HHSAR 352. 270-5 Key Personnel (Apr 1984)
HHSAR 352. 270-9(b) (JAN 06) Care of Live Vertebrate Animals; and
HHSAR 352. 270-9(a) NOTICE TO OFFERORS OF REQUIREMENTS FOR ADEQUATE ASSURANCE OF PROTECTION OF VERTEBRATE ANIMAL SUBJECTS (SEP 1985)
HHSAR 352. 270-5 Key Personnel (January 2006)
HHSAR 352. 239-71 Standard for Encryption Language (Jan 2010)
(a) The Contractor shall use Federal Information Processing Standard (FIPS) 140–2-compliant encryption (Security Requirements for Cryptographic Module, as amended) to protect all instances of HHS sensitive information during storage and transmission. (Note:The Government has determined that HHS information under this contract is considered “sensitive” in accordance with FIPS 199, Standards for Security Categorization of Federal Information and Information Systems, dated February 2004.)
(b) The Contractor shall verify that the selected encryption product has been validated under the Cryptographic Module Validation Program ( see xxxx://xxxx.xxxx.xxx/cryptval/ ) to confirm compliance with FIPS 140–2 (as amended). The Contractor shall provide a written copy of the validation documentation to the Contracting Officer and the Contracting Officer's Technical Representative.
(c) The Contractor shall use the Key Management Key ( see FIPS 201, Chapter 4, as amended) on the HHS personal identification verification (PIV) card; or alternatively, the Contractor shall establish and use a key recovery mechanism to ensure the ability for authorized personnel to decrypt and recover all encrypted information ( see xxxx://xxxx.xxxx.xxx/drivers/documents/ombencryption-guidance.pdf ). The Contractor shall notify the Contracting Officer and the Contracting Officer's Technical Representative of personnel authorized to decrypt and recover all encrypted information.
(d) The Contractor shall securely generate and manage encryption keys to prevent unauthorized decryption of information in accordance with FIPS 140–2 (as amended).
(e) The Contractor shall ensure that this standard is incorporated into the Contractor's property management/control system or establish a separate procedure to account for all laptop computers, desktop computers, and other mobile devices and portable media that store or process sensitive HHS information.
(f) The Contractor shall ensure that its subcontractors (at all tiers) which perform work under this contract comply with the requirements contained in this clause. (End of clause)
HHSAR 352. 270-12 NEEDLE EXCHANGE (DEC 2015)
HHSAR 352. 232-74 Estimated Cost and Fixed Fee — Incrementally Funded Contract (Apr 1984)
(a) It is estimated that the total cost to the Government for full performance of this contract will be $102,661,429, of which the sum of represents the estimated reimbursable costs and represents the fixed fee.
(b) Total funds currently available for payment and allotted to this contract are , of which represents the estimated reimbursable costs and represents the fixed-fee. For further provisions on funding, see the Limitation of Funds clause.
(c) It is estimated that the amount currently allotted will cover performance through .
(d) The Contracting Officer may allot additional funds to the contract without the concurrence of the Contractor
HHSAR 352. 239-72 Security Requirements for Federal Information Technology Resources (Jan 2010)
HHSAR 352. 270-1 Accessibility of Meetings, Conferences, and Seminars to Persons with Disabilities (Jan 2001)
HHSAR 352. 202-1 Definitions (January 2006)
(a) In accordance with 52.202–1(a)(1), substitute the following as paragraph (a):
(a) The term ‘‘Secretary’’ or ‘‘Head of the Agency’’ (also called ‘‘Agency Head’’) means the Secretary, Deputy Secretary, or any Assistant Secretary, Administrator or Commissioner of the Department of Health and Human Services; and the term ‘‘his/her duly authorized representative’’ means any person, persons, or board authorized to act for the Secretary.’’
(b) In accordance with 52.202–1(a)(1), add the following paragraph (h):
