defensive measure

(A) In general Except as provided in subparagraph (B), the term “defensive measure” means an action, device, procedure, signature, technique, or other measure applied to an information system or information that is stored on, processed by, or transiting an information system that detects, prevents, or mitigates a known or suspected cybersecurity threat or security vulnerability.


6 USC § 650(9)(A)

Scoping language

in this subchapter
Is this correct? or