Current Draft Publications

RESOURCES

NEW Cybersecurity Maturity Model Certification (CMMC) Program: Proposed Final Ruling

The DoD has released the proposed final ruling for the CMMC program. Link | Download

DRAFT NIST 800-172 “A” Assessment Guidance Released

NIST has released the draft version of its assessment guide for NIST 800-172 (Formerly NIST 800-171B) Link | Download

Defense Federal Acquisition Regulation Supplement: Assessing Contractor Implementation of Cybersecurity Requirements (DFARS Case 2019-D041)

The DoD has issued an interim rule to amend the DFARS cybersecurity regulations to implement a DoD Assessment Methodology and Cybersecurity Maturity Model (CMMC) framework in order to assess contractor implementation of cybersecurity requirements and enhance the protection of unclassified information within the DoD supply chain. (Comments on the interim rule should be submitted in writing on or before 60 days after date of publication in the Federal Register.) Link | Download

Cybersecurity Maturity Model Certification (CMMC) DRAFT Version 0.6 (November 7, 2019)

This is the most recent draft of the CMMC, taking into account industry feedback that was received by DoD after releasing CMMC Draft version 0.4 for public comments in September 2019. Link | Download

NIST SP 800-171B Draft Released June 2019 – Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations: Enhanced Security Requirements for Critical Programs and High Value Assets

Draft NIST SP 800-171B provides additional recommendations for enhanced security requirements to protect Controlled Unclassified Information (CUI) from advanced persistent threats (APTs). Link | Download

NIST SP 800-171 Revision 2 Draft Released June 2019: Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations

NIST describes draft NIST SP 800-171 Rev. 2 as “minor editorial changes”. Link | Download

Cookie	Duration	Description
_ga	2 years	This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assign a randomly generated number to identify unique visitors.
_gid	1 day	This cookie is installed by Google Analytics. The cookie is used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visted in an anonymous form.
vuid	2 years	This domain of this cookie is owned by Vimeo. This cookie is used by vimeo to collect tracking information. It sets a unique ID to embed videos to the website.

Cookie	Duration	Description
_gat_gtag_UA_136970874_1	1 minute	No description
cookielawinfo-checkbox-functional	1 year	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-others	1 year	No description