Controlled Unclassified Information program

E23957

U.S. federal information security program information handling framework

The Controlled Unclassified Information program is a U.S. federal initiative that standardizes how sensitive but unclassified information is marked, handled, and protected across government agencies and their partners.

Observed surface forms (1)

Surface form	Occurrences
Controlled Unclassified Information	1

Statements (47)

Predicate	Object
instanceOf	U.S. federal information security program ⓘ information handling framework ⓘ
administeredBy	Information Security Oversight Office ⓘ National Archives and Records Administration ⓘ
aimsTo	create a uniform government-wide CUI policy ⓘ reduce over-control and under-control of sensitive information ⓘ
appliesTo	U.S. federal agencies ⓘ surface form: U.S. federal executive branch agencies federal contractors ⓘ federal grant recipients ⓘ other authorized non-federal partners ⓘ
basedOn	Executive Order 13556 ⓘ
country	United States of America ⓘ surface form: United States
defines	CUI categories ⓘ CUI decontrol procedures ⓘ CUI dissemination controls ⓘ CUI marking requirements ⓘ CUI safeguarding requirements ⓘ
governedBy	32 CFR Part 2002 ⓘ
hasAbbreviation	CUI program ⓘ
implementedThrough	CUI Registry ⓘ agency CUI policies ⓘ
involves	controlling dissemination of CUI ⓘ marking CUI on documents and media ⓘ safeguarding CUI in information systems ⓘ safeguarding CUI in physical environments ⓘ
jurisdiction	United States government ⓘ surface form: U.S. Federal Government
monitoredBy	Information Security Oversight Office ⓘ
objective	ensure adequate protection of sensitive but unclassified information ⓘ improve information sharing across agencies and partners ⓘ reduce inconsistent agency-specific control markings ⓘ
regulates	Controlled Unclassified Information ⓘ
relatedTo	Federal Information Security Modernization Act of 2014 ⓘ surface form: Federal Information Security Modernization Act National Industrial Security Program ⓘ
replaced	For Official Use Only markings in many contexts ⓘ agency-specific sensitive but unclassified markings ⓘ
requires	formal designation of CUI by authorized holders ⓘ review and decontrol of CUI when protection is no longer required ⓘ training for personnel handling CUI ⓘ
requiresComplianceWith	NIST SP 800-171 for non-federal systems handling CUI ⓘ
scopeExcludes	classified national security information ⓘ publicly releasable information ⓘ
standardizes	handling of sensitive but unclassified information ⓘ marking of sensitive but unclassified information ⓘ protection of sensitive but unclassified information ⓘ
usesMarking	CUI banner markings ⓘ CUI category markings ⓘ CUI designation indicators ⓘ

Referenced by (3)

Full triples — surface form annotated when it differs from this entity's canonical label.

Executive Order 13556 → establishes → Controlled Unclassified Information program ⓘ

Information Security Oversight Office → oversees → Controlled Unclassified Information program ⓘ

Executive Order 13556 → title → Controlled Unclassified Information program ⓘ

this entity surface form: Controlled Unclassified Information