4.2002
Prohibition
Contractors are strictly prohibited from providing or using any Kaspersky Lab products in federal contracts or deliverables after October 1, 2018, to protect government cybersecurity.
Overview
FAR 4.2002 implements a statutory prohibition on the use of hardware, software, or services developed or provided by Kaspersky Lab or its related entities in federal contracts. Effective October 1, 2018, contractors are strictly forbidden from providing any Kaspersky Lab covered articles for government use or using such articles in the development of contract deliverables. This prohibition is rooted in cybersecurity concerns and aims to protect government systems and data from potential threats associated with Kaspersky Lab products.
Key Rules
- Prohibition on Providing Kaspersky Lab Articles
- Contractors must not provide any Kaspersky Lab hardware, software, or services for government use on or after October 1, 2018.
- Prohibition on Using Kaspersky Lab Articles in Deliverables
- Contractors must not use any Kaspersky Lab products in the development of data or deliverables produced under a government contract after the specified date.
Responsibilities
- Contracting Officers: Ensure solicitations and contracts include the prohibition and monitor compliance.
- Contractors: Certify and ensure that no Kaspersky Lab products are provided or used in contract performance or deliverables.
- Agencies: Oversee contractor compliance and take corrective action if violations are discovered.
Practical Implications
- This section exists to mitigate cybersecurity risks posed by Kaspersky Lab products.
- Contractors must review their supply chains and development processes to ensure compliance.
- Non-compliance can result in contract termination, penalties, or other enforcement actions.