NIST Finalizes Enhanced Security Requirements for Combating Advanced Cyber Threats
Client Alert | 1 min read | 02.09.21
The National Institute of Standards and Technology (NIST) recently released the final version of NIST Special Publication (SP) 800-172, Enhanced Security Requirements for Protecting Controlled Unclassified Information. Designed to supplement the requirements in NIST SP 800-171—the applicable standard under DFARS 252.204-7012—800-172 provides 35 enhanced security requirements to protect controlled unclassified information (CUI) associated with critical programs and high value assets from sophisticated adversaries referred to as advanced persistent threats (APTs).
Although expected to impact relatively few contractors, where applicable, agencies may include select enhanced security requirements from 800-172 in their contract provisions. The Department of Defense (DoD) has also incorporated several of the requirements identified in prior drafts of 800-172 into maturity levels 4 and 5 of the Cybersecurity Maturity Model Certification (CMMC).
Contacts
Senior Counsel
She/Her/Hers
Insights
Client Alert | 1 min read | 04.18.24
GSA Clarifies Permissibility of Upfront Payments for Software-as-a-Service Offerings
On March 15, 2024, the General Services Administration (GSA) issued Acquisition Letter MV-2024-01 providing guidance to GSA contracting officers on the use of upfront payments for acquisitions of cloud-based Software-as-a-Service (SaaS). Specifically, this acquisition letter clarifies that despite statutory prohibitions against the use of “advance” payments outside of narrowly-prescribed circumstances, upfront payments for SaaS licenses do not constitute an “advance” payment subject to these restrictions when made under the following conditions:
Client Alert | 4 min read | 04.18.24
Client Alert | 6 min read | 04.16.24
Navigating the AI Intellectual Property Maze - Key Points From Congressional Hearing
Client Alert | 5 min read | 04.15.24
Making the EU Courts More Efficient for Trade-Related Decisions
