About the Standards Blog
Leading information and standards trade associations to combine to maximize impactPress Release
–February 15, 2019 - The National Information Standards Organization (NISO) and National Federation of Advanced Information Services (NFAIS) have today announced a proposed combination, designed to better serve their members, during a time of rapid change.
The respective boards of NISO and NFAIS have unanimously approved moving ahead with the merger proposal, which is conditional on NFAIS member approval. The merged entity sees significant opportunities for enriched and invigorated programming, delivered in a more efficient and innovative way, to the combined group\'s 250-plus members.
The combined association will be more effective and influential within the community of publishers, information distributors, libraries, government agencies, and technology partners who make up the membership. Participants are expected to see greater benefits, while most organizations who are currently members of both organizations will also see a reduction in dues as a single entity... Full Story
Healthcare safety consortium extends ISA cybersecurity standards to connected medical devicesPress Release
–February 14, 2019 - The Medical Device Innovation, Safety, and Security Consortium (MDISS) has announced it is developing a set of recommended practices and profiles for securing medical systems based on the normative requirements in the widely used ISA/IEC 62443 series of standards for industrial automation and control systems cybersecurity... Full Story
New international standard to reduce cyber-attacks on machineryTim Sandle
–February 13, 2019 - Smart concepts are critical to many Industry 4.0 innovations. However, the advent of digitally controlled machines leads to greater security risks via cyberattacks unless special measures are put in place. The most effective measures concern quality-by-design, that is building in key security concepts at the design and build stage...ISO has introduced a new technical standard: ISO/TR 22100-4 "Safety of machinery - Relationship with ISO 12100 - Part 4: Guidance to machinery manufacturers for consideration of related IT-security (cyber security) aspects"...
The aim of the new standard is to "address aspects on safety of machinery that can be affected by IT-security attacks related to the direct or remote access to, and manipulation of, a safety-related control system(s) by persons for intentional abuse (unintended uses)..." Full Story
Open Process Automation Forum Launches the O-PAS StandardPress Release
–February 12, 2019 - The Open Group has announced the launch of its new O-PAS Standard, Version 1.0, a preliminary standard of The Open Group. Developed by The Open Group Open Process Automation Forum (OPAF), the standard will provide a vendor-neutral reference architecture to enable the construction of scalable, reliable, interoperable and secure process automation systems.
The O-PAS Standard, Version 1.0, is focused on meeting the minimum standard and specification requirements for federated process automation systems, using an open and interoperable reference architecture. A key tenet of the Standard is to adopt "fit-or-purpose" industry standards that exist in the marketplace today... Full Story
Let's talk about IoT device securityKaterina Megas
–February 11, 2019 - NIST\'s Cybersecurity for the Internet of Things (IoT) Program is beginning stakeholder engagement on identifying a core set of cybersecurity capabilities that could be a baseline for IoT devices, and we want to hear from you!
In September 2018, NIST released draft NIST Internal Report (NISTIR) 8228, a publication to help federal agencies manage IoT cybersecurity and privacy risks. Over the course of related stakeholder engagement, comments received during the NISTIR 8228 public comment period, and the Report to the President on Enhancing the Resilience of the Internet and Communications Ecosystem Against Botnets and Other Automated, Distributed Threats, NIST identified a critical gap area in guidance on baselines for IoT device cybersecurity...
NIST welcomes feedback from all stakeholders on preliminary ideas for developing baselines that can be used by IoT device manufacturers, and other interested parties to determine baseline pre-market cybersecurity capabilities for devices... Full Story
ETSI unveils new standard for NFV deployment templatesMike Robuck
–February 8, 2019 - While there are several anchors on the adoption of NFV architectures, standardizing VNFs has been one of the weightier issues.
Last week the European Telecommunications Standards Institute announced it had published the first version of a specification that it said will standardize the structure and formats of virtual network functions (VNFs)... Full Story
ETSI Unveils Cybersecurity Specification to Secure Sensitive Sunctions in Virtualized EnvironmentRay Sharma
–February 7, 2019 - The ETSI Technical Committee on Cybersecurity (TC CYBER) has just released ETSI TS 103 457, that tackles the challenge of secure storage - where organizations want to protect customer data whilst still using a cloud that is not under their direct control.
Many organizations need to protect this data, but when it is held in a virtual network or cloud, the organization often doesn't have control of this storage solution. TS 103 457 solves this problem, by standardizing an interface between a "secure vault" that is trusted and a cloud that could be anywhere, where such sensitive data is stored in the vault. This allows a sensitive function to exist in a lower security environment, with data held securely... Full Story
NIST Reveals 26 Algorithms Advancing to the Post-Quantum Crypto "Semifinals"
NIST.org –February 5, 2019 - The field has narrowed in the race to protect sensitive electronic information from the threat of quantum computers, which one day could render many of our current encryption methods obsolete.
As the latest step in its program to develop effective defenses, the National Institute of Standards and Technology (NIST) has winnowed the group of potential encryption tools - nown as cryptographic algorithms - down to a bracket of 26. These algorithms are the ones NIST mathematicians and computer scientists consider to be the strongest candidates submitted to its Post-Quantum Cryptography Standardization project, whose goal is to create a set of standards for protecting electronic information from attack by the computers of both tomorrow and today... Full Story
Get Involved: U.S. TAG Participants Sought for ISO Technical Committee on Language Learning Services
–January 24, 2019 - The American National Standards Institute (ANSI), the U.S. member body to the International Organization for Standardization (ISO) is seeking expert participants on behalf of ISO Technical Committee (TC) 232 Working Group (WG) 2 on Education and learning services. All U.S. stakeholder organizations in relevant fields and industries are strongly encouraged to get involved by January 31, 2019.
The WG is planning to review/amend the International Standard, ISO 29991, Language learning services outside formal education-Requirements.
According to ISO, standardization in the field of education and learning services focused on, but not limited to: services; management systems; facilitators; assessments; terminology; ethical conduct. The TC will base its work on market needs, state of the art and feedback taking into account the net benefit of the interested parties and learners with special needs. The TC will also take into account ISO\'s global relevance policy with regard to the parts of the world not directly represented in the TC work... Full Story
ANSI Releases Report, "Advancing U.S. Industry and Competitiveness for 100 Years and the Innovative Future Ahead"
ANSI.org –January 23, 2019 - Highlighting the standardization communityâ€™s tremendous impact on American industries and economic growth, the American National Standards Institute (ANSI) has released a summary report entitled, "Advancing U.S. Industry and Competitiveness for 100 Years and the Innovative Future Ahead."
The document takes a high-level look at some of the recent standards and conformity assessment activities the Institute has led, in collaboration with its members and partners, to drive U.S. competitiveness, innovation, and quality of life in seven key sectors: manufacturing, energy, transportation, healthcare, agriculture, Information and Communication Technologies (ICT), and services.
And a brief timeline of some of the Instituteâ€™s key activities over its 100-year history demonstrates its long-term impact on U.S. economic growth. Full Story