vnunet.com Foreign firms must toe US security line:
New agreement could improve good security practice
Non-US companies working on US defence and government contracts will soon have to demonstrate the security of their computer systems to meet guidelines issued by the US Customs and Border Protection (CBP) department.
The 'Foreign Manufacturer Security Recommendations Customs-Trade Partnership Against Terrorism (C-TPAT)', has been drawn up in the wake of the increased threat of terrorism.
It will be implemented in a phased approach to foreign companies, with Mexican manufacturers being the first to fall under the rules. It will then be extended to a select group of foreign manufactures in Europe and Asia, who will be invited to participate.
Within 90 days of signing the C-TPAT Agreement for Foreign Manufacturers, companies will have to provide an executive summary outlining the elements of the security procedures they have in place.
At a minimum, non-US companies must demonstrate they have information security controls proving the integrity of automated systems, and a process established for reporting and correcting problems."