U.S. national and economic security depends on the reliable functioning of critical infrastructure. In recognition of that dependence, President Obama issued an executive order in February 2013 to increase our critical infrastructure's capabilities to manage cyber risk; the order focuses on information sharing, privacy, and the adoption of cybersecurity practices. In support of this goal, the order directed the U.S. Department of Commerce's National Institute of Standards and Technology (NIST) to convene industry and other stakeholders to develop a voluntary framework for reducing cyber risks.
Today we are pleased to announce the start of the 45-day public comment period for the Preliminary Cybersecurity Framework. This announcement represents an important milestone in this collaborative effort to develop the framework, and the feedback received during this period will inform the final version.