What are the NIST 800-171 Requirements?

Fourteen families of security requirements must be met to protect the confidentiality of CUI in nonfederal information:

1. Access Control
2. Audit and Accountability
3. Awareness and Training
4. Configuration Management
5. Identification and Authentication
6. Incident Response
7. Maintenance
8. Media Protection
9. Physical Protection
10. Personnel Security
11. Risk Assessment
12. Security Assessment
13. System and Communications Protection
14. System and Information Integrity

Return to NIST Glossary