Quick Definition
U.
S. National Institute of Standards and Technology (NIST) 800-171 publications and subsequent revisions codify security requirements for non-federal computer systems that store, process, or transmit certain types of data. The publication ensures that so-called controlled unclassified information (CUI) is protected to "moderate level" standards required by the Federal Information Security Management Act of 2002 (FISMA).