DFARS 7012 Glossary
Learn the terminology and definitions for DFARS 7012.
CDI: Covered Defense Information – unclassified controlled technical information or other information, as described in the Controlled Unclassified Information (CUI) Registry at http://www.archives.gov/cui/registry/category-list.html, that requires safeguarding or dissemination controls pursuant to and consistent with law, regulations, and Government-wide policies, and is (1) Marked or otherwise identified in the contract, task order, or delivery order and provided to the contractor by or on behalf of DoD in support of the performance of the contract; or (2) Collected, developed, received, transmitted, used, or stored by or on behalf of the contractor in support of the performance of the contract.
CTI: Controlled Technical Information – information with military or space application that is subject to controls on the access, use, reproduction, modification, performance, display, release, disclosure, or dissemination. Controlled technical information would meet the criteria, if disseminated, for distribution statements B through F using the criteria set forth in DoD Instruction 5230.24, Distribution Statements on Technical Documents. The term does not include information that is lawfully publicly available without restrictions.
CUI: Controlled Unclassified Information.
Cyber Incident: Actions taken through the use of computer networks that result in a compromise or an actual or potentially adverse effect on an information system and/or the information residing therein.
DFARS: The Defense Federal Acquisition Regulation Supplement
DoD Instruction 5230.24: Department of Defense Instruction on distribution statements on technical documents.
FAQ: Frequently Asked Questions
FAR: Federal Acquisition Regulations
FIPS: Federal Information Processing Standards
FISMA: Federal Information Security Modernization Act
NARA: National Archives and Records Administration
NFO: Nonfederal Organization
NIST: National Institute of Standards and Technology
OMB: Office of Management and Budget
Security Control: A safeguard or countermeasure prescribed for an information system or an organization designed to protect the confidentiality, integrity, and availability of its information and to meet a set of defined security requirements.
SP: Special Publication
UCTI: Unclassified Controlled Technical Information