Cyber Supply Chain Risk Management (C-SCRM): Validating the Integrity of Server and Client Devices

On Tuesday, September 10, 2019, NIST’s National Cybersecurity Center of Excellence Supply Chain Assurance project team is having an Industry Day, starting at 8:30am. The purpose of this Industry Day is to identify the issues and challenges of Cyber Supply Chain Risk Management (C-SCRM) in enterprises as input to a potential NCCoE demonstration project. NIST starts the day by presenting its preliminary plans for this project. Then, there will be short presentations from a few stakeholders, sharing their views of the challenges enterprises face when verifying that their purchased computing devices’ internal components are genuine and have not been altered during the manufacturing and distribution process or after sale from a retailer. Each stakeholder will have 15 minutes to share their thoughts and high level approach for mitigating these challenges. In order to attend this event, attendees must register here: https://www.nccoe.nist.gov/events/cyber-supply-chain-risk-management-c-scrm-validating-integrity-server-and-client-devices.