Controlled Unclassified Information (CUI)

CUI Registry: Information Systems Vulnerability Information

 

Category-Subcategory: Information Systems Vulnerability Information
Category Description:

Related to information that if not protected, could result in adverse effects to information systems. Information system means a discrete set of information resources organized for the collection, processing, maintenance, use, sharing, dissemination, or disposition of information.

Subcategory Description: N/A
Marking: ISVI

 

Snippet

 

  • Whether CUI is Basic or Specified is determined by the applicable Safeguarding and/or Dissemination Authority for that CUI.
  • Each "Safeguarding and/or Dissemination Authority" citation links to the statute, regulation or government-wide policy authorizing the control of that information as CUI.
  • Each "Sanctions" authority links to the statute, regulation or government-wide policy that includes penalties for CUI misuse of CUI for the associated "Safeguarding and/or Dissemination Authority" on the same line.

 

Safeguarding and/or Dissemination Authority Basic or
Specified
Sanctions
44 USC 3554 (see OMB M-17-05 for implementing guidance) Basic  
44 USC 3555(f) Basic  

 

Snippet

Authority links are updated based on regular re-publication of the United States Code and Code of Federal Regulations, and the CUI Registry maintenance schedule.

 

Top