecommunications and Information Administration


Multistakeholder Process on Promoting Software Component 
Transparency

AGENCY: National Telecommunications and Information Administration, 
U.S. Department of Commerce.

ACTION: Notice of open meeting.

-----------------------------------------------------------------------

SUMMARY: The National Telecommunications and Information Administration 
(NTIA) will convene a meeting of a multistakeholder process on 
promoting software component transparency on September 5, 2019.

DATES: The meeting will be held on September 5, 2019, from 10:00 a.m. 
to 4:00 p.m., Eastern Time.

ADDRESSES: The meeting will be held at the American Institute of 
Architects, 1735 New York Ave. NW, Washington, DC 20006.

FOR FURTHER INFORMATION CONTACT: Allan Friedman, National 
Telecommunications and Information Administration, U.S. Department of 
Commerce, 1401 Constitution Avenue NW, Room 4725, Washington, DC 20230; 
telephone: (202) 482-4281; email: [email protected]. Please direct 
media inquiries to NTIA's Office of Public Affairs: (202) 482-7002; 
email: [email protected].

SUPPLEMENTARY INFORMATION: 
    Background: This National Telecommunications and Information 
Administration cybersecurity multistakeholder process focuses on 
promoting software component transparency. Most modern software is not 
written completely from scratch, but includes existing components, 
modules, and libraries from the open source and commercial software 
world. Modern development practices such as code reuse, and a dynamic 
IT marketplace with acquisitions and mergers, make it challenging to 
track the use of software components. The Internet of Things compounds 
this phenomenon, as new organizations, enterprises, and innovators take 
on the role of software developer to add ``smart'' features or 
connectivity to their products. While the majority of libraries and 
components do not have known vulnerabilities, many do, and the sheer 
quantity of software means that some software products ship with 
vulnerable or out-of-date components.
    The first meeting of this multistakeholder process was held on July 
19, 2018, in Washington, DC.\1\ Stakeholders presented multiple 
perspectives, and identified several inter-related work streams: 
Understanding the Problem, Use Cases and State of Practice, Standards 
and Formats, and Healthcare Proof of Concept. Since then, stakeholders 
have been discussing key issues and developing products such as 
guidance documents. NTIA acts as the convener, but stakeholders drive 
the outcomes. Success of the process will be evaluated by the extent to 
which broader findings on software component transparency are 
implemented across the ecosystem.
---------------------------------------------------------------------------

    \1\ Notes, presentations, and a video recording of the July 19, 
2018, kickoff meeting are available at: https://www.ntia.doc.gov/SoftwareTransparency.
---------------------------------------------------------------------------

    The main objectives of the September 5, 2019, meeting are to review 
drafts provided by the working groups, discuss how they complement each 
other, and hear feedback from the broader stakeholder community. 
Stakeholders will also identify next steps in this effort, how progress 
can be made on extending the basic model, collecting tooling, and 
promoting awareness and adoption of stakeholder work. More information 
about stakeholders' work is available at: https://www.ntia.doc.gov/SoftwareTransparency.
    Time and Date: NTIA will convene the next meeting of the 
multistakeholder process on Software Component Transparency on 
September 5, 2019, from 10:00 a.m. to 4:00 p.m. Eastern Time. Please 
refer to NTIA's website, https://www.ntia.doc.gov/SoftwareTransparency, 
for the most current information.
    Place: The meeting will be held at the American Institute of 
Architects, 1735 New York Ave. NW, Washington, DC 20006. The location 
of the meeting is subject to change. Please refer to NTIA's website, 
https://www.ntia.doc.gov/SoftwareTransparency, for the most current 
information.
    Other Information: The meeting is open to the public and the press 
on a first-come, first-served basis. Space is limited.

[[Page 38603]]

    The meeting is physically accessible to people with disabilities. 
Requests for sign language interpretation or other auxiliary aids 
should be directed to Allan Friedman at (202) 482-4281 or 
[email protected] at least seven (7) business days prior to each 
meeting. The meetings will also be webcast. Requests for real-time 
captioning of the webcast or other auxiliary aids should be directed to 
Allan Friedman at (202) 482-4281 or [email protected] at least 
seven (7) business days prior to each meeting. There will be an 
opportunity for stakeholders viewing the webcast to participate 
remotely in the meetings through a moderated conference bridge, 
including polling functionality. Access details for the meetings are 
subject to change. Please refer to NTIA's website, https://www.ntia.doc.gov/SoftwareTransparency, for the most current 
information.

    Dated: August 2, 2019.
Kathy Smith,
Chief Counsel, National Telecommunications and Information 
Administration.
[FR Doc. 2019-16891 Filed 8-6-19; 8:45 am]
 BILLING CODE 3510-60-P