NIST Finalizes Enhanced Security Requirements for Combating Advanced Cyber Threats

Client Alert | 1 min read | 02.09.21

The National Institute of Standards and Technology (NIST) recently released the final version of NIST Special Publication (SP) 800-172, Enhanced Security Requirements for Protecting Controlled Unclassified Information. Designed to supplement the requirements in NIST SP 800-171—the applicable standard under DFARS 252.204-7012—800-172 provides 35 enhanced security requirements to protect controlled unclassified information (CUI) associated with critical programs and high value assets from sophisticated adversaries referred to as advanced persistent threats (APTs).

Although expected to impact relatively few contractors, where applicable, agencies may include select enhanced security requirements from 800-172 in their contract provisions. The Department of Defense (DoD) has also incorporated several of the requirements identified in prior drafts of 800-172 into maturity levels 4 and 5 of the Cybersecurity Maturity Model Certification (CMMC).

Contacts

Michael G. Gruden
Partner
- Washington, D.C.
  - D | +1.202.624.2545
bWdydWRlbkBjcm93ZWxsLmNvbQ==
Kate M. Growley
Partner, Crowell Global Advisors Senior Director
- Washington, D.C.
  - D | +1.202.624.2698
- Washington, D.C. (CGA)
  - D | +1 202.624.2500
a2dyb3dsZXlAY3Jvd2VsbC5jb20=

Insights

Client Alert | 3 min read | 10.30.25

Is Course Hero Heading to Summer School After Summary Judgment Loss?

On September 23, Judge Vernon D. Oliver partially granted and partially denied the defendant’s motion for summary judgment in Post University Inc. v. Learneo, Inc., 3:21-cv-1242 (VDO) (D. Del. Sept. 23, 2025). For background, the defendant in this case, Learneo, Inc. (commonly known as Course Hero), is an online platform for college, trade, and high school students that provides access to user-submitted documents via a paid subscription. Course Hero allows users to search the documents that have been uploaded by school, textbook, book title, and subject, but only users with a subscription can view the documents. Users without a subscription may access a preview version of the document, consisting of a blurred and truncated version created by Course Hero. Course Hero users have uploaded documents to the platform for many thousands of colleges, grad schools, high schools, and trade schools....

Client Alert | 9 min read | 10.28.25
Key Takeaways from a Consequential Month of Russia-Related Sanctions
Client Alert | 1 min read | 10.27.25
California Increases Antitrust Penalties
Client Alert | 3 min read | 10.27.25
Report as Spam? A New Wave of California Anti-Spam Class Actions Raises Significant Risks for Email Marketers

View All Insights