Protection of Controlled Unclassified Information

Ross, Ron; Dempsey, Kelley; Feldman, Larry; Witte, Gregory

ITL Bulletin

Protection of Controlled Unclassified Information

Documentation Topics

Date Published: October 2015

Author(s)

Ron Ross (NIST), Kelley Dempsey (NIST), Larry Feldman (G2), Gregory Witte (G2)

Abstract

This bulletin summarizes the information presented in NIST SP 800-171: Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations. The publication the protection of Controlled Unclassified Information (CUI) while residing in nonfederal information systems and organizations is of paramount importance to federal agencies and can directly impact the ability of the federal government to successfully carry out its designated missions and business operations.

Keywords

contractor information systems; controlled unclassified information; CUI registry; derived security requirement; Executive Order 13556; FISMA; nonfederal information systems; security control; security requirement

Control Families

Access Control; Audit and Accountability; Awareness and Training; Configuration Management; Identification and Authentication; Maintenance; Personnel Security; Physical and Environmental Protection; System and Services Acquisition; System and Information Integrity

Documentation

Publication:
October 2015 ITL Bulletin

Supplemental Material:
None available

Document History:
10/19/15: ITL Bulletin (Final)

Topics

Security and Privacy
audit & accountability; awareness training & education; maintenance