The Department of Defense, GSA, and NASA have issued implementation guidance for the ban on Kaspersky products mandated in the 2018 NDAA. This Cyber Brief includes that guidance, the relevant section of the 2018 NDAA, a DHS directive to remove Kaspersky products from Federal systems, and court documents from a lawsuit in which Kaspersky alleges that the DHS unfairly blocked its software from Federal systems based on unsubstantiated evidence.
New to the Vault
Document 01
This entry in the Federal Register amends the Federal Acquisition Regulation to reflect a section of the 2018 National Defense Authorization Act.
Document 02
This section of the National Defense Authorization Act authorizes appropriations for Department of Defense activities in cyberspace.
Document 03
This entry in the Federal Register is a binding operational directive requiring Federal departments and agencies to identify Kaspersky products on Federal IT systems and plan for their removal within 90 days.
From the Vault
The government's objection to Kaspersky's request for a preliminary injunction includes "factual background" on the company's ties to Russia, among other topics.
Complaint. In the United States District Court for the District of Columbia, December 18 2017.
Kaspersky Labs alleges that the Department of Homeland Security unfairly blocked the company's software from being used by U.S. government agencies based on unsubstantiated charges of links to the Russian government.