{"description":"Documents matching 'security--internal network security monitoring which requirements'","count":6000,"total_pages":50,"next_page_url":"https://www.federalregister.gov/api/v1/documents?conditions%5Bterm%5D=security--internal+network+security+monitoring+which+requirements&format=json&page=2","results":[{"title":"Critical Infrastructure Protection Reliability Standard CIP-015-1-Cyber Security-Internal Network Security Monitoring","type":"Rule","abstract":"The Federal Energy Regulatory Commission (Commission) approves proposed Reliability Standard CIP-015-1 (Cyber Security--Internal Network Security Monitoring), which the North American Electric Reliability Corporation (NERC), submitted in response to a Commission directive. In addition, the Commission directs NERC to develop certain modifications to proposed Reliability Standard CIP-015-1 to extend internal network security monitoring to include electronic access control or monitoring systems and physical access control systems outside of the electronic security perimeter. The Commission also provides greater clarity about the term CIP-networked environment as it is used in proposed Reliability Standard CIP-015-1.","document_number":"2025-12309","html_url":"https://www.federalregister.gov/documents/2025/07/02/2025-12309/critical-infrastructure-protection-reliability-standard-cip-015-1-cyber-security-internal-network","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-07-02/pdf/2025-12309.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-12309.pdf?1751373912","publication_date":"2025-07-02","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"},{"raw_name":"Federal Energy Regulatory Commission","name":"Federal Energy Regulatory Commission","id":167,"url":"https://www.federalregister.gov/agencies/federal-energy-regulatory-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/167","parent_id":136,"slug":"federal-energy-regulatory-commission"}],"excerpts":"(Cyber <span class=\"match\">Security</span>—<span class=\"match\">Internal</span> <span class=\"match\">Network</span> <span class=\"match\">Security</span> <span class=\"match\">Monitoring</span>), <span class=\"match\">which</span> the North American Electric Reliability Corporation (NERC), submitted in response to a Commission directive. In addition, the Commission directs NERC to develop certain modifications to proposed Reliability Standard CIP-015-1 to extend <span class=\"match\">internal</span> <span class=\"match\">network</span> <span class=\"match\">security</span> <span class=\"match\">monitoring</span> to include electronic access control or <span class=\"match\">monitoring</span> systems and physical access control systems outside of the electronic <span class=\"match\">security</span> perimeter. The Commission also provides greater clarity about the term CIP-<span class=\"match\">networked</span> environment"},{"title":"Critical Infrastructure Protection Reliability Standard CIP-015-1-Cyber Security-Internal Network Security Monitoring","type":"Proposed Rule","abstract":"The Federal Energy Regulatory Commission (Commission) proposes to approve proposed Reliability Standard CIP-015-1 (Cyber Security-- Internal Network Security Monitoring), which the North American Electric Reliability Corporation (NERC), submitted in response to a Commission directive. In addition, the Commission proposes to direct that NERC develop certain modifications to proposed Reliability Standard CIP-015-1 to extend internal network security monitoring to include electronic access control or monitoring systems and physical access control systems outside of the electronic security perimeter.","document_number":"2024-22231","html_url":"https://www.federalregister.gov/documents/2024/09/27/2024-22231/critical-infrastructure-protection-reliability-standard-cip-015-1-cyber-security-internal-network","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-09-27/pdf/2024-22231.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-22231.pdf?1727354733","publication_date":"2024-09-27","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"},{"raw_name":"Federal Energy Regulatory Commission","name":"Federal Energy Regulatory Commission","id":167,"url":"https://www.federalregister.gov/agencies/federal-energy-regulatory-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/167","parent_id":136,"slug":"federal-energy-regulatory-commission"}],"excerpts":"proposed Reliability Standard CIP-015-1 (Cyber <span class=\"match\">Security</span>—<span class=\"match\">Internal</span> <span class=\"match\">Network</span> <span class=\"match\">Security</span> <span class=\"match\">Monitoring</span>), <span class=\"match\">which</span> the North American Electric Reliability Corporation (NERC), submitted in response to a Commission directive. In addition, the Commission proposes to direct that NERC develop certain modifications to proposed Reliability Standard CIP-015-1 to extend <span class=\"match\">internal</span> <span class=\"match\">network</span> <span class=\"match\">security</span> <span class=\"match\">monitoring</span> to include electronic access control or <span class=\"match\">monitoring</span> systems and physical access control systems outside of the electronic <span class=\"match\">security</span> perimeter. \n \n \n DATES: \n Comments are due"},{"title":"Modernizing Security Requirements","type":"Proposed Rule","abstract":"The U.S. Nuclear Regulatory Commission (NRC) is proposing to revise its regulations to modernize security and fitness-for-duty requirements to enhance efficiency, consistent with Executive Order 14300, \"Ordering the Reform of the Nuclear Regulatory Commission.\" The proposed revisions are intended to reduce regulatory burden, where appropriate, while continuing to provide reasonable assurance that safety and security will be adequately maintained at NRC-licensed facilities.","document_number":"2026-12989","html_url":"https://www.federalregister.gov/documents/2026/06/26/2026-12989/modernizing-security-requirements","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-06-26/pdf/2026-12989.