 |
| NCSC-TG-027
Library No. 5-238,461 Version-I FOREWORD The National Computer Security Center is issuing A Guide to Understanding
Information A Guide to Understanding Information System Security Officer Responsibilities
for I invite your suggestions for revising this document. We plan to review
this document as the May 1992 Patrick R. Gallagher, Jr. ACKNOWLEDGMENTS The National Computer Security Center extends special recognition for
their contributions to We also thank the many representatives from the computer security community
who gave of TABLE OF CONTENTS FOREWORD ACKNOWLEDGMENTS LIST OF TABLES 1. INTRODUCTION 1.1 Security Regulations, Policies, and Standards 2. OPERATIONAL ENVIRONMENT 7 3. ISSO AREAS OF RESPONSIBILITY 3.6.1 Contingency Plans 3.10 Access Control 4. SECURITY PERSONNEL ROLES BIBLIOGRAPHY LIST OF TABLES TABLE NUMBER PAGE 1. Service and Agency Security Personnel Titles 1. INTRODUCTION This guideline identifies system security responsibilities for Information
System Security · Physical security includes controlling access to facilities
that contain classified and · Personnel security includes the procedures to ensure that access
to classified and sensitive Need-to-know is the necessity for access to, knowledge of, or possession
of specific · Administrative security addresses the management constraints
and supplemental controls · Communications security (COMSEC) defines measures that are taken
to deny · Emissions security is the protection resulting from all measures
taken to deny unauthorized All these security areas are vital to the operation of a secure system.
This guideline focuses 1.1 SECURITY REGULATIONS, POLICIES, AND STANDARDS This section provides an overview of regulations, policies, and criteria
that address security 1.1.1 FEDERAL REGULATIONS National mandates require the protection of sensitive information, as listed below: · Title 18, U.S. Code 1905, makes it unlawful for any office or
employee of the U.S. · Office of Management and Budget (OMB) Circular No. A-1 30 establishes
requirements · Public Law 100-235, The Computer Security Act of 1987, creates
a means for establishing · Executive Order 12356 prescribes a uniform system for classifying,
declassifying, and 1.1.2 DEPARTMENT OF DEFENSE SECURITY POLICY DODD 5200.28, Security Requirements for Automated Information Systems
(AISs), is the Additional security documents are: · Department of Defense 5220.22-M, Industrial Security Manual
for Safeguarding · Defense Intelligence Agency Manual (DIAM) 50-4, Security of
Compartmented Computer · Director of Central Intelligence Directive (DCID) 1/16, Security
Policy for Uniform · The Supplement to DCID 1/16, Security Manual for Uniform Protection
of Intelligence · National Security Agency/Central Security Service (NSA/CSS)
Manual 130-1, The NSA/ · Air Force Regulation (AFR) 205-16, Computer Security Policy. · Army Regulation (AR) 380-19, Security: Information Systems Security. · Chief of Naval Operations Instruction (OPNAVINST) 5239.1A, Automatic
Data 1.1.3 SECURITY STANDARDS The National Computer Security Center (NCSC) is responsible for establishing
and 1.2 PURPOSE The primary purpose of this guideline is to provide guidance to ISSOs,
who are responsible This guideline provides general information and does not include requirements
for specific Finally, it is assumed that individuals who will be using this document
have some background 1.3 STRUCTURE OF THE DOCUMENT Section 2 of this document identifies the operational environment. Section
3 presents the role 2. OPERATIONAL ENVIRONMENT The ISSO performs security tasks for a site that may support several
different user · Overall mission of the site. · Overall floor layout. · Hardware configuration at the site, identifying all the devices
and the connections between · Software at the site, including operating systems, database
management systems, and · Type of information processed at the site (e.g., classified,
sensitive unclassified, and · User organization and security clearances. · Operating mode of the site (e.g., system high, dedicated, and multilevel secure). · Interconnections to other systems/networks of users, e.g., the
Automatic Digital Network · Security personnel and associated responsibilities. This documentation may be prepared jointly by the operations management
and the ISSO. 2.1 TYPE OF INFORMATION PROCESSED The information that is stored, processed, or distributed at the site
will be included in one of 2.1.1 UNCLASSIFIED Unclassified information is any information that need not be safeguarded
against disclosure, 2.1.2 SENSITIVE UNCLASSIFIED The loss, misuse, or unauthorized access to, or modification of this
information might 2.1.3 CONFIDENTIAL The unauthorized disclosure of this information or material could reasonably
be expected to 2.1.4 SECRET The unauthorized disclosure of this information or material could reasonably
be expected to 2.1.5 TOP SECRET The unauthorized disclosure of this information or material could reasonably
be expected to 2.2 SECURITY MODE OF OPERATION The Designated Approving Authority (DAA) accredits an AIS to operate
