The National Institute of Standards and Technology has released for comment its draft risk-management framework on security and privacy issues related to government information systems, citing a Defense Science Board finding about national security risks from outsourcing information technology services and components to potential foreign adversaries. The draft framework issued on Tuesday is open to public comments through Oct. 31, with NIST targeting December for publication of the updated risk-management framework. The draft framework, which is intended to guide management...