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-12989.pdf?1782391523","publication_date":"2026-06-26","agencies":[{"raw_name":"NUCLEAR REGULATORY COMMISSION","name":"Nuclear Regulatory Commission","id":383,"url":"https://www.federalregister.gov/agencies/nuclear-regulatory-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/383","parent_id":null,"slug":"nuclear-regulatory-commission"}],"excerpts":"or diversion of SNM, and includes <span class=\"match\">requirements</span> for <span class=\"match\">security</span> organization, training, response strategies, and contingency planning. \n The regulations in 10 CFR part 95 establish <span class=\"match\">requirements</span> for facility <span class=\"match\">security</span> clearances and the safeguarding of national <span class=\"match\">security</span> information and restricted data. These <span class=\"match\">requirements</span> are intended to ensure that NRC licensees and certificate holders who require access to classified information maintain appropriate <span class=\"match\">security</span> measures in accordance with the National Industrial <span class=\"match\">Security</span> Program. \n The NRC recognizes the"},{"title":"Transparency in Coverage","type":"Proposed Rule","abstract":"These proposed rules set forth proposed requirements that would amend the regulations under the Public Health Service Act, the Employee Retirement Income Security Act of 1974, and the Internal Revenue Code regarding price transparency reporting requirements for non-grandfathered group health plans and health insurance issuers offering non-grandfathered group and individual health insurance coverage. Specifically, these proposed rules would improve the standardization, accuracy, and accessibility of public pricing disclosures in line with the goals of the Executive Order 14221. With respect to the in-network rate and out-of-network allowed amount machine-readable files, these proposed rules would achieve these goals by adding new contextual files and additional data elements like product type, network name, and enrollment counts; changing the reporting level for aggregation of data; removing in-network rates for unlikely provider-to-service mappings; increasing the reporting period and lowering the claims threshold for out-of-network historical data; and reducing the reporting cadence. These proposed rules would also improve the findability of all of the publicly disclosed machine- readable files required under the Transparency in Coverage rules, including the prescription drug file, by requiring a text file and footer with website URLs and contact information for the files. These proposed rules would also require pricing information that is made available through an online consumer tool and paper (upon request), to also be made available by phone, and establish that the satisfaction of such requirement also satisfies the requirements of section 114 of the No Surprises Act (including for grandfathered group health plans and health insurance issuers offering grandfathered group and individual health insurance coverage that are not otherwise subject to these proposed rules).","document_number":"2025-23693","html_url":"https://www.federalregister.gov/documents/2025/12/23/2025-23693/transparency-in-coverage","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-12-23/pdf/2025-23693.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-23693.pdf?1766178909","publication_date":"2025-12-23","agencies":[{"raw_name":"DEPARTMENT OF THE TREASURY","name":"Treasury Department","id":497,"url":"https://www.federalregister.gov/agencies/treasury-department","json_url":"https://www.federalregister.gov/api/v1/agencies/497","parent_id":null,"slug":"treasury-department"},{"raw_name":"Internal Revenue Service","name":"Internal Revenue Service","id":254,"url":"https://www.federalregister.gov/agencies/internal-revenue-service","json_url":"https://www.federalregister.gov/api/v1/agencies/254","parent_id":497,"slug":"internal-revenue-service"},{"raw_name":"DEPARTMENT OF LABOR","name":"Labor Department","id":271,"url":"https://www.federalregister.gov/agencies/labor-department","json_url":"https://www.federalregister.gov/api/v1/agencies/271","parent_id":null,"slug":"labor-department"},{"raw_name":"Employee Benefits Security Administration","name":"Employee Benefits Security Administration","id":131,"url":"https://www.federalregister.gov/agencies/employee-benefits-security-administration","json_url":"https://www.federalregister.gov/api/v1/agencies/131","parent_id":271,"slug":"employee-benefits-security-administration"},{"raw_name":"DEPARTMENT OF HEALTH AND HUMAN SERVICES","name":"Health and Human Services Department","id":221,"url":"https://www.federalregister.gov/agencies/health-and-human-services-department","json_url":"https://www.federalregister.gov/api/v1/agencies/221","parent_id":null,"slug":"health-and-human-services-department"}],"excerpts":"for these proposed provisions. \n C. <span class=\"match\">Requirements</span> for Public Disclosure of In-<span class=\"match\">Network</span> Rates and Historical Allowed Amount Data for Covered Items and Services From In- and Out-of-<span class=\"match\">Network</span> Providers \n 1. Provider <span class=\"match\">Network</span>-Level Reporting for the In-<span class=\"match\">Network</span> Rate Files \n \n The current In-<span class=\"match\">network</span> Rate File provision at 26 CFR 54.9815-2715A3(b)(1)(i), 29 CFR 2590.715-2715A3(b)(1)(i), and 45 CFR 147.212(b)(1)(i) requires plans and issuers to make available on a public website a machine-readable file that discloses in-<span class=\"match\">network</span> provider rates for covered items"},{"title":"Reducing Barriers to Network Improvements and Service Changes","type":"Rule","abstract":"In this document, the Federal Communications Commission (Commission) adopted a Report and Order that reduces regulatory barriers and costs that hinder the transition from outdated legacy networks and services to next-generation, Internet Protocol (IP)-based infrastructure. The actions taken in the Report and Order combine common sense reforms with core consumer protections that bring the regulatory environment in line with today's communications marketplace while retaining and adopting safeguards to protect public safety and ensure 911 continuity. The Report and Order also concludes that if state or local requirements conflict with the service discontinuance framework adopted in the Report and Order, such requirements negate valid federal regulatory objectives and are subject to preemption.","document_number":"2026-07622","html_url":"https://www.federalregister.gov/documents/2026/04/20/2026-07622/reducing-barriers-to-network-improvements-and-service-changes","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-04-20/pdf/2026-07622.