@article{oai:fit.repo.nii.ac.jp:00000793,
 author = {橘, 雄介},
 journal = {福岡工業大学総合研究機構研究所所報},
 month = {Oct},
 note = {application/pdf, The first session of the 117th Congress (2021-2022) was a year of significant change for supply chain security in two ways. The supply chain security community made progress on the revision of NIST SP 800-161, the basic document in the area of supply chain security, and on the rapid development of key policies in response to major security incidents, such as the Colonial Pipeline incident and the Log4j vulnerability incident. On the other hand, there have been the following room to do. The Cybersecurity Maturity Model Certification (CMMC), a framework for mandatory information security measures for contractors in the Department of Defense, was temporarily suspended. And a bill that would establish a new information sharing framework between the public and private sectors regarding security incidents did not reach an agreement. Those may indicate the difficulty of making information security management mandatory, which was originally based on the voluntary approach., 論文(Atticle)},
 pages = {63--74},
 title = {米国サイバー・サプライチェーン・セキュリティ法政策の動向 －第117議会第1会期（2021-2022年）－},
 volume = {5},
 year = {2022}
}