Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST SP 800-172A

Assessing Enhanced Security Requirements for Controlled Unclassified Information

Date Published: March 2022

Planning Note (04/13/2022): The assessment procedures in SP 800-172A are available in multiple data formats. The PDF of SP 800-172A is the authoritative source of the assessment procedures. If there are any discrepancies noted in the content between the CSV, XLSX, and the SP 800-172A PDF, please contact and refer to the PDF as the normative source.


Ron Ross (NIST), Victoria Pillitteri (NIST), Kelley Dempsey (NIST)



assessment; assessment method; assessment object; assessment procedure; assurance; enhanced security requirement; enhanced security requirement assessment; Controlled Unclassified Information; coverage; CUI Registry; depth; Executive Order 13556; FISMA; NIST Special Publication 800-53; NIST Special Publication 800-53A; NIST Special Publication 800-171; NIST Special Publication 800-172; NIST Special Publication 800-172A; nonfederal organization; nonfederal system; security assessment; security control
Control Families

None selected