DFARS
Safeguard articles tagged "DFARS" — guides, analysis, and best practices for software supply chain and application security.
6 articles
Supply Chain Security for Aerospace & Defense (DoD) 2026
Supply chain security for aerospace and defense contractors in 2026 means CMMC 2.0 final rule, DFARS 7012/7020/7021, and NIST 800-171 Rev 3 in production.
CMMC 32 CFR Part 170: The Program Rule and the Four Phases
DoD's CMMC program rule became effective December 16, 2024 with a four-phase rollout running through November 2028. The companion DFARS rule landed September 10, 2025.
NIST 800-171 Rev. 3 and the DoD Class Deviation: Stuck on Rev. 2
NIST published 800-171 Rev. 3 on May 14, 2024. Twelve days earlier, DoD froze DFARS 7012 to Rev. 2 via Class Deviation 2024-O0013.
Defense Industrial Base Supply Chain and CMMC
How the Defense Industrial Base is adapting its software supply chain to CMMC 2.0, NIST SP 800-171, and DFARS flow-down obligations.
SBOMs for Defense Contractors: Aligning with CMMC and DoD Requirements
Defense contractors face unique SBOM challenges. This guide covers CMMC alignment, DFARS clauses, and practical steps to meet DoD software supply chain requirements.
Aerospace and Defense Software Supply Chain Security
Aerospace and defense organizations face nation-state threats targeting software supply chains. Here's how to build resilience in high-assurance environments.