Compliance

NIST SP 800-172

Enhanced security requirements beyond NIST 800-171 for protecting CUI when APT-level threats are a concern. Aligns with CMMC Level 3.

Related Terms

NIST SP 800-171

The NIST standard specifying 110 security requirements for protecting CUI in non-federal systems. Forms the basis of CMMC Level 2 and DFARS 252.204-7012 compliance.

CMMC

A DoD framework requiring defense contractors to meet specific cybersecurity standards before handling federal contract information.

CUI

Government-created or -owned information that requires safeguarding controls per law, regulation, or government-wide policy, but is not classified.

Related Guides

CMMC Compliance Guide→

← Back to Glossary