DFARSDefense Federal Acquisition Regulation Supplement
DoD-specific supplement to the FAR that implements defense acquisition policies, including cybersecurity clauses like DFARS 252.204-7012 for CUI protection.
Related Terms
FAR
The primary regulation governing all federal procurement, establishing uniform policies and procedures for acquiring supplies and services by executive agencies.
CUI
Government-created or -owned information that requires safeguarding controls per law, regulation, or government-wide policy, but is not classified.
NIST SP 800-171
The NIST standard specifying 110 security requirements for protecting CUI in non-federal systems. Forms the basis of CMMC Level 2 and DFARS 252.204-7012 compliance.
CMMC
A DoD framework requiring defense contractors to meet specific cybersecurity standards before handling federal contract information.