WASHINGTON -- The National Institute of Standards and Technology has released a new publication aimed at helping federal agencies develop a set of "repeatable and commercially reasonable" supply-chain assurance methods and practices.
NISTIR 7622 – Notional Supply Chain Risk Management Practices for Federal Information Systems is intended to provide a wide array of practices that, when implemented, will help mitigate supply chain risk to federal information systems.
The document should help buyers with transparency and visibility, practices that are becoming more widely emphasized as counterfeit components have become more pronounced.
NIST, an agency within the US Department of Commerce, has made the publication available here.