in a specific security Formal access approval is the documented approval by a data owner to
allow access to a 2.2.1 DEDICATED SECURITY MODE An AIS operates in dedicated security mode when each user with direct
or indirect individual 2.2.2 SYSTEM HIGH SECURITY MODE System high security mode is a mode of operation wherein all users having
access to the AIS 2.2.3 PARTITIONED SECURITY MODE In partitioned security mode, all users have the clearance but not necessarily
formal access An AIS operating in partitioned mode must have the technical capability
to control access to 2.2.4 COMPARTMENTED SECURITY MODE DCID 1/16 defines compartmented security mode wherein each user has a
valid clearance for 2.2.5 MULTILEVEL SECURITY MODE Multilevel security (MLS) mode is a mode of operation wherein not all
users have a clearance 3. ISSO AREAS OF RESPONSIBILITY Within an organization, the ISSO may be one or more individuals who have
the responsibility The ISSO supports two different organizations: the user organization
and the technical 3.1 ISSO TECHNICAL QUALIFICATIONS The DAA, or a designee, ensures an ISSO is named for each AIS. This individual
and the · Two years of experience in a computer related field. · One year of experience in computer security, or mandatory attendance
at a computer · Familiarization with the operating system of the AIS. · A technical degree is desirable in computer science, mathematics,
electrical engineering, 3.2 OVERVIEW OF ISSO RESPONSIBILITIES The ISSO acts for the Component Information System Security Manager (CISSM)
to ensure · Ensure that the AlS is operated, used, maintained, and disposed
of in accordance with · Ensure the AIS is accredited if it processes classified information. · Enforce security policies and safeguards on all personnel having
access to the AIS for · Ensure that users and system support personnel have the required
security clearances, · Ensure that audit trails are reviewed periodically, (e.g., weekly
or daily). Also, that audit · Initiate protective or corrective measures if a security problem is discovered. · Report security incidents in accordance with DOD 5200.1 -R and
to the DAA when an AIS · Report the security status of the AIS, as required by the DAA. · Evaluate known vulnerabilities to ascertain if additional safeguards are needed. · Maintain a plan for site security improvements and progress
towards meeting the 3.3 ISSO SECURITY RESPONSIBILITIES Command-specific duties of the ISSO have been well-defined in many regulations,
directives, 3.4 SECURITY REGULATIONS AND POLICIES The ISSO shall be aware of the directives, regulations, policies, and
guidelines that address Security Documentation. The ISSO participates in the development or revision
of site- The ISSO also provides input to other security documents, for example,
security incident Two documents that the ISSO should be familiar with, required for products
with security · The Trusted Facility Manual (TFM) details security functions
and privileges. It is designed · The Security Features User's Guide (SFUG) assists the users
of the AIS. It describes how 3.5 MISSION NEEDS The ISSO shall understand the organization's mission needs, that is,
the goals and objectives 3.6 PHYSICAL SECURITY REQUIREMENTS In general, physical security addresses facility access and the protection
of the structures and 3.6.1 CONTINGENCY PLANS The Information System Security Manager (ISSM) is responsible for the
formulation, testing, 3.6.2 DECLASSIFICATION AND DOWNGRADING OF DATA AND EQUIPMENT Declassification is a procedure and an administrative action to remove
the security The ISSO must ensure that: · Purging, declassification, and downgrading procedures are developed and implemented. · Procedures are followed for purging, declassifying, downgrading,
and destroying storage · Procedures are followed for marking, handling, and disposing
of the computer, its · Any special software needed to overwrite the site-unique storage
media is developed or · Any special hardware, such as degaussers, is available. 3.7 ADMINISTRATIVE SECURITY PROCEDURES Administrative security includes the preparation, distribution, and maintenance
of plans, 3.7.1 PERSONNEL SECURITY One component of administrative security is personnel security. In general,
it is the · Ensure that all personnel and, when required, specified maintenance
personnel who install, · Ensure that all system users, including maintenance personnel,
are educated by their · Maintain a record of valid security clearances, physical access
authorizations, and AIS · Ensure that maintenance contractors who work on the system are
supervised by an 3.7.2 SECURITY INCIDENTS REPORTING A security incident occurs whenever information is compromised, when
there is a risk of The ISSO creates a reporting mechanism, as part of the security incident
reporting procedure, The mechanism, at a minimum, includes the following: · Description of incident. · Identification of the individual reporting the security incident. · Identification of the loss, potential loss, access attempt, or misuse. · Identification of the perpetrator (if possible). · Notification of appropriate security and management personnel