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-07622.pdf?1776429913","publication_date":"2026-04-20","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"its own <span class=\"match\">internal</span> <span class=\"match\">network</span> testing routinely undertaken to measure performance in rolling out a new product or service, the service offers substantially similar levels of <span class=\"match\">network</span> performance and availability—for example, that it is provisioned over a <span class=\"match\">network</span> with speeds of at least 25/3 Mbps and that it offers mouth-to-ear latency of no more than 200 ms—and permits users generally to receive calls that originate on the public switched telephone <span class=\"match\">network</span> and to terminate calls to the public switched telephone <span class=\"match\">network</span> or any successor <span class=\"match\">network</span> that utilizes"},{"title":"Order No. 918; Critical Infrastructure Protection Reliability Standard CIP-003-11-Cyber Security-Security Management Controls","type":"Rule","abstract":"The Federal Energy Regulatory Commission (Commission) approves the proposed Critical Infrastructure Protection (CIP) Reliability Standard CIP-003-11 (Cyber Security--Security Management Controls). The North American Electric Reliability Corporation (NERC), the Commission- certified Electric Reliability Organization (ERO), submitted the proposed Reliability Standard to mitigate risks posed by a coordinated cyberattack on low-impact facilities, the aggregate impact of which could be much greater.","document_number":"2026-05711","html_url":"https://www.federalregister.gov/documents/2026/03/24/2026-05711/order-no-918-critical-infrastructure-protection-reliability-standard-cip-003-11-cyber","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-03-24/pdf/2026-05711.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-05711.pdf?1774269913","publication_date":"2026-03-24","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"},{"raw_name":"Federal Energy Regulatory Commission","name":"Federal Energy Regulatory Commission","id":167,"url":"https://www.federalregister.gov/agencies/federal-energy-regulatory-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/167","parent_id":136,"slug":"federal-energy-regulatory-commission"}],"excerpts":"the ongoing industry efforts coordinated through NERC and its technical committees.\n 44 \n \n They note that industry participants are already engaged in multiple parallel initiatives addressing emerging cyber risks, including work on cloud <span class=\"match\">security</span>, artificial intelligence, <span class=\"match\">internal</span> <span class=\"match\">network</span> <span class=\"match\">security</span> <span class=\"match\">monitoring</span>, supply chain management and vendor incident response.\n 45 \n \n \n \n \n 44 \n  Trade Associations Comments at 11-12.\n \n \n \n \n 45 \n  \n Id. \n at 11-13.\n \n \n \n 18. However, Mr. Haddad and Mr. Ravnitzky raise issues concerning the adequacy of cybersecurity"},{"title":"Reducing Barriers to Network Improvements and Service Changes","type":"Proposed Rule","abstract":"In this document, the Federal Communications Commission (Commission) adopted a Notice of Proposed Rulemaking that seeks comment on deregulatory options to encourage providers to build, maintain, and upgrade their networks such that all consumers and businesses can benefit from technological strides in the communications marketplace, while safeguarding consumers' access to critical emergency services such as 911. These actions propose to reduce regulatory barriers that prevent much-needed investment in and deployment of broadband and thus hinder the transition to all-IP networks offering a plethora of advanced communications services, and seek comment on ways to further fast-track the delivery of services to consumers through modernized networks while protecting public safety.","document_number":"2025-16540","html_url":"https://www.federalregister.gov/documents/2025/08/28/2025-16540/reducing-barriers-to-network-improvements-and-service-changes","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-08-28/pdf/2025-16540.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-16540.pdf?1756298736","publication_date":"2025-08-28","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"places.”\n \n 1. Codify Waiver of <span class=\"match\">Network</span> Change Disclosure Filing <span class=\"match\">Requirements</span> \n 4. We propose to eliminate all filing <span class=\"match\">requirements</span> with the Commission currently set forth in our <span class=\"match\">network</span> change disclosure rules. We seek comment on this proposal. \n 5. What benefit, if any, does the public gain from requiring incumbent LECs to file their <span class=\"match\">network</span> change disclosures with the Commission? What benefit, if any, does the public gain from public notices released by the Commission notifying the public of incumbent LEC <span class=\"match\">network</span> change disclosures? Conversely"},{"title":"Expanding Access to State Prescription Drug Monitoring Programs","type":"Proposed Rule","abstract":"The Department of Veterans Affairs (VA) proposes to amend its regulation that governs disclosure of information to and querying of State prescription drug monitoring programs (PDMPs). The rule would clarify certain statutory definitions, including the definition of delegate and licensed health care provider. In doing so, VA would eliminate confusion as to who VA would allow to query the PDMP and would better protect these individuals from any possible adverse action by a State, as long as they are acting within the scope of their VA employment or, if applicable, scope of their contract. The rule would also mandate that VA disclose the specified information to State PDMPs to the extent necessary to prevent misuse and diversion of prescription medicines. This proposed rule would promote safe and effective prescribing of controlled substances to covered individuals and patients who receive VA health care.","document_number":"2026-10084","html_url":"https://www.federalregister.gov/documents/2026/05/20/2026-10084/expanding-access-to-state-prescription-drug-monitoring-programs","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-05-20/pdf/2026-10084.