The National Institute of Standards and Technology (NIST) has released the second draft of the proposed update to the Framework for Improving Critical Infrastructure Cybersecurity.

This second draft update aims to clarify, refine, and enhance the Cybersecurity Framework, amplifying its value and making it easier to use. The updated version reflects comments received to date, including those from a public review process launched in January 2017 and a workshop in May 2017.

NIST originally published the Framework for Improving Critical Infrastructure Cybersecurity Version 1.0 (Framework Version 1.0) in February 2014. In addition to the updates to the Framework Version 1.1, NIST also published a draft update to the Framework’s companion Roadmap.

Public comments for the latest draft of Cybersecurity Framework version 1.1 and the draft Roadmap are due to NIST by 11:59 PM on Friday, January 19, 2018.

NIST anticipates finalizing Cybersecurity Framework version 1.1 in Spring 2018.