-
Type:
Bug
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: None
-
Component/s: SecuritySC_edits
-
Labels:None
-
Environment:
References
-
Proposal:
-
Resolution:
1.4.2 MQTT Cybersecurity Framework Implementation Tiers reads in part:
*****
External guidance will be helpful, such as information that could be obtained from OASIS Security Assertion Markup Language (SAML), the Federal Information Processing Standards (FIPS), and Payment Card Industry Data Security Standard (PCI DSS).
*****
MQTT Cybersecurity Framework reads in part:
*****
Following the initial steps the energy provider has developed a Framework Core informed by several recommendation publications such as NIST Special publication 800-26 (Security Self-Assessment Guide for Information Technology Systems" for advice on how to manage IT security and ISO 15408 (Evaluation criteria for IT security) to test the security of the bus architecture.
*****
None of the five (5) documents/standards cited in these two sections appear under references. For the convenience of the reader, if no other reason, these should appear under references with appropriate links/citations.