U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.


Secure websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to our website. Please do not share sensitive information with us.

This is an archive
(replace .gov by .rip)

Protecting Controlled Unclassified Information (CUI) CUI


Jump to:

Background - Controlled Unclassified Information

Defense Federal Acquisition Regulation System Cybersecurity 

Cybersecurity Maturity Model Certification (CMMC)

NIST's role in Protecting CUI

Additional Pages

Public Comments


Ron Ross

Victoria Yan Pillitteri


Security and Privacy: risk management

Created June 13, 2019, Updated April 20, 2021