Loaded terms: Technology professionals have long used “whitelist” and “blacklist” for certain software rules, along with “master” and “slave” to describe the control relationship between hardware components. The ISPAB plans to formally urge agencies to abandon these and other terms that evoke the legacy of oppression that the Black community has experienced.
Key context: NIST and the ISPAB’s attention to terminology comes at a time when Americans are paying more attention to the racist meaning behind omnipresent symbols, amid nationwide attention to racial justice following the killing of George Floyd in Minnesota. Across the country, for example, protesters and local governments have removed monuments to Confederate generals.
In the technology community, experts have discussed replacing incendiary terms for years. In April, the U.K. National Cyber Security Centre stopped using “whitelist” and “blacklist.”
The impact: NIST is one of the most influential voices on scientific and technical issues, and its terminology decisions will carry significant weight in the broader community. If more organizations follow its lead, there will be less of the language fragmentation that can make it difficult for different companies’ products to interact.
Next steps: NIST is still deciding what replacement terms to use. On Thursday, Stine suggested that “allow list” and “block list” might replace “whitelist” and “blacklist.” As for “master” and “slave,” some experts suggest using “primary” and “secondary” to indicate the role that a piece of equipment plays.
“We understand this is going to be an evolving process,” Stine said.
NIST is also reviewing its terminology for harmful connotations in other contexts, including gender, said Matt Scholl, the chief of the agency’s Computer Security Division.
The ISPAB, which advises the leadership of NIST, the Commerce Department, DHS and OMB, is holding its quarterly meeting this week. The board will officially vote to approve a letter to agencies on Thursday afternoon at the conclusion of its meeting. Board member Phil Venables, a senior cybersecurity adviser to Goldman Sachs, volunteered on Wednesday to draft the letter. He said the bank is already engaged in the same process to root out racist technical terms.
Romine said that NIST wants the independent advisory board to hold it accountable and “encourage us to take swift and decisive action on this issue.”