Security news aggregator

Latest coverage for Proposal

The Proposal tag covers proposals that could shape cybersecurity policy, technical standards, incident response, and protections for digital systems.

5 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

A proposal is a documented plan for introducing, changing, or funding a security measure, policy, architecture, or project. It turns a problem or requirement into a decision by defining scope, objectives, options, cost, dependencies, owners, and implementation criteria. In security reporting, it may cover a vulnerability-remediation plan, access-control redesign, security tooling purchase, or response to a proposed technical standard.

Its security value depends on connecting identified threats and vulnerabilities to specific controls and verification steps. Reviewers should examine assumptions about assets, trust boundaries, data handling, and third parties; privacy and regulatory constraints where personal data is involved; and plans for testing, rollout, monitoring, exception handling, and reassessment. A proposal that omits residual risk, ownership, measurable acceptance criteria, or maintenance can leave weaknesses unresolved after approval.

Showing 5 most recent headlines Filtered view
Bank Info Security 2 years, 5 months ago

UK Lawmakers Push Ahead With Revised Snoopers' Charter

The Investigatory Powers Bill Will Allow Police to Collect More DataProposed legislation called the "snoopers' charter," which would allow British intelligence agencies to collect data on a large scale, cleared further parliamentary scrutiny this week despite mounting criticism from privacy advocates, watchdog groups and technology companies.

Bank Info Security 2 years, 5 months ago

ISACs Slam US Federal Cyber Incident Reporting Proposals

Information-Sharing Groups Call Reporting Requirements 'Too Costly, Overreaching'Multiple Information Sharing and Analysis Centers decried a proposed incident reporting measure for vendors selling to the U.S. federal government as being costly and ineffective. The proposal will affect three of every four contracts in which the government is a contracting party.

Bank Info Security 2 years, 5 months ago

US IaaS Providers Face 'Know Your Customer' Regulation

Rule Is a Bid to Deter Malicious Foreign Use of US IaaS ProvidersCloud providers told the government they aren't very happy about a proposed regulation requiring them to verify the identity of foreign customers, but their complaints are unlikely to stop the U.S. Department of Commerce from proceeding with the rule.

Bank Info Security 2 years, 5 months ago

Judge Denies Meta's 2nd Try to Dismiss Pixel Privacy Case

Litigation Alleges the Web Tracker Scraped Sensitive Patient InformationA federal judge has again given the green light for a proposed consolidated class action lawsuit against Meta to proceed. The litigation claims the firm unlawfully collected patient data from the websites of hospitals and other providers through the use of its Pixel tracking tool.