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-10084.pdf?1779194712","publication_date":"2026-05-20","agencies":[{"raw_name":"DEPARTMENT OF VETERANS AFFAIRS","name":"Veterans Affairs Department","id":520,"url":"https://www.federalregister.gov/agencies/veterans-affairs-department","json_url":"https://www.federalregister.gov/api/v1/agencies/520","parent_id":null,"slug":"veterans-affairs-department"}],"excerpts":"prescription drug <span class=\"match\">monitoring</span> program, in accordance with applicable VA regulations and policies. This is in line with VA's previously implemented regulation, 38 CFR 17.419(b)(ii), <span class=\"match\">which</span> states that if a State law or license, registration, certification, or other <span class=\"match\">requirement</span> prevents or unduly interferes with a health care professional's practice within the scope of their VA employment, the health care professional is required to abide by their Federal duties even when a State law, registration, certification, or other <span class=\"match\">requirement</span> conflicts or unduly"},{"title":"Critical Infrastructure Protection Reliability Standard CIP-003-11-Cyber Security-Security Management Controls","type":"Proposed Rule","abstract":"The Federal Energy Regulatory Commission (Commission) proposes to approve Critical Infrastructure Protection (CIP) Reliability Standard: CIP-003-11 (Cyber Security--Security Management Controls). The North American Electric Reliability Corporation, the Commission- certified electric reliability organization, submitted the proposed Reliability Standard modifications to mitigate risks posed by a coordinated cyberattack on low impact facilities; the aggregate impact of which could be much greater.","document_number":"2025-18396","html_url":"https://www.federalregister.gov/documents/2025/09/23/2025-18396/critical-infrastructure-protection-reliability-standard-cip-003-11-cyber-security-security","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-09-23/pdf/2025-18396.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-18396.pdf?1758545114","publication_date":"2025-09-23","agencies":[{"raw_name":"DEPARTMENT OF ENERGY","name":"Energy Department","id":136,"url":"https://www.federalregister.gov/agencies/energy-department","json_url":"https://www.federalregister.gov/api/v1/agencies/136","parent_id":null,"slug":"energy-department"},{"raw_name":"Federal Energy Regulatory Commission","name":"Federal Energy Regulatory Commission","id":167,"url":"https://www.federalregister.gov/agencies/federal-energy-regulatory-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/167","parent_id":136,"slug":"federal-energy-regulatory-commission"}],"excerpts":"\n \n \n \n 16 \n  \n Id. \n \n \n \n 9. The above enhancements are reflected primarily in modifications to <span class=\"match\">Requirement</span> R1 and Attachment 1 of proposed Reliability Standard CIP-003-11. Specifically, NERC proposed to remove <span class=\"match\">Requirement</span> R1 Part 1.2.6 on vendor electronic remote access <span class=\"match\">security</span> controls.\n 17 \n \n NERC explains that this change reflects the proposed deletion of Attachment 1, Section 6 (vendor electronic remote access and <span class=\"match\">security</span> controls), <span class=\"match\">which</span> was combined into Attachment 1, Section 3 (electronic \n \n access controls).\n 18 \n \n NERC also states"},{"title":"Protecting Our Communications Networks by Promoting Transparency Regarding Foreign Adversary Control","type":"Proposed Rule","abstract":"In this document, the Federal Communications Commission (Commission) proposes to protect the Nation's communications networks against foreign adversary threats by proposing to expand foreign ownership disclosure requirements for covered Commission-issued licenses and authorizations. The proposed certification and information collection requirements would fill gaps in the Commission's existing rules and give the Commission, and the public, a new and comprehensive view of threats from foreign adversaries in the communications sector. Specifically, the Commission proposes to apply new certification and disclosure requirements on entities holding every type of license, permit, or authorization, rather than only certain specific licenses, as the Commission currently does. Furthermore, the Commission proposes to go beyond foreign ownership to also cover all regulated entities controlled by or subject to the jurisdiction or direction of a foreign adversary.","document_number":"2025-11360","html_url":"https://www.federalregister.gov/documents/2025/06/20/2025-11360/protecting-our-communications-networks-by-promoting-transparency-regarding-foreign-adversary-control","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-06-20/pdf/2025-11360.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-11360.pdf?1750250720","publication_date":"2025-06-20","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"national <span class=\"match\">security</span> benefits against the burdens on the Regulatee.\n \n \n Duplicative reporting <span class=\"match\">requirements</span>. \n To the extent an entity falls into multiple categories, how should duplicative reporting be handled? Are there ways we can reduce duplicative reporting <span class=\"match\">requirements</span>, and if so, should we take such steps? For example, would the possibility of duplicative reporting <span class=\"match\">requirements</span> be eliminated if the Commission were to adopt a cross-system rule and a single system for reporting?