DATE: June 25, 2004

SUBJECT: Defense Federal Acquisition Regulation Supplement (DFARS); Information Assurance

SOURCE: Federal Register, June 25, 2004, Vol. 69, No. 122, page 35533

AGENCIES: Department of Defense (DOD)

ACTION: Final Rule

SYNOPSIS: DOD is revising DFARS Subpart 239.71, Security and Privacy for Computer Systems, to address requirements for information assurance in the acquisition of information technology. The rule implements policy issued by the National Security Telecommunications and Information Systems Security Committee.

EDITOR'S NOTE: For more on the proposed rule, see the May 23, 2003, FEDERAL CONTRACTS DISPATCH "Defense Federal Acquisition Regulation Supplement (DFARS); Information Assurance."

EFFECTIVE DATE: June 25, 2004.

FOR FURTHER INFORMATION CONTACT: Thaddeus Godlewski, Defense Acquisition Regulations Council, OUSD(AT&L)DPAP(DAR), IMD 3C132, 3062 Defense Pentagon, Washington, DC 20301-3062; 703-602-2022; fax: 703-602-0350. Cite "DFARS Case 2002-D020" when referring to this final rule.

SUPPLEMENTARY INFORMATION: In July 1990, the National Security Telecommunications and Information Systems Security Committee (NSTISSC) was established for the purpose of developing and promulgating national policies applicable to the security of national security telecommunications and information systems. In January 2000, NSTISSC issued Policy No. 11, which addresses the national policy governing the acquisition of information assurance and information assurance-enabled information technology products. Policy No. 11 states that information assurance shall be considered as a requirement for all systems used to enter, process, store, display, or transmit national security information. DoD has issued DoD Directive 8500.1, Information Assurance, and DoD Instruction 8500.2, Information Assurance Implementation, to implement Policy No. 11. On May 23, 2003, a proposed rule was published which would revise DFARS Subpart 239.71 and DFARS 252.239-7000, Protection Against Compromising Emanations, to correspond to Policy No. 11. One respondent submitted comments and, as a result, the proposed rule is finalized with changes.

The following are the changes being made by this final rule, with the differences between the proposed and final rules indicated:

FOR FURTHER INFORMATION CONTACT: Panoptic Enterprises at 703-451-5953 or by e-mail to Panoptic@FedGovContracts.com.

Copyright 2004 by Panoptic Enterprises. All Rights Reserved.

Return to the Dispatches Library.

Return to the Main Page.