NIST 800-171 r2

Learn about NIST 800-171 r2 and explore its 110 security requirements.

  • Purpose

    NIST 800-171 provides security requirements for the protection of controlled unclassified information (CUI) on nonfederal systems.

  • Confidentiality

    NIST 800-171 is laser focused on confidentiality. Its requirements do not account for availability and integrity.

  • System Security Plan

    NIST 800-171 requires a system security plan (SSP) demonstrating how the entity has implemented the security controls.

  • NIST 800-53 & FIPS 200

    NIST 800-171's 110 security requirements are derived from NIST 800-53 and FIPS 200.

  • 14 Control Families

    NIST 800-171 groups its security requirements into 14 families including access control, configuration management, and physical protection.

  • NFO Controls

    NIST 800-171's appendix includes 61 non-federal organization (NFO) controls. NIST tailored these controls out because they assume they are implemented.

NIST 800-171 / CMMC Training
Available Now!

NIST 800-171A

Learn about NIST 800-171A and explore its assessment procedures.

CMMC 2.1

Learn about the CMMC and explore its requirements.

What is the purpose of NIST 800-171?

NIST 800-171 provides security requirements for CUI on nonfederal systems.

Why do I need to implement NIST 800-171?

Companies who support the DoD are required to implement the security requirements of NIST 800-171 per DFARS 252.204-7012.

Other government agencies will require its implementation as well.

How can I find training on NIST 800-171?

Our CMMC course has a lot of content related to NIST 800-171: CMMC Overview Training for Small and Medium Businesses (SMBs)

How many controls does NIST 800-171 have?

NIST 800-171 r2 has 110 controls.

Where did the NIST 800-171 controls come from?

NIST 800-171's controls are derived from FIPS 200 and NIST 800-53's moderate control baseline.

Where can I find a list of the NIST 800-171 controls?

We have published the NIST 800-171 controls here: NIST 800-171 r2 Controls

CMMC Training

Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!