\n \n B. Certification and Information Collection <span class=\"match\">Requirements</span> \n \n To"},{"title":"Request for Information Regarding Security Considerations for Artificial Intelligence Agents","type":"Notice","abstract":"The Center for AI Standards and Innovation (CAISI), housed within the National Institute of Standards and Technology (NIST) at the Department of Commerce, is seeking information and insights from stakeholders on practices and methodologies for measuring and improving the secure development and deployment of artificial intelligence (AI) agent systems. AI agent systems are capable of taking autonomous actions that impact real-world systems or environments, and may be susceptible to hijacking, backdoor attacks, and other exploits. If left unchecked, these security risks may impact public safety, undermine consumer confidence, and curb adoption of the latest AI innovations. We encourage respondents to provide concrete examples, best practices, case studies, and actionable recommendations based on their experience developing and deploying AI agent systems and managing and anticipating their attendant risks. Responses may inform CAISI's work evaluating the security risks associated with various AI capabilities, assessing security vulnerabilities of AI systems, developing evaluation and assessment measurements and methods, generating technical guidelines and best practices to measure and improve the security of AI systems, and other activities related to the security of AI agent systems.","document_number":"2026-00206","html_url":"https://www.federalregister.gov/documents/2026/01/08/2026-00206/request-for-information-regarding-security-considerations-for-artificial-intelligence-agents","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-01-08/pdf/2026-00206.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-00206.pdf?1767793519","publication_date":"2026-01-08","agencies":[{"raw_name":"DEPARTMENT OF COMMERCE","name":"Commerce Department","id":54,"url":"https://www.federalregister.gov/agencies/commerce-department","json_url":"https://www.federalregister.gov/api/v1/agencies/54","parent_id":null,"slug":"commerce-department"},{"raw_name":"National Institute of Standards and Technology","name":"National Institute of Standards and Technology","id":352,"url":"https://www.federalregister.gov/agencies/national-institute-of-standards-and-technology","json_url":"https://www.federalregister.gov/api/v1/agencies/352","parent_id":54,"slug":"national-institute-of-standards-and-technology"}],"excerpts":"authentication mechanisms, operating system access, source code access, or similar <span class=\"match\">network</span>-level access vectors; \n v. Interactions with other AI agent systems. \n (d) What methods could be used to <span class=\"match\">monitor</span> deployment environments for <span class=\"match\">security</span> threats, risks, or vulnerabilities? \n i. What challenges exist to deploying traditional methods of <span class=\"match\">monitoring</span> threats, risks, or vulnerabilities? \n ii. Are there legal and/or privacy challenges to <span class=\"match\">monitoring</span> deployment environments for <span class=\"match\">security</span> threats, risks, or vulnerabilities? \n iii. What is the maturity of these methods"},{"title":"Reforming Legacy Rules for an All-IP Future; Accelerating Network Modernization","type":"Proposed Rule","abstract":"In this document, the Federal Communications Commission (Commission) adopted a Notice of Proposed Rulemaking seeking to accelerate network modernization by proposing to reform regulations that have hindered the transition to all-internet Protocol (IP) networks. Building upon the Commission's longstanding efforts to reform the legacy intercarrier compensation (ICC) framework, the Commission proposes to move remaining ICC charges to a bill-and-keep framework and detariff them, and invites comment on this proposal. To enable carriers to recover costs from their end users, the Commission proposes to eliminate ex ante pricing regulation and tariffing of end-user charges, also referred to as Telephone Access Charges (TACs). Following the transition of ICC charges to bill-and-keep, the Commission seeks comment on phasing out Connect America Fund Intercarrier Compensation (CAF ICC) support. The NPRM also seeks comment on removing remaining regulatory obligations--including tariffing and outdated account information exchange requirements--for interstate and international long-distance services, given the longstanding competitiveness of these markets. In addition, the Commission seeks comment on the elimination of regulations that will no longer be necessary in a post-Time-Division Multiplexing (TDM) environment and invites input on a transitional framework to ensure regulatory and market stability during the shift to an all-IP marketplace. Finally, the Commission encourages commenters to identify ways to promote technological modernization while enhancing long-term efficiency, competition, and service quality for consumers. In all these reforms, the Commission intends to proceed thoughtfully, mindful of the complex issues, transition timelines, and paramount connectivity goals.","document_number":"2026-05727","html_url":"https://www.federalregister.gov/documents/2026/03/24/2026-05727/reforming-legacy-rules-for-an-all-ip-future-accelerating-network-modernization","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-03-24/pdf/2026-05727.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-05727.pdf?1774269916","publication_date":"2026-03-24","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":" IP <span class=\"match\">networks</span>.” “Bill-and-keep” refers to an arrangement under <span class=\"match\">which</span> carriers look first to their subscribers to cover the costs of the <span class=\"match\">network</span>, then to explicit universal service support where necessary. As the Commission observed, “Bill-and-keep brings market discipline to intercarrier compensation because it ensures that the customer who chooses a <span class=\"match\">network</span> pays the <span class=\"match\">network</span> for the services the subscriber receives. Specifically, a bill-and-keep methodology requires carriers to recover the cost of their <span class=\"match\">network</span> through end-user charges <span class=\"match\">which</span> are"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"In accordance with the Privacy Act of 1974, 5 U.S.C. 552a, and the Office of Management and Budget (OMB) Circular No. A-108, notice is given that the Office of Personnel Management (OPM) proposes to establish a new system of records titled, \"OPM/Internal-3, Information Technology, Information System, and Network Activity and Access Records.