NIST as Enforcer? House Committee Passes Bill to Expand Agency’s Responsibilities

Republicans on the House Science Committee forwarded legislation Wednesday that would vastly increase the operational responsibilities of the government’s cybersecurity standards agency and task that body with auditing other federal agencies’ cyber protections.

The NIST Cybersecurity Framework, Assessment and Auditing Act passed the committee, 19-14, over the objection of most Democrats who argued the bill was outside the expertise of the National Institute of Standards and Technology, which views its role as advisory and does not customarily conduct audits.

Continue reading: