1. Home
  2. |Insights
  3. |Double Whammy: NIST Unveils Draft Enhanced Security Requirements and Revisions to NIST SP 800-171

Double Whammy: NIST Unveils Draft Enhanced Security Requirements and Revisions to NIST SP 800-171

Client Alert | 1 min read | 06.21.19

The National Institute of Standards and Technology (NIST) has released drafts of NIST SP 800-171 Revision 2 and a companion standard NIST SP 800-171B, designed to protect Controlled Unclassified Information (CUI) from advanced persistent threats (APTs). 800-171B details 33 “enhanced” controls, reflecting core principles of penetration resistance, damage-limiting operations, and resiliency. Specific controls include those related to segregation, hunt teams, AI-enabled tools, IoT security, and supply chain – some of which arguably do not have firm industry definitions.

Unlike the non-substantive updates to Revision 2, 800-171B will apply only to contractors handling CUI that the government determines is part of a “critical program” or is a “high value asset.” A cost estimate from the Department of Defense – expected to quickly implement 800-171B – anticipates that less than one percent of its contractors will be impacted but that (allowable) costs could exceed $1 million.

Comments for all three documents are due July 19, 2019. 

Contacts

Insights

Client Alert | 3 min read | 07.13.26

Amici Rally Behind Liberty Global, Urging Tenth Circuit to Rein in Economic Substance Doctrine

Following the 10th Circuit's April 21, 2026, decision affirming the disallowance of Liberty Global’s $2.4 billion deduction under the codified economic substance doctrine, I.R.C. § 7701(o), Liberty Global filed a petition for panel rehearing or rehearing en banc on June 5, 2026. That petition has since drawn significant amicus support from various industry groups representing large taxpayers, as discussed below....