Source: US Government research organizations
Overview of Agenda
This workshop focuses on questions around updating Foundational Cybersecurity Activities for IoT Device Technology Manufacturers (NIST IR 8259). The planned updates incorporate a greater emphasis on
- Taking a product viewpoint rather than a device-centric approach
- Incorporating risk analysis in determining needed cybersecurity capabilities in the product
- Greater emphasis on maintenance and end-of-support / end of life considerations
- Applicability of IoT guidance to industrial contexts
- Cybersecurity considerations around data management needed to support privacy goals
Agenda
- 8:30 – 9:00 AM Registration/Check-in
- 9:00 – 9:15 AM Welcome (Katerina Megas)
- 9:15 – 10:00 AM Morning Keynote Presentation (TBD)
- 10:00 – 10:55 AM NIST IR 8259 Revision 1 Preliminary Update: Session 1 (Mike Fagan)
Updates to Activity 1: Identify Expected Customers and Use Cases and Activity 2: Research Customer Cybersecurity Needs and Goals
Presentation (15 minutes)
Q&A and Discussion (40 minutes)
- 10:55 – 11:00 AM Break
- 11:00 – 11:55 AM NIST IR 8259 Revision 1 Preliminary Update: Session 2 (Mike Fagan)
Updates to Activity 3: Determine How to Address Customer Needs and Goals and Activity 4: Plan for Adequate Support of Customers Needs and Goals
Presentation (15 minutes)
Q&A and Discussion (40 minutes)
- 11:55 AM – 1:00 PM Lunch Break
- 1:00 – 1:45 PM Afternoon Keynote Presentation (TBD)
- 1:45 – 2:45 PM NIST IR 8259 Revision 1 Preliminary Update: Session 3 (Mike Fagan)
Updates to Activity 5: Define Approaches for Communicating to Customers and Activity 6: Decide What to Communicate to Customers and How to Communicate it
Presentation (15 minutes)
Q&A and Discussion (45 minutes)
- 2:45 – 3:00 Break
- 3:00 -3:15 PM Presentation of Potential Future Updates for Next Draft of NISTIR 8259 Revision 1 (Mike Fagan)
- 3:15 – 3:45 PM Open Q&A and Discussion
- 3:45 – 4:00 PM Closing Remarks (Mike Fagan)