\" This new system is established to reflect changes in technology, including the increased ability of OPM to link individuals to information technology, information system, or network activity, and to better describe OPM's records linking individuals to reported cybersecurity incidents or their access to certain OPM information technologies, information systems, and networks through the internet or other authorized connections.","document_number":"2025-19092","html_url":"https://www.federalregister.gov/documents/2025/10/01/2025-19092/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-10-01/pdf/2025-19092.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-19092.pdf?1759236309","publication_date":"2025-10-01","agencies":[{"raw_name":"OFFICE OF PERSONNEL MANAGEMENT","name":"Personnel Management Office","id":406,"url":"https://www.federalregister.gov/agencies/personnel-management-office","json_url":"https://www.federalregister.gov/api/v1/agencies/406","parent_id":null,"slug":"personnel-management-office"}],"excerpts":"Records are collected in real time from all OPM information technologies and endpoints on the OPM <span class=\"match\">network</span> and aggregated in databases searchable by identifying characteristics, including, but not limited to, name, user ID, email address, or IP address. Records may be retrieved as part of routine <span class=\"match\">network</span> and information system <span class=\"match\">security</span> <span class=\"match\">monitoring</span>, cybersecurity incident response, database activity <span class=\"match\">monitoring</span>, or in support of other administrative or <span class=\"match\">security</span> investigations in accordance with appropriate laws, rules, and policies. \n POLICIES AND PRACTICES"},{"title":"Privacy Act of 1974; Systems of Records","type":"Notice","abstract":"Pursuant to the Privacy Act of 1974 and Office of Management and Budget (OMB) Circular No. A-108, notice is hereby given that the Justice Management Division (JMD), a component within the United States Department of Justice (DOJ or Department), proposes to modify the system of records titled Security Monitoring and Analytics Service Records, JUSTICE/JMD-026, updating the capabilities and offerings included in it.","document_number":"2025-09447","html_url":"https://www.federalregister.gov/documents/2025/06/02/2025-09447/privacy-act-of-1974-systems-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-06-02/pdf/2025-09447.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-09447.pdf?1748609107","publication_date":"2025-06-02","agencies":[{"raw_name":"DEPARTMENT OF JUSTICE","name":"Justice Department","id":268,"url":"https://www.federalregister.gov/agencies/justice-department","json_url":"https://www.federalregister.gov/api/v1/agencies/268","parent_id":null,"slug":"justice-department"}],"excerpts":"PURPOSE(S) OF THE SYSTEM: \n The Department of Justice (DOJ) <span class=\"match\">Security</span> <span class=\"match\">Monitoring</span> and Analytics Service (SMAS) provides DOJ-managed cybersecurity services to external federal agency subscribers, giving subscribers the technical capability to protect their information, information technologies, information systems, and <span class=\"match\">networks</span> from malicious or accidental threats. SMAS enables secure access to <span class=\"match\">internal</span> <span class=\"match\">networks</span> as well as enabling users and systems to securely communicate with external <span class=\"match\">networks</span> and applications. SMAS enables the identification and evaluation"},{"title":"Review of Submarine Cable Landing License Rules and Procedures To Assess Evolving National Security, Law Enforcement, Foreign Policy, and Trade Policy Risks; Schedule of Application Fees","type":"Proposed Rule","abstract":"The Federal Communications Commission (\"FCC\" or \"Commission\") takes another important step to protect the Nation's submarine cable infrastructure from threats in an evolving national security and law enforcement landscape by undertaking the first major comprehensive review of the Commission's submarine cable rules since 2001. This review seeks to develop forward-looking rules to better protect submarine cables, identify and mitigate harms affecting national security and law enforcement, and facilitate the deployment of submarine cables and capacity to the market. Among other things, the Commission proposes to adopt a three-year periodic reporting requirement for submarine cable landing licenses; in the alternative, the Commission seeks comment on shortening the current 25-year submarine cable license term or adopting a shorter license term in combination with periodic reporting. The Commission also proposes or seeks comment on codifying the Commission's legal jurisdiction and other legal requirements in its rules to provide regulatory certainty to submarine cable owners and operators. Additionally, the Commission proposes and seeks comment on appropriate applicant and application requirements to account for the evolution of technologies and facilities and changes in the national security landscape over the last two decades and to ensure the Commission has targeted and granular information regarding the ownership, control, use of a submarine cable system, and other things, which are critical to the Commission's review to assess potential national security risks and other important public interest factors. Further, the Commission seeks comment on improving the quality of the circuit capacity data and facilitating the sharing of such information with other Federal agencies. Through these proposals, the Commission seeks to ensure that the Commission is exercising appropriate oversight of submarine cables to safeguard U.S. communications networks.","document_number":"2025-03718","html_url":"https://www.federalregister.gov/documents/2025/03/13/2025-03718/review-of-submarine-cable-landing-license-rules-and-procedures-to-assess-evolving-national-security","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-03-13/pdf/2025-03718.