NIST SP 800-171 & CMMC 2.0 Control 3.1.3 Requirement:

Control the flow of CUI in accordance with approved authorizations.

NIST SP 800-171 & CMMC 2.0 3.1.3 Requirement Explanation:

By placing a firewall or other proxy between your network and the internet you prevent direct access to your systems from the internet. You can also prevent certain types of information from exiting your network. Employees must take special care when sending CUI over an external network. CUI should only be sent in encrypted form.

Example NIST SP 800-171 & CMMC 2.0 3.1.3 Implementation:

Use a firewall to control traffic entering and exiting your network. Configure firewall rules that limit traffic to specific ports. Instruct employees that they may only email, transfer, or share CUI in ecrypted form. They can do this using encrypted email (S/MIME), SFTP file transfer, or by sharing links to a secure cloud storage location.

NIST SP 800-171 & CMMC 2.0 3.1.3 Scenario(s):

- Scenario 1:

You setup a firewall on your network. This prevents traffic external traffic from directly accessing your internal network. Your firewall analyzes traffic and only allows authorized traffic into the network.

Discover Our NIST SP 800-171 & CMMC 2.0 Solutions:


Compliance Accelerator

Power through compliance. Meet and maintain your NIST SP 800-171 & CMMC 2.0 compliance requirements.

Quantum Assessor

Transform your business. Create new revenue streams and provide scalability for your NIST SP 800-171 and CMMC 2.0 services.

Supply Chain Verifier

Trust is everything. Verify, monitor, and support subcontactor compliance.