WHAT: On October 15, 2024, the U.S. Department of Defense (DOD) will publish the final CMMC 2.0 Program rule. DOD’s final rule outlines the mechanisms that DOD will use to prescribe cybersecurity standards for safeguarding...more
As a result of a broader U.S. government effort to address supply chain vulnerabilities, Congress passed a new law focused on U.S. Department of Defense (DOD) contracting with certain entities that operate under foreign...more
10/11/2024
/ Controlled Unclassified Information (CUI) ,
Controlling Influence Test ,
Department of Defense (DOD) ,
Federal Contractors ,
FOCI ,
Foreign Ownership ,
Intelligence Services ,
NDAA ,
New Rules ,
Reporting Requirements ,
Research and Development
Last week, the U.S. Department of Defense (DOD) published a proposed rule that would amend the Defense Federal Acquisition Regulation Supplement (DFARS) to implement a statutory prohibition on DOD awarding contracts with...more
10/11/2024
/ Conflicts of Interest ,
Department of Defense (DOD) ,
DFARS ,
Federal Contractors ,
Foreign Entities ,
GAO ,
NAICS ,
National Security ,
NDAA ,
Office of Foreign Assets Control (OFAC) ,
PRC ,
Proposed Rules ,
U.S. Commerce Department ,
US Department of State
WHAT: The U.S. Department of Defense (DOD) just published the second of two proposed rules setting forth key requirements for its long-anticipated Cybersecurity Maturity Model Certification (CMMC) 2.0 program. The earlier...more
8/16/2024
/ Controlled Unclassified Information (CUI) ,
Corporate Counsel ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Maturity Model Certification (CMMC) ,
Department of Defense (DOD) ,
DFARS ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
NIST ,
Proposed Rules ,
Reporting Requirements
In May 2024, the National Institute of Standards and Technology (NIST) published Special Publication 800-171 Rev 3, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, and the accompanying...more
WHAT: On May 22, 2024, the U.S. Department of Defense (DOD) Office of Industrial Base Resilience (OIBR) released a notice for public comment regarding actions the DOD can take to enable the Defense Industrial Base (DIB) to...more
WHAT: The Federal Acquisition Regulatory Council (FAR Council) issued an advanced notice of proposed rulemaking (ANPR) to implement parts of Section 5949 of the James M. Inhofe National Defense Authorization Act (NDAA) for...more
WHAT: On May 2, 2024, the U.S. Department of Defense (DOD) issued a Defense Federal Acquisition Regulation Supplement (DFARS) class deviation related to the cybersecurity standards required for covered contractor information...more
WHAT: The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) published the final version of its Secure Software Development Attestation Common Form (Common Form) and announced...more
In this episode, Wiley partners Gary Ward, Tracye Howard, and Craig Smith examine the ongoing developments related to implementation of the Cybersecurity Maturity Model Certification (CMMC) program. They discuss the current...more
This extended (90 minute) Boot Camp will review:
- Recent legislation and notable regulatory changes affecting government contractors, including pending legislation and potential forthcoming rules;
- Relevant...more
WHAT: On February 16, 2024, the U.S. Department of Defense (DOD) posted a 40-minute video overview of DOD’s proposed requirements for the Cybersecurity Maturity Model Certification (CMMC) program. The video is available here,...more
We continue to track developments affecting government contractor cybersecurity and supply chains, as the federal government churns out proposals and rules. Wiley’s supply chain, cyber, government contracts, and national...more
WHAT: On January 11, 2024, the U.S. Department of Defense (DOD) published its National Defense Industrial Strategy (NDIS). In line with DOD’s continued emphasis on modernizing and strengthening the supply chain and...more
WHAT: The U.S. Department of Defense (DOD) has issued a proposed rule setting forth key requirements for its long-anticipated Cybersecurity Maturity Model Certification (CMMC) 2.0 program. The proposed rule primarily...more
WHAT: The U.S. Department of Defense (DOD) has issued a proposed rule setting forth the requirements for its long-anticipated Cybersecurity Maturity Model Certification 2.0 (CMMC) program. The proposed rule primarily...more
On December 14, 2023, the House of Representatives passed the National Defense Authorization Act for Fiscal Year 2024 (NDAA), following the Senate’s passage a few days earlier. The President is expected to sign the NDAA into...more
12/19/2023
/ Artificial Intelligence ,
China ,
Cuba ,
Department of Defense (DOD) ,
Department of Homeland Security (DHS) ,
Drones ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
Federal Information Security Modernization Act (FISMA) ,
FISA ,
Greenhouse Gas Emissions ,
Information and Communication Technology (ICT) ,
National Security ,
NDAA ,
Software ,
Subcontractors ,
Supply Chain ,
Unmanned Aircraft Systems ,
US State Departments
Last week, the House Select Committee on the Strategic Competition between the United States and the Chinese Communist Party (Select Committee) issued a comprehensive new bipartisan report, including almost 150 policy...more
12/19/2023
/ Bureau of Industry and Security (BIS) ,
CFIUS ,
China ,
Competition ,
Department of Defense (DOD) ,
FCC ,
FIRRMA ,
Foreign Adversaries ,
Foreign Investment ,
NDAA ,
Popular ,
Tariffs ,
Technology ,
U.S. Commerce Department
WHAT: A new interim rule prohibits contractors from delivering or using covered articles and sources that are subject to exclusion or removal orders issued under the Federal Acquisition Supply Chain Security Act of 2018...more
WHAT: As we previously reported here, on October 3, 2023, the Federal Acquisition Regulatory Council (FAR Council) proposed a pair of major cybersecurity rules intended to implement key parts of President Biden’s May 2021...more
10/12/2023
/ Cloud Computing ,
Controlled Unclassified Information (CUI) ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
DFARS ,
Executive Orders ,
FBI ,
Federal Acquisition Regulations (FAR) ,
Federal Contractors ,
Information Technology ,
Internet of Things ,
Software ,
Subcontractors
WHAT: The Federal Acquisition Regulatory Council (FAR Council) proposed a pair of major cybersecurity rules intended to implement key parts of President Biden’s May 2021 Executive Order No. 14028 on Improving the Nation’s...more
On August 10, 2023, the U.S. Department of Defense (DOD) announced the creation of Task Force Lima, which will focus on generative artificial intelligence (AI) responsibility and strategy issues. The task force announcement...more
Much like high school teachers across the country, Congress and the Executive Branch have been expressing security concerns about TikTok and its parent company, ByteDance, a Chinese software firm. These concerns led to the No...more
[*Editor’s note: Humans wrote this article without using ChatGPT. Recent news events, of which we hope all attorneys are aware, suggested this was the better course.]
Artificial Intelligence (AI) seems to be infiltrating...more
Artificial intelligence (AI) and copyright law appear to be on a collision course, with court cases and both executive and legislative activity poised to shape how copyright law will apply to AI development and uses. Recent...more
7/13/2023
/ Andy Warhol Foundation for the Visual Arts Inc v Goldsmith ,
Artificial Intelligence ,
Copyright ,
Copyright Infringement ,
Copyright Registration ,
DMCA ,
Fair Use ,
Federal Acquisition Regulations (FAR) ,
General Services Administration (GSA) ,
Information Technology ,
Intellectual Property Protection ,
Machine Learning ,
Web Scraping