For your convenience, BAI has assembled the following collection of CMMC-related government publications. Please note these are UNCLASSIFIED documents with no restrictions on usage or distribution.
- NIST SP 800-171 Rev. 1, “Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations“
- NIST SP 800-171B (Draft), “Protecting Controlled Unclassifeid Information in Nonfederal Systems and Organization: Enhanced Security Requirements for Critical Programs and High Value Assets“
- Cybersecurity Maturity Model Certification, v1.02
- CMMC Model V1.02 Appendices
- CMMC Model v1.02 (Appendix A) in tabular format