Your one-stop web resource providing safety and security information to manufacturers

Standards

TÜV Rheinland Expands Testing Scope

Occupational Safety and Health Administration (OSHA) expanded its scope of recognition for TÜV Rheinland of North America, Inc. as a Nationally Recognized Testing Laboratory (NRTL). Effective June 5, the expanded scope of recognition includes two addit …

NIST Updates Sensitive Information Standard

Additional strategies ended up added to an update of one of the National Institute of Standards and Technology’s (NIST) information security documents that helps protect sensitive information stored in computers supporting critical government programs …

OSHA Updates Safety, Health Standards

A final rule released that revises 14 provisions in the recordkeeping, general industry, maritime, and construction standards that may be confusing, outdated, or unnecessary, said officials at the Occupational Safety and Health Administration (OSHA). T …

FIPS Encryption Update Speeds Devices to Market

Source: N. Hanacek/NIST It could be less time-consuming for electronic device manufacturers to bring their wares to U.S. and international markets as a result of new requirements issued by the National Institute of Standards and Technology (NIST). That …

UL Panel Halts UL Security Standard

An Underwriters Laboratories (UL) appeals panel halted a cybersecurity standard created by its own organization. This UL appeals panel instead ruled in favor of the International Society of Automation’s (ISA) appeal against UL 2900-2-2, Standard for So …

EPA OKs Hazardous Waste Pharmaceutical Standards

The U.S. Environmental Protection Agency (EPA) finalized its standards for managing hazardous waste pharmaceuticals. The updated standards, “Management Standards for Hazardous Waste Pharmaceuticals and Amendment to the Hazardous Waste Listing for Nicot …

NIST Framework Used to Secure Railcar Purchase

National Institute of Standards and Technology’s (NIST) cybersecurity framework will be put to the test as Washington, D.C., area’s Metro system will now use the standard to test software and hardware proposed for its new project. This move came after …

ISA Adopts FDT Digital Transformation Standard

In a move to enable a standardized enterprise-wide client/server integration supporting digital transformation, FDT 2.0 technology has been fully adopted as an ISA/ANSI American standard. The standard will enhance the integration and application of var …

UN Commission Integrates IEC Security Standard

The United Nations Economic Commission for Europe (UNECE) will integrate the IEC 62443 series of standards into its forthcoming Common Regulatory Framework on Cybersecurity (CRF). The CRF will serve as an official UN policy position statement for Europ …

Performance Tests for Drones, Pilots

An emergency response drone approaches a bucket-shaped target on the NIST performance test course. The capabilities of the robot and the skills of its pilot can be evaluated using the standardized system.Source: NIST Tracking the spread of a wildfire, …

New Spec Integrates into OPC UA

CC-Link Partner Association (CLPA) completed a companion specification with the OPC Foundation to simplify the tasks of information transfer between plant systems and to provide high connectivity and interoperability. The specification ended up based o …

NY Sen. Calls for Stiffer Rail Oil Safety Standards

A rule establishing volatility standards for crude oil shipped by rail has to potential to become legislation after a New York senator said he wants federal regulators to finalize a plan. Sen. Charles Schumer, D-NY, said federal data show shipments of …

PCI Security Standard Updated

PCI DSS version 3.2.1 replaces version 3.2 to account for effective dates and SSL/early TLS migration deadlines that have passed. No new requirements are added in PCI DSS 3.2.1. RELATED STORIES Email Encryption Standards Very Hackable Risk Management F …

Email Encryption Standards Very Hackable

The two most common email encryption standards were vulnerable to attacks, researchers found. The attack, called Efail, proved successful in 25 out of 35 tested email programs using the S/MIME encryption standard and in 10 out of 28 tested programs usi …

Risk Management Framework Updated

NIST released a draft update to its Risk Management Framework.Photo by oatawa at Shutterstock There is a draft update to the Risk Management Framework (RMF) that can help organizations more easily protect the nation’s critical assets from cybersecurity …

Cyber Resiliency Guidelines from NIST

When it comes to security a manufacturing enterprise network, the word resiliency has been bandied about over the past year or so. It only makes sense because the idea of intruders succeeding in getting past a secured perimeter means defenders need to …

Cybersecurity Framework Version 1.1 Released

Version 1.1 of the Cybersecurity Framework just released. The Framework for Improving Critical Infrastructure Cybersecurity is more widely known as the Cybersecurity Framework. RELATED STORIES Pipeline Firms Hit; Gas Still Flowing Cyber is ‘Core’ to Di …

IIoT Best Practices Guidance

A new guidance published that can offer an overview of starting off security and the countermeasures needed to secure the industrial Internet of Things (IIoT). Published by the Industrial Internet Consortium (IIC), the paper, written by Steve Hanna fro …

Draft Report on IoT Standardization

Draft NISTIR 8200, Interagency Report on Status of International Cybersecurity Standardization for the Internet of Things (IoT) is out. The Interagency International Cybersecurity Standardization Working Group (IICS WG) was established to coordinate on …

Systems Security Engineering Publication Update

As the number and intensity of cyber attacks on critical systems in the U.S. continue to grow, the adverse consequences and long-term debilitating effects on our national and economic security continue to be felt by federal agencies, corporations, smal …

Pin It on Pinterest