Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · BILL · 116th Congress · H.R. 1668 (Reported in House) — To leverage Federal Government procurement power to encourage increased cybersecurity for Internet of Things devices,... · Sec. 4

Sec. 4. Security standards for use of covered devices by the Federal Government

320 words·~1 min read·/bill/116/hr/1668/rh/section-4

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

Not later than 6 months after the date on which the report under section 3 is completed, the Director of the Institute shall develop under section 20 of the National Institute of Standards and Technology Act ( 15 U.S.C. 278g-3 ), and submit to the Director of OMB, guidelines on— the appropriate use and management by the agencies of covered devices owned or controlled by the agencies; and minimum information security requirements for managing security vulnerabilities associated with such devices.
In developing the guidelines submitted under paragraph (1), the Director of the Institute shall— consider relevant standards and best practices developed by the private sector, agencies, and public-private partnerships; and ensure that such guidelines are consistent with the considerations published in the report described under section 3. Not later than 180 days after the date on which the Director of the Institute completes the development of the guidelines required under subsection (a), the Director of OMB, in consultation with the Director of the Cybersecurity and Infrastructure Security Agency of the Department of Homeland Security, shall— promulgate standards on the basis of the guidelines submitted under subsection
(a)pertaining to covered devices owned or controlled by agencies, except those considered national security systems as defined by section 3552(b)(6) of title 44, United States Code; and ensure such standards are consistent with the information security requirements under subchapter II of chapter 35 of title 44, United States Code. Not later than 5 years after the date on which the Director of OMB promulgates the standards under paragraph (1), and not less frequently than once every 5 years thereafter, the Director of OMB, in consultation with and the Director of the Institute and the Director of the Cybersecurity and Infrastructure Security Agency of the Department of Homeland Security, shall— review such standards; and revise such standards as appropriate. The Federal Acquisition Regulation shall be revised to implement any standard promulgated under subsection (b).
Connectionstraces to 1
Traces to 1 document
Citation graph
cites case law
Sec. 4
Security standards for use of covered devices by the Federal Government
U.S.C.§ 278g–3
Cites 1Cited by 0 across 0 sources
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.