May 22, 2026 11:02:06 AM

New and Upcoming Authority Documents April/May 2026

See the list below for Authority Documents we published to our library in April/May 2026

Name	AD_ID
CAIQ, v4.1.0	4432
Cloud Controls Matrix, v4.1.0	4433
EPEAT-CCM-2023 Climate Change Mitigation Criteria	4424
GovRAMP Core Status, Version 1.0	4441
AI RMF PLAYBOOK	4428
AI CYBERSECURITY CHALLENGES Threat Landscape for Artificial Intelligence	4430
MITRE ATLAS (Adversarial Threat Landscape for AI Systems)	4431
EUDR - Communication from the Commission on the Strategic Framework for International Cooperation Engagement	4426
Regulation (EC) No 178/2002 of the European Parliament	4427
FIPS Pub 186-5, Digital Signature Standard (DSS)	4275
ISO/IEC 27701, Information security, cybersecurity and privacy protection — Privacy information management systems — Requirements and guidance, Second edition	4446
ISO/IEC 27018, Information security, cybersecurity and privacy protection — Guidelines for protection of personally identifiable information (PII) in public clouds acting as PII processors, Third edition	4447
GovRAMP Controls Matrix for High Impact, v1.0	4445
252.234-7002 Earned Value Management System.	4466
252.242-7006 Accounting System Administration.	4463
252.244-7001 Contractor Purchasing System Administration.	4464
252.242-7004 Material Management and Accounting System.	4465
Guidelines for the Protection of Personal Information in the Financial Sector	4462
252.245-7003 Contractor Property Management System Administration.	4467
252.215-7002 Cost Estimating System Requirements.	4468
GovRAMP Controls Matrix for Moderate Impact System, v1.06	4443
GovRAMP Controls Matrix for Low Impact System, v1.05	4444
Web Content Accessibility Guidelines (WCAG), 2.2	4452
ISAE 3000 (Revised), Assurance Engagements Other than Audits or Reviews of Historical Financial Information	4450
12 U.S. Code Chapter 49, HOMEOWNERS PROTECTION	4482
12 CFR Part 1293, FAIR LENDING OVERSIGHT AND EQUITABLE HOUSING FINANCE	4488
12 U.S. Code Section 5531, Prohibiting unfair, deceptive, or abusive acts or practices	4489
12 CFR Part 1610 Subpart B Section 1610.11, Non-centrally Cleared Bilateral Repurchase Agreement Data.	4456

Check out the upcoming Authority Documents here.

Name	AD ID
NIST SP 800-63C-4 Digital Identity Guidelines Federation and Assertions	4129
Artificial Intelligence Security Verification Standard, January 23, 2026 (Draft)	4146
Guidelines on Cybersecurity for the Financial Sector	4143
RULE 213 – Cybersecurity Obligations, OCC Rules	4278
12 CFR Part 268 Section 203, Rehabilitation Act.	4461
12 CFR Part 343, CONSUMER PROTECTION IN SALES OF INSURANCE	4460
12 CFR Part 328, FDIC OFFICIAL SIGNS, ADVERTISEMENT OF MEMBERSHIP, FALSE ADVERTISING, MISREPRESENTATION OF INSURED STATUS, AND MISUSE OF THE FDIC'S NAME OR LOGO	4486
50 U.S. Code Chapter 50, SERVICEMEMBERS CIVIL RELIEF	4485
47 U.S. Code Section 227, Restrictions on use of telephone equipment	4487
12 CFR Part 1003, HOME MORTGAGE DISCLOSURE (REGULATION C)	4479
12 CFR Part 206, LIMITATIONS ON INTERBANK LIABILITIES (REGULATION F)	4478

Common Controls Hub, Updates