What are the most common pitfalls with FAR 52.204-23?

Missing Kaspersky branding on bundled or rebranded security products • Not auditing endpoint software regularly • Failing to remove Kaspersky from employee personal devices used for federal work

FAR ClauseCybersecurity

FAR 52.204-23 — Prohibition on Contracting for Hardware, Software, and Services Developed or Provided by Kaspersky Lab and Other Covered Entities

Prohibits federal contractors from using Kaspersky Lab anti-virus software (and related products from successor or affiliated entities) on any system used in federal contract performance.

View official clause text on acquisition.gov

When This Clause Applies

Required in all federal solicitations and contracts. Subcontractor flow-down is mandatory.

What This Means for Contractors

Contractors must remove Kaspersky products from all systems used in federal work — not just systems holding government data. Annual representation required in SAM.gov. Non-compliance is False Claims Act-eligible and can trigger debarment.

Common Pitfalls

1Missing Kaspersky branding on bundled or rebranded security products
2Not auditing endpoint software regularly
3Failing to remove Kaspersky from employee personal devices used for federal work

Related Clauses

FAR 52.204-21

Basic Safeguarding of Covered Contractor Information Systems

Establishes 15 basic cybersecurity controls federal contractors must implement on systems processing or storing Federal Contract Information (FCI).

FAR 52.204-25

Prohibition on Contracting for Certain Telecommunications and Video Surveillance Services or Equipment

Prohibits federal contractors from using or providing covered telecommunications equipment (Huawei, ZTE, Hytera, Hangzhou Hikvision, Dahua) or services that use such equipment in any government work.

Continue Your Research

DoD Procurement Guide

Cybersecurity clauses primarily apply to DoD acquisitions. See DoD's vehicles and small business focus.

NAICS 518210 — Data Processing, Hosting, and Related Services

Find federal contracts under NAICS 518210. Common agencies, set-asides, contract values.

NAICS 541330 — Engineering Services

Find federal contracts under NAICS 541330. Common agencies, set-asides, contract values.

Browse Full FAR Clause Library

All FAR and DFARS clauses we've documented with plain-English summaries.

GovCon Compliance Blog

Latest guidance on FAR/DFARS updates, CMMC, NIST 800-171, and capture strategy.

Need help complying with FAR 52.204-23?

Aliff helps GovCon firms map clause requirements to deliverables, build compliance evidence, and respond to CO inquiries with confidence.

Schedule a Compliance Review Browse Clause Library