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-03718.pdf?1741783507","publication_date":"2025-03-13","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"location where information technology administrators can continuously <span class=\"match\">monitor</span> the performance of the wet and dry segments of the submarine cable system, either on site or from a remote location. The role of a NOC is to “provide full visibility” into the infrastructure and equipment. \n Id. \n (“From a <span class=\"match\">security</span> perspective, the NOC functions as the first line of defense that enables the organization to <span class=\"match\">monitor</span> <span class=\"match\">network</span> <span class=\"match\">security</span> and recognize and address any attacks or disruptions to the <span class=\"match\">network</span>.”).\n \n \n \n 79. \n Route Position Lists. \n Relatedly, the Commission"},{"title":"Permitted Payment Stablecoin Issuer Anti-Money Laundering/Countering the Financing of Terrorism Program and Sanctions Compliance Program Requirements","type":"Proposed Rule","abstract":"The Department of the Treasury's Financial Crimes Enforcement Network (FinCEN) and Office of Foreign Assets Control (OFAC) are jointly issuing this proposed rule to implement provisions of the Guiding and Establishing National Innovation for U.S. Stablecoins Act (GENIUS Act). Specifically, it implements the GENIUS Act's directive to treat permitted payment stablecoin issuers (PPSIs) as financial institutions for purposes of the Bank Secrecy Act, proposes anti-money laundering obligations for PPSIs, and proposes certain specific obligations required by the GENIUS Act for PPSIs. It also implements the GENIUS Act's directive to require PPSIs to maintain effective sanctions compliance programs.","document_number":"2026-06963","html_url":"https://www.federalregister.gov/documents/2026/04/10/2026-06963/permitted-payment-stablecoin-issuer-anti-money-launderingcountering-the-financing-of-terrorism","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-04-10/pdf/2026-06963.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-06963.pdf?1775738715","publication_date":"2026-04-10","agencies":[{"raw_name":"DEPARTMENT OF THE TREASURY","name":"Treasury Department","id":497,"url":"https://www.federalregister.gov/agencies/treasury-department","json_url":"https://www.federalregister.gov/api/v1/agencies/497","parent_id":null,"slug":"treasury-department"},{"raw_name":"Office of Foreign Assets Control","name":"Foreign Assets Control Office","id":203,"url":"https://www.federalregister.gov/agencies/foreign-assets-control-office","json_url":"https://www.federalregister.gov/api/v1/agencies/203","parent_id":497,"slug":"foreign-assets-control-office"},{"raw_name":"Financial Crimes Enforcement Network","name":"Financial Crimes Enforcement Network","id":194,"url":"https://www.federalregister.gov/agencies/financial-crimes-enforcement-network","json_url":"https://www.federalregister.gov/api/v1/agencies/194","parent_id":497,"slug":"financial-crimes-enforcement-network"}],"excerpts":"and the regulatory <span class=\"match\">requirements</span> that may be associated with one must be evaluated independently of the <span class=\"match\">requirements</span> that may be associated with the other. \n vi. Proposed 31 CFR 1010.100(qqq)—Distributed Ledger \n FinCEN is proposing to define the term “distributed ledger” as provided in the GENIUS Act, 12 U.S.C. 5901(8). Under the proposed rule, the term “distributed ledger” would mean a technology in <span class=\"match\">which</span> data is shared across a <span class=\"match\">network</span> that creates a public digital ledger of verified transactions or information among <span class=\"match\">network</span> participants and cryptography"},{"title":"Form PF; Reporting Requirements for All Filers","type":"Proposed Rule","abstract":"The Commodity Futures Trading Commission (the \"CFTC\") and the Securities and Exchange Commission (the \"SEC\") (collectively, \"we\" or the \"Commissions\") are proposing to amend Form PF, the confidential reporting form for certain SEC-registered investment advisers to private funds, including those that also are registered with the CFTC as a commodity pool operator (a \"CPO\") or a commodity trading advisor (a \"CTA\"). The proposed amendments would eliminate certain filing and reporting obligations, streamline certain requirements, and make corrections and other revisions. The proposed amendments are designed to eliminate certain burdens, among other things.","document_number":"2026-07993","html_url":"https://www.federalregister.gov/documents/2026/04/24/2026-07993/form-pf-reporting-requirements-for-all-filers","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-04-24/pdf/2026-07993.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-07993.pdf?1776948313","publication_date":"2026-04-24","agencies":[{"raw_name":"COMMODITY FUTURES TRADING COMMISSION","name":"Commodity Futures Trading Commission","id":77,"url":"https://www.federalregister.gov/agencies/commodity-futures-trading-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/77","parent_id":null,"slug":"commodity-futures-trading-commission"},{"raw_name":"SECURITIES AND EXCHANGE COMMISSION","name":"Securities and Exchange Commission","id":466,"url":"https://www.federalregister.gov/agencies/securities-and-exchange-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/466","parent_id":null,"slug":"securities-and-exchange-commission"}],"excerpts":"understand that the operational challenges posed by the strict look-through <span class=\"match\">requirement</span>, such as lack of the advisers' control of or access to granular position data of underlying fund or entity investments from third party entities or third party data that comports with the reporting <span class=\"match\">requirements</span> of Form PF, would likely, in practice, result in advisers having to rely on <span class=\"match\">internal</span> assumptions to comply with Form PF's <span class=\"match\">requirements</span>. As such, the prescriptive look-through <span class=\"match\">requirements</span> in General Instructions 7 and 8 would likely not achieve the intended"},{"title":"Protecting Our Communications Networks by Promoting Transparency Regarding Foreign Adversary Control","type":"Rule","abstract":"In this document, the Federal Communications Commission (Commission or FCC) addresses the risks of foreign adversary control of Commission-granted licenses and authorizations by adopting rules requiring a broad range of holders of such licenses, authorizations, or approvals to attest whether they are owned by, controlled by, or subject to the jurisdiction or direction of a foreign adversary, and, if so, to disclose additional information about such foreign adversary control. Among other things, the Commission defines categories of licenses and authorizations that are subject to the rules, and establishes a streamlined process by which license and authorization holders should file their foreign adversary control attestations and disclosures.","document_number":"2026-06992","html_url":"https://www.federalregister.gov/documents/2026/04/10/2026-06992/protecting-our-communications-networks-by-promoting-transparency-regarding-foreign-adversary-control","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-04-10/pdf/2026-06992.