and civil authorities, if · Reestablishment of protection, if needed. · Restart of operations, if the system had been taken down to facilitate the investigation. The ISSO performs the following in support of this task: · Prepares procedures for monitoring and reacting to system security
warning messages and · Develops, reviews, revises, and submits for approval to the
DAA and technical supervisor, · Immediately reports security incidents through the appropriate
security and management · Performs an initial evaluation of security problems, and, if
necessary, temporarily denies · Partially or completely suspends operations if any incident
is detected that affects security · Ensures that all cases of actual or suspected compromise of
classified passwords are · Ensures that occurrences within the system that may affect the
integrity and security of the · Assists the investigating officials in analyzing actual or suspected
compromises of 3.7.3 TERMINATION PROCEDURES The ISSO is responsible for performing the following tasks whenever any
user's access is · Removes the user from all access lists, both manual and automated. · Removes the individual's account from all systems, including the user's password. · Ensures that the individual has turned in all keys, tokens,
or cards that allow access to the · Ensures that combinations of any combination locks, associated
with the AIS and its · Ensures that all remaining personnel using systems processing
classified data change their 3.8 SECURITY TRAINING Because personnel are an integral part of the security protection surrounding
an AIS, they · All personnel (including management) have computer security
awareness training and · All users are educated regarding password management (e.g.,
generating unique · Users understand the importance of monitoring their successful
and unsuccessful logins, if The ISSO can keep users informed about security in many different ways.
Some approaches · Periodically display messages on the AIS when the user logs on to the system. · Develop and distribute security awareness posters to foster interest. · Disseminate new security information about the system and issue
reminder notices about · Issue memos to notify users of changes. · Provide "hands-on" demonstrations of AIS security features and procedures. 3.9 SECURITY CONFIGURATION MANAGEMENT Configuration management controls changes to system software, firmware,
hardware, and · Maintain an inventory of security-relevant hardware and security-relevant
software and · Maintain documentation detailing the AIS hardware, firmware,
and software configuration · Evaluate the effect on security of proposed centrally developed
and distributed and site- · Identify and analyze system malfunction. Prepare security incident reports. · Assist in the development of system development notifications
and system change · Monitor DAA-approved site procedures for controlling changes to the current system. · Ensure that any system connectivity is in response to a valid operational requirement. · Ensure that continuing tests of the site security features are
performed, and maintain · Coordinate AS security changes with the ISSM. Review all site
configuration changes and · Review physical inventory reports of security-relevant AIS equipment. Hardware and Software Installation and Maintenance. The ISSO ensures
that the · Ensure that all security-relevant development and planning activities
are reviewed and · Participate in the acquisition planning process for proposed
acquisitions to ensure that the · Ensure that security features are in place (by testing) to prevent
applications programs from · Develop procedures to prevent the installation of software from
unauthorized or · Ensure that system support personnel know how to install and maintain security features. 3.10 ACCESS CONTROL Access is considered from different perspectives: physical access to
the facility and system 3.10.1 FACILITY ACCESS Procedures shall be developed for controlling access to the site and
the site's resources. In · Establish procedures to ensure that only personnel who have
a need-to-know have access · Establish procedures to ensure that only personnel who have
the proper clearances and · Deny access to any user, customer, or visitor who is unauthorized
or suspected of violating · Ensure all visitors are signed-in and escorted, if necessary.
Visitors shall be under visual · Keep records of maintenance performed at the site. · Establish and implement procedures to control AIS equipment
coming into and going out · Develop and maintain a facility security plan that contains
at least architectural drawings · Ensure that maintenance contractors who work on the system are
supervised by an 3.10.2 IDENTIFICATION AND AUTHENTICATlON (I&A) The identification component of an I&A system consists of a set of
unique user identifiers. · Ensure that the databases required to support the I&A function
are accessible only by the · Obtain a list of all identifications (IDs) preset at the factory.
