In June 2013, CDRH and CBER published a draft guidance on cybersecurity and pre-market submissions. The draft guidance uses risk analysis in 820.30 to evaluate cybersecurity. The comments, in the Ombu Library’s Risk Management for Medical Devices section, suggests a more explicit use of ISO 14971:2007.