The Obama administration released guidelines this past week to better protect companies that have an integral part in the infrastructure of the United States. The framework is a good first step for companies to follow to increase their overall security. The problem lies in the fact that it’s a voluntary framework and companies don’t have to adhere to it. The new framework had overall good reception, but some believe it was too watered down to have a good affect. The creators are aware that the document needs more work and say this is just a first draft. The next big step is to get the budget to actually enforce this framework to better secure businesses as well as the public. With the recent breach in Target this is a welcome start to securing the publics data. With the many database breaches that have occurred in the past few years it’s good the government is now trying to set up scaffolding for companies to secure their assets. Large companies although trusted, still make mistakes and follow poor standards when securing information. This kind of awareness is great for business and public alike.
Framework Document: http://www.nist.gov/cyberframework/upload/cybersecurity-framework-021214.pdf