Change or delete all user IDs · Develop and administer a password management system that includes
the generation of · Ensure that only authorized persons execute system utility programs
and routines that · Maintain a site user list that contains the name, user ID, access
level, and whether the user 3.10.3 DATA ACCESS The focus of data access procedures is to prevent disclosure of information
to unauthorized · Ensure that the site-specific discretionary access control (DAC)
policy is defined and · Control access to all functions that can affect the security
or integrity of the system. Access · Ensure that any required access control software subsystems
or other security subsystems 3.11 RISK MANAGEMENT Risk management identifies, measures, and minimizes the effect of uncertain
events on · Assist in the development of the risk management plan. · Perform a risk assessment and analysis by analyzing threats
to the site and vulnerabilities · Ensure a contingency plan is in place for continuity of operations
in an emergency situation · Ensure that approved countermeasures are implemented. · Periodically review the risk assessment for new threats due
to a changed configuration or · Ensure that security tests, risk analysis, TEMPEST tests, and
other inspections are · Maintain a file of all site security-related waivers. The ISSO documents and reports computer security technical vulnerabilities
detected in AISs, · Reports identified technical vulnerabilities. As a further way
of sharing information about · Assumes responsibility for recommending any necessary and feasible
action to reduce · Develops local procedures for reporting and documenting technical
vulnerabilities, and · Ensures that vulnerability information is properly classified and protected. 3.12 AUDITS The ISSO has the primary responsibility to conduct security audits for
operational systems as 3.12.1 AUDIT TRAILS The audit trail provides a record of system security-related activity
and allows the ISSO to 3.12.2 AUDITING RESPONSIBILITIES Appropriate audit trail data shall be reviewed by the ISSO. Besides the
system audit trail, · Review specifications for inclusion of audit trail reduction
tools that will assist in audit trail · Select security events to be audited. Ensure that the audit
trail is reviewed and have the · Develop and implement audit and review procedures to ensure
that all AIS functions are · Conduct audits and maintain documentation on the results. · Supervise review of security audit parameters. Develop, review,
revise, submit for · Conduct random checks to verify compliance with the security
procedures and · Gather information from audit trails to create profiles of system
users. Observe user · Review user access reports generated by the audit trail, in
compliance with policies and · Review audit trail reports for anomalies: - Look for multiple unsuccessful logon attempts. This could be an indication
of an - Look for an attempt by a user, who is already logged in at a terminal,
to log in again - Be alert to individuals logging in after normal hours. This may mean
the user has a - Look for high numbers of unsuccessful file accesses. This could be
prompted by the - Look for unexplained changes in system activity. - Look for covert channel activity. 3.13 CERTIFICATION AND ACCREDITATION Certification is the technical evaluation of an AIS's security features,
including non-AIS · Security mode. · Set of administrative, environmental, and technical security safeguards. · Operational environment. · Interconnections to other AIS or networks. · Vulnerabilities as well as procedural and physical safeguards. The ISSO is frequently responsible for the following list of tasks in
preparation for · Assist in preparing the accreditation material required by the DAA. · Assist in the evaluation of the accreditation package. · Assist in the site surveys. · Prepare a statement to the DAA about the certification report.
The report should include a · Ensure that the site maintains the system security baseline through audits. · Notify the DAA or the DAA's representative of all configuration
changes that may change 4. SECURITY PERSONNEL ROLES Although this guideline focuses on the role and responsibility of the
ISSO, it is important to DOD regulations define security roles and responsibilities for personnel
responsible for AIS One of the roles not addressed in Table 1 or 2 is that of the Program
Manager (PM). While Table 1 Service and Agency Security Personnel Titles Level Air Force1 Army1 Navy1 DIA System Wide MAJCOM2,3 MCSSM MACOM2 ISSPM COMNAVCOMTELCOM2 MDIC or SIO2 AIS Site BCSSM CFM4 CSSO TASO ISSM ISSO TASO ADPSO ADPSSO/ISSO MSO TASO ISSO Network Site NM NSM NSO NSO NSO NSO 1. Not SCI (Sensitive Compartmented Information), SIOP-ESI (Single Integrated
Operational Plan-Extremely 2. DAA 3. There many be multiple MAJCOMs at a base, each with one or more AIS sites 4. There is only one BCSSO per base to which all CFMs provide information ADPSO ADP Security Officer ADPSSO ADP System Security Officer BCSSM Base Communications-Computer Systems Security Manager BCSSO Base Communications-Computer Systems Security Officer CFM Computer Facility Manager COMNAVCOMTELCOM Commander, Naval Computer and Telecommunications Command CSSM Communications-Computer System Security Manager CSSO Computer System Security Officer DAA Designated Approving Authority/Designated Accreditation Authority ISSM Information System Security Manager ISSO Information System Security Officer ISSPM Information System Security Program Manager MACOM Major Army Command MAJCOM Major Command (Air Force) MCSSM MAJCOM CSSM MDIC Military Department Intelligence Officer MSO Media Sanitation Officer NM Network Manager NSM Network Security Manager NSO Network Security Officer SIO Senior Intelligence Officer SSM System Security Manager TASO Terminal Area Security Officer Table 2 presents a uniform set of security roles and titles that will be used throughout this guideline. Table 2 Uniform Security Personnel Titles LEVEL STAFF POSITION System Wide (Not SCI, SIOP-ESI) DAA CISSM AIS Site ISSM ISSO TASO Network Site NSM NSO CISSM Component Information System Security Manager DAA Designated Approving Authority ISSM Information System Security Manager ISSO Information System Security Officer NSM Network Security Manager NSO Network Security Officer SCI Sensitive Compartmented Information SIOP-ESI Single Integrated Operational Plan Extremely Sensitive TASO Terminal Area Security Officer 4.1 DESIGNATED APPROVING AUTHORITY (DAA) The DAA grants final approval to operate an AIS or network in a specified
security mode. [2] · Establish, administer, and coordinate security for systems that
agency, service, or · Appoint the individuals who will directly report to the DAA. · Approve the classification level that is required for applications
that are implemented in a · Review the accreditation plan and sign the accreditation statement
for the network and each · Review the documentation to ensure that each AIS supports the
security requirements as 4.2 COMPONENT INFORMATION SYSTEM SECURITY MANAGER (CISSM) The CISSM is the focal point for policy and guidance in AIS and network
security matters · Develop and administer AIS and network security programs that
implement policy and · Establish a risk management program for the entire AIS life
cycle. This includes addressing · Identify the DAA for each unclassified system and each classified system. · Identify each system in the certification and accreditation
plan or in the system security · Advise the DAA about the use of specific security mechanisms. · Provide periodic briefings to the component management and to the DAA. · Report security vulnerabilities, maintain a record of security-related
incidents, and report · Administer a security and training awareness program. · Oversee maintenance of accreditation documentation. · Provide for overall key distribution and encryption management. · Enforce, through policy, compliance with component computer security program. 4.3 INFORMATION SYSTEM SECURITY MANAGER (ISSM) The ISSM reports to the CISSM and implements the overall security program
approved by Specific security responsibilities are: · Ensure that the AS security program requirements are met, including
defining the security · Implement the risk management program defined by the CISSM.
Verify that the risk · Verify that appropriate security tests are conducted and that the results are documented. · Review the accreditation plan and the reaccreditation activities,
develop a schedule for the · Assist in site configuration management by reviewing proposed
system changes and · Ensure that AIS security is included in all the contingency plans. · Provide the DAA with the certification package to show that
the AIS satisfies the security · Monitor AIS personnel security procedures to ensure that they
are being followed; · Maintain a current AIS security plan. 4.4 NETWORK SECURITY MANAGER (NSM) The NSM is responsible for the overall security operation of the network
and is the focal point · Ensure that an NSO is appointed for each network. · Ensure that the AIS security program requirements are met, including
defining the security · Implement the risk management program defined by the CISSM.
Verify that the risk · Verify that appropriate security tests are conducted and that the results are documented. · Review the accreditation plan and the reaccreditation activities,
develop a schedule for the · Assist in site configuration management by reviewing proposed
system changes and · Ensure that network security is included in all the contingency plans. · Provide the DAA with the certification package to show that
the network satisfies the · Provide the DAA with written certification that the satisfies
the security specifications for · Monitor implementation of AIS personnel security procedures
to ensure that they are being · Maintain a current AIS security plan. · Manage routing control for security within the network (specify
links or subnetworks that 4.5 INFORMATION SYSTEM SECURITY OFFICER (ISSO) The ISSO acts for the CISSM to ensure compliance with AIS security procedures
at the 4.6 NETWORK SECURITY OFFICER (NSO) The NSO implements the network security program and acts as the point
of contact for all · Obtain written approval from the DAA to process classified or
sensitive unclassified · Maintain the security processing specifications for the network. · Ensure that standard security procedures and measures that support
the security of the · Ensure that network security is included in all the contingency
plans and that the · Maintain the site-specific portion of the accreditation documentation. · Ensure that physical measures to protect the facility are in
effect and that measures to · Review network configuration changes and network computer changes
or modifications to · Select security events that are to be audited or remotely collected;
establish procedures for · Verify security clearances and access approval for personnel using the network. · Coordinate and monitor initial and periodic security training
for network personnel. Verify · Provide users with plans, instructions, guidance, and standard
operating procedures · Verify that personnel security procedures applicable to the
operation of the computer · Report physical, personnel, and AIS security violations to the
NSM. Report system failures · Review reported security problems and inform the NSM of security
difficulties. Ensure · Recommend partial or complete suspension of operations if any
incident is detected that · Monitor the system recovery processes to assure that security
features are correctly · Maintain guidelines that ensure that the physical, administrative,
and personnel security 4.7 TERMINAL AREA SECURITY OFFICER (TASO) The TASO reports to the ISSO and is responsible for security procedures
in an assigned · Ensure that there are written instructions specifying security
requirements and operational · Ensure access to a terminal is only to users with the need-to-know,
clearance, and access · Perform an initial evaluation of security problems in the assigned
terminal area(s) and · Verify that the physical security controls are in place and
operational, for example, · Collect and review selected remote facility audit records, document
any reported problems, · Participate in security training and awareness. · Ensure that the equipment custodian has all the component serial
numbers written down 4.8 SECURITY RESPONSIBILITIES OF OTHER SITE PERSONNEL Because the overall security of a site is subject to the cooperation
of everyone involved in the The data administrator and classifier shall: · Coordinate with the ISSO on information security requirements
and with the NSO for · Establish or confirm the overall security classification of
the applicable resources and · Periodically review the data to verify that the security classification
is correct. Recommend · Authorize individual or group access to specific resources. · Participate in the development of a formal need-to-know policy. The users shall: · Use the system only for authorized purposes and in accordance
with security procedures · Maintain individual accountability (e.g., do not share passwords). · Protect classified and other sensitive material. 4.9 ASSIGNMENT OF SECURITY RESPONSIBILITIES Table 3 presents a sample chart for identifying the roles and responsibilities
of the various Table 3 Function Matrix Function DAA CISSM ISSM NSM ISSO NSO TASO Overall Security PR IM IM IM IM IM IM Accreditation Process PR IM IM IM IN IN Recertification and PR IM IM IM IN IN AIS Security Program PR IM IM IM IM Network Security Program PR IM IM IM Network Access PR PR VE DO, VE SecurityThreats/ PR DO DO DO IN, DO DO, IN DO Security Regulations and IM IM IM IM IM IM IM Security Documentation VE DO DO DO IN IN IN Risk Management Program PR IM IM IM, IN IM, IN Security Training and PR VE VE IM,VE IM,VE IM Security Violations DO DO DO DO DO DO Security Configuration VE IM IM IM IM AIS Security Procedures PR IM, VE IM, VE IM, VE Contingency Plans PR, VE PR, VE IM, IN IM, IN IM Network Security PR IM,VE Audit PR PR PR,DO Access Control IM IM VE Physical Security VE VE VE Declassification and VE PR: has primary responsibility IM: implements enforces task or program DO: prepares documentation and submits to appropriate authority, if applicable VE: verifies compliance or performance of activities IN: assists in the preparation of reports, plans, procedures, etc. BIBLIOGRAPHY This bibliography includes documents that may be useful to the ISSO.
Included are directives, Computer Security Act of 1987, Public Law 100-235, 101 STAT. 1724, 8 January 1988. Defense Intelligence Agency, Physical Security Standards for Construction
of Sensitive Defense Intelligence Agency, Security of Compartmented Computer Operations
(U), DIA Manual Defense Intelligence Agency, Security Requirements for Automatic Data
Processing (ADP) Defense Intelligence Agency, Sensitive Compartmented Information Contractor
Administrative Department of the Air Force, Computer Security Policy, AF Regulation
205-16, FOUO, 28 April Department of the Army, Security: Information Systems Security, Army
Regulation No. 380-19,4 Department of Defense, Automated Data Processing Security Manual - Techniques
and Department of Defense, Communications Security (COMSEC) (U), Department
of Defense Department of Defense Computer Security Center, Computer Security Requirements
- Guidance Department of Defense Computer Security Center, Password Management Guideline,
CSC-STD- Department of Defense Computer Security Center, Technical Rationale Behind
CSC-STD-003-85: Department of Defense, Computer Security Technical Vulnerability Reporting
Program Department of Defense, Control of Compromising Emanations (U), DODD S-5200.19,
SECRET, Department of Defense, DOD Information Security Program, DODD 5200.1, 7June1982. Department of Defense, DOD Personnel Security Program, DODD 5200.2, 20 December 1979. Department of Defense, Industrial Security Manual for Safeguarding Classified
Information, Department of Defense, Industrial Security Program, DODD 5220.22, 1 November 1986. Department of Defense, Industrial Security Regulation, DOD Regulation
5220.22-R, December Department of Defense, Information Security Program Regulation, DOD Regulation
5200.1-R, Department of Defense, Information Security Program Regulation, DOD 5200.1
-R/AFR 205-1, Department of Defense, Security Requirements for Automated Information
Systems (AISs), DODD Department of Defense, Trusted Computer System Evaluation Criteria, DOD
5200.28-STD, Department of the Navy, Department of the Navy Automatic Data Processing
Security Program, Department of the Navy, Department of the Navy Automated Information
Systems (AIS) Security Department of the Navy Sensitive Compartmented Information (SCl)/lntelligence,
Automated Director of Central Intelligence, Security Manual for the Uniform Protection
of Intelligence Director of Central Intelligence, Security Policy for Uniform Protection
of Intelligence Processed Executive Order, National Security Information, Executive Order 12356, 2 April 1982. Ferdman, Mauro and Harriet G. Goldman and John A. Gunter, "Proposed
Management Plan for Headquarters Department of the Air Force, Information Systems: Information
Systems Security, Joint Chiefs of Staff, Safeguarding the Single Integrated Operational
Plan (SIOP) (U), Joint Chiefs of Staff, Security Policy for the WWMCCS Intercomputer Network,
JCS Pub. 6-03.7, National Computer Security Center (NCSC), Computer Viruses: Prevention,
Detection, and National Computer Security Center (NCSC), Glossary of Computer Security
Terms, NCSC-TG- National Computer Security Center, A Guide to Understanding Data Remanence
in Automated National Computer Security Center, A Guide to Understanding Trusted Facility
Management, National Computer Security Center, Trusted Network Interpretation Environments
Guideline, National Computer Security Center, Trusted Network Interpretation of
the Trusted Computer National Institute of Standards and Technology, United States Department
of Commerce, National Institute of Standards and Technology, United States Department
of Commerce, Glossary National Institute of Standards and Technology, United States Department
of Commerce, National Institute of Standards and Technology, United States Department
of Commerce, National Institute of Standards and Technology, United States Department
of Commerce, National Institute of Standards and Technology, United States Department
of Commerce, National Institute of Standards and Technology, United States Department
of Commerce, National Institute of Standards and Technology, United States Department
of Commerce, Security National Institute of Standards and Technology, United States Department
of Commerce, National Security Agency/Central Security Service (NSA/CSS), The NSA/CSS
Operational National Security Agency/Central Security Service, Security for Automated
Information Systems National Security Agency, Information System Security Products and Services
Catalogue, Cryptographic Products List Endorsed Data Encryption Standard (DES) Products List Protected Services List Evaluated Products List U.S. Government Preferred Products List Degausser Products List National Telecommunications and Information Systems Security Committee,
Advisory National Telecommunications and Information Systems Security Committee,
TEMPEST Office of Management and Budget (OMB), Internal Control Systems, OMB
Circular No. A-123, Office of Management and Budget, Management of Federal Information Resources,
OMB Office of the President, National Policy for the Security of National
Security Telecommunication Office of the President, National Policy on Telecommunications and Automated
Information Office of the Secretary of Defense, Automated Information System Security,
Memorandum for the REFERENCES 1. National Computer Security Center (NCSC), Glossary of Computer Security
Terms, NCSC- 2. Department of Defense (DOD), Security Requirements for Automated Information
Systems 3. Department of Defense, Department of Defense Trusted Computer System
Evaluation 4. National Computer Security Center, Trusted Network Interpretation
of the Trusted Computer 5. Department of Defense, Information Security Program Regulation, DOD
5200.1 -R, June 6. Department of Defense Computer Security Center, Computer Security
Requirements - 7. Director of Central Intelligence, Security Policy for Uniform Protection
of Intelligence ACRONYMS ADP Automatic Data Processing ADPSO ADP Security Officer ADPSSO ADP System Security Officer AFR Air Force Regulation AS Automated Information System AR Army Regulation BCSSM Base Communications-Computer Systems Security Manager BCSSO Base Communications-Computer Systems Security Officer CFM Computer Facility Manager CISSM Component Information System Security Manager COMNAVCOMTELCOM Commander, Naval Computer and Telecommunications Command COMPUSEC Computer Security COMSEC Communications Security COTS Commercial-Off-The-Shelf CSSM Communications-Computer System Security Manager CSSO Computer System Security Officer CSTVRP Computer Security Technical Vulnerability Reporting Program CSWG Computer Security Working Group DAA Designated Approving Authority/ Designated Accreditation Authority DAC Discretionary Access Control DCID Director of Central Intelligence Directive DES Data Encryption Standard DIA Defense Intelligence Agency DIAM Defense Intelligence Agency Manual DOD Department of Defense DODD Department of Defense Directive EO Executive Order EPL Evaluated Products List FIPS PUB Federal Information Processing System Publication FOIA Freedom of Information Act I&A Identification and Authentication ISSM Information System Security Manager ISSO Information System Security Officer ISSPM Information System Security Program Manager MAC Mandatory Access Control MACOM Major Army Command MAJCOM Major Command (Air Force) MCSSM MAJCOM CSSM MDIC Military Department Intelligence Officer MLS Multilevel Security MSO Media Sanitation Officer N Not Classified but Sensitive NACSI National Communications Security Instruction NCSC National Computer Security Center NM Network Manager NSA National Security Agency NSD National Security Directive NSDD National Security Decision Directive NSM Network Security Manager NSO Network Security Officer NSTISSAM National Security Telecommunications and Information Systems
NSTISSD National Security Telecommunications and Information Systems
NSTISSI National Security Telecommunications and Information Systems
NSTISSP National Security Telecommunications and Information Systems
NTCB Network Trusted Computing Base NTISSAM National Telecommunications and Information Systems Security
NTISSD National Telecommunications and Information Systems Security NTISSI National Telecommunications and Information Systems Security NTISSP National Telecommunications and Information Systems Security OMB Office of Management and Budget OPNAVINST Chief of Naval Operations Instruction PM Program Manager RI Risk Index SAPI Special Access Program for Intelligence SCI Sensitive Compartmented Information SFUG Security Features User's Guide SIO Senior Intelligence Officer SIOP-ESl Single Integrated Operational Plan-Extremely Sensitive Information SPEC PUB Special Publication SPM Security Program Manager SSM System Security Manager TASO Terminal Area Security Officer TCB Trusted Computing Base TCSEC Trusted Computer System Evaluation Criteria TEMPEST (Not an acronym) TFM Trusted Facility Manual TNI Trusted Network Interpretation TNIEG Trusted Network Interpretation Environments Guideline WWMCCS Worldwide Military Command and Control System GLOSSARY After each definition, the source is listed. Access. A specific type of interaction between a subject (i.e., person,
process, or input device) and Accountability. The property that enables activities on an AIS to be
traced to individuals who may Accreditation. A formal declaration by the DAA that the AIS is approved
to operate in a particular Administrative Security. The management constraints and supplemental
controls established to Audit Trail. A chronological record of system activities that is sufficient
to enable the Authenticate. To establish the validity of a claimed identity. (DOD 5200.28-STD;
JCS PUB 6- Authorization. Granting the right of access to a user, a program, or a process. (FlPS PUB 39) Automated Information System (AIS). An assembly of computer hardware,
firmware, and Certification. The technical evaluation, made as part of and in support
of the accreditation process, Classified Information. Information or material that is (a) owned by,
produced for or by, or under Closed Security Environment. An environment that includes those systems
in which both of the a. Application developers (including maintainers) have sufficient clearances
and b. Configuration control provides sufficient assurance that applications
are protected Communications Security (COMSEC). The protection that insures the authenticity
of Compartmented Mode. An AIS is operating in compartmented mode when each
user with direct a. A valid personnel clearance for the most restricted information processed in the AIS. b. Formal access approval for, and has signed nondisclosure agreements
for that c. A valid need-to-know for that information to which he-she is to have
access. (NCSC-TG- Compromising Emanations. Unintentional data related or intelligence-bearing
signals which, if |