No Post-Thanksgiving Break for Cyber – DoD and NIST Publish New Guidance

Client Alert | 1 min read | 12.01.17

Both the Department of Defense and National Institute of Standards & Technology (NIST) have put pen to paper and provided new information for contractors looking to comply with DFARS 252.204-7012 and its accompanying cybersecurity requirements under NIST Special Publication (SP) 800-171. Earlier this week, the DoD posted guidance explaining that contractors can still use system security plans (SSPs) under the original version of NIST SP 800-171 to “document implementation” under the DFARS Clause, despite that version not including SSPs as a security control requirement. Separately, NIST published a draft of NIST SP 800-171A, Assessing Security Requirements for Controlled Unclassified Information, providing guidance to both contractors and their customers regarding how to conduct assessments under NIST SP 800-171. Importantly, the draft is open to comment through December 27, 2017, providing contractors with a unique opportunity to weigh in on how their customers may ultimately judge compliance with the DFARS Clause’s security requirements.

Contacts

Michael G. Gruden
Partner
- Washington, D.C.
  - D | +1.202.624.2545
bWdydWRlbkBjcm93ZWxsLmNvbQ==
Kate M. Growley
Partner, Crowell Global Advisors Senior Director
- Washington, D.C.
  - D | +1.202.624.2698
- Washington, D.C. (CGA)
  - D | +1 202.624.2500
a2dyb3dsZXlAY3Jvd2VsbC5jb20=

Insights

Client Alert | 3 min read | 09.15.25

Senate Finance Committee Looking to Take White River to the Train Station, Confirms DOJ Investigation into Tribal Tax Credits

On August 19, 2025, the U.S. Senate Committee on Finance (“Senate Finance Committee”) sent Paul Atkins, Chairman, U.S. Securities and Exchange Commission (“SEC”) a letter calling on the SEC to investigate White River Energy Corp (“White River”). In the letter, the Senate Finance Committee confirmed a criminal investigation into White River related to the sale of so-called “tribal tax credits” that according to both Congress and the IRS, do not exist. The letter further states that White River allegedly earned millions of dollars selling these credits and has not been forthcoming with investors regarding the existence of the criminal investigation. According to the Senate Finance Committee, White River has failed to file financial disclosure documents with the SEC since March 15, 2024, missing six consecutive reporting periods. The letter instructs White River to disclose the existence of the DOJ criminal tax investigation, and calls on the SEC to take action if White River fails to do so....

Client Alert | 4 min read | 09.12.25
SBA’s OHA Further Defines Extraordinary Action in SDVOSB Appeal
Client Alert | 6 min read | 09.11.25
U.S. Department of Commerce Partially Relaxes Export Controls on Syria
Client Alert | 9 min read | 09.11.25
One Year After Illumina/Grail – How Are EU Competition Authorities Now Dealing With Below-Threshold Mergers

View All Insights