An interim rule released this week by the Pentagon raises issues about the transparency around audit results from assessors and who will have access to the information under the Defense Department's landmark cyber certification program, according to supply chain attorneys. The rule sets up the implementation of the Cybersecurity Maturity Model Certification program and a new set of requirements for contractors who want to do business with DOD, through the National Institute of Standards and Technology Special Publication 800-171 and...