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-06992.pdf?1775738718","publication_date":"2026-04-10","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"throughout the world to recognize that <span class=\"match\">network</span> and to direct traffic to it. Currently, applicants seeking a DNIC must include in the application, among other things, a <span class=\"match\">network</span> diagram showing the international nature of the <span class=\"match\">network</span>; a description of the service(s)/application(s) for <span class=\"match\">which</span> the DNIC will be used (\n e.g., \n voice, SMS text messaging, or other applications); information showing that the applicant's <span class=\"match\">network</span> has the capability to efficiently interconnect with existing public data <span class=\"match\">networks</span> and the <span class=\"match\">network</span> also provides a capability for routing"},{"title":"Equipment, Systems, and Network Information Security Protection","type":"Proposed Rule","abstract":"This proposed rulemaking would impose new design standards to address cybersecurity threats for transport category airplanes, engines, and propellers. The intended effect of this proposed action is to standardize the FAA's criteria for addressing cybersecurity threats, reducing certification costs and time while maintaining the same level of safety provided by current special conditions.","document_number":"2024-17916","html_url":"https://www.federalregister.gov/documents/2024/08/21/2024-17916/equipment-systems-and-network-information-security-protection","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-08-21/pdf/2024-17916.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-17916.pdf?1724157915","publication_date":"2024-08-21","agencies":[{"raw_name":"DEPARTMENT OF TRANSPORTATION","name":"Transportation Department","id":492,"url":"https://www.federalregister.gov/agencies/transportation-department","json_url":"https://www.federalregister.gov/api/v1/agencies/492","parent_id":null,"slug":"transportation-department"},{"raw_name":"Federal Aviation Administration","name":"Federal Aviation Administration","id":159,"url":"https://www.federalregister.gov/agencies/federal-aviation-administration","json_url":"https://www.federalregister.gov/api/v1/agencies/159","parent_id":492,"slug":"federal-aviation-administration"}],"excerpts":"engine, and propellor <span class=\"match\">security</span> protections.\n \n \n \n The FAA intends that the phrase “procedures and instructions for continued airworthiness” convey that maintenance procedures for <span class=\"match\">security</span> protections extend beyond typical ICA content. To accomplish these maintenance procedures, operators develop an Aircraft <span class=\"match\">Network</span> <span class=\"match\">Security</span> Program \n 14 \n \n based on the applicant's <span class=\"match\">security</span> guidance to ensure conformance to type design and continued airworthiness.\n \n \n \n 14 \n  See AC 119-1A, Operational Authorization of Aircraft <span class=\"match\">Network</span> <span class=\"match\">Security</span> Program.\n \n \n The term"},{"title":"Facilitating Implementation of Next Generation 911 Services (NG911); Improving 911 Reliability","type":"Rule","abstract":"In this document, the Federal Communications Commission (the FCC or Commission) adopts rules to ensure that emerging Next Generation 911 (NG911) networks are reliable and interoperable. NG911 is replacing legacy 911 technology across the country with internet Protocol (IP)- based infrastructure that will support new 911 capabilities, including text, video, and data. However, for NG911 to be fully effective, NG911 networks must be designed to safeguard the reliability of critical components and support the interoperability needed to seamlessly transfer 911 calls and data from one network to another. The rules require entities essential to delivering emergency calls in the NG911 environment to implement common sense measures to safeguard the reliability of NG911 networks and reduce the risk of 911 outages, and require certain entities to report on their support for NG911 interoperability. The rules also eliminate unnecessary and burdensome legacy rules to increase flexibility and encourage technical innovation to make NG911 services reliable, interoperable, and accessible to all.","document_number":"2026-13998","html_url":"https://www.federalregister.gov/documents/2026/07/10/2026-13998/facilitating-implementation-of-next-generation-911-services-ng911-improving-911-reliability","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-07-10/pdf/2026-13998.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-13998.pdf?1783601118","publication_date":"2026-07-10","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"major <span class=\"match\">network</span> outages, PSHSB identified increased <span class=\"match\">monitoring</span> of 911 <span class=\"match\">network</span> components and faster failovers to redundant <span class=\"match\">network</span> equipment as key mitigating measures.\n 57 \n \n And in 2020, following another series of major communications outages affecting 911, the Bureau encouraged CSPs to follow industry best practices for <span class=\"match\">network</span> reliability including circuit diversity and auditing, rerouting capabilities, and active <span class=\"match\">network</span> <span class=\"match\">monitoring</span>.\n 58 \n \n \n \n \n 56 \n  \n Derecho Report \n at 44.\n \n \n \n \n 57 \n  See \n Public Safety and Homeland <span class=\"match\">Security</span> Bureau"}]}