Information Security (INFOSEC) - Secure Room Storage Standards - Door Construction
An XCCDF Rule
Description
<VulnDiscussion>Failure to meet construction standards could result in the undetected loss or compromise of classified material. REFERENCES: CJCSI 6510.01F, INFORMATION ASSURANCE (IA) AND SUPPORT TO COMPUTER NETWORK DEFENSE (CND), Encl A, paragraph 7.f.; Encl C, paragraph 10.a., and 10.b. NIST Special Publication 800-53 (SP 800-53), Rev 4, Controls: MP-4, PE-3 and PE-5 DoD Manual 5200.01, Volume 3, SUBJECT: DoD Information Security Program: Protection of Classified Information: Encl 3, para 1.b, 14.b. and Appendix to Encl 3, para 1.b.(3), 2.e.(4) and Glossary page 122, vault definition. Information Security Oversight Office, 32 CFR Parts 2001 and 2003 Classified National Security Information: paragraph 2001.53 Open storage areas, (b) Doors. DoD 5220.22-M (NISPOM), Incorporating Change 2, 18 May 2016, Chapter 5, Section 8, Construction Requirements.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-245796r1008544_rule
- Severity
- High
- Updated
Remediation - Manual Procedure
All secure room doors (*containing inspectable SIPRNet assets) must meet the following standards:
1. The doors to the room (primary and secondary) shall be substantially constructed of wood or metal.
2. For outswing doors, hinge-side protection shall be provided by making hinge pins nonremovable (i.e. spot welding) or by using hinges with interlocking leaves that prevent removal. There are certain hinge pins made with internal locking pins or locking flanges and are acceptable if they cannot be removed.