Skip to content
Log In

I - Mission Critical Public

Rules and Groups employed by this XCCDF Profile

  • IS-02.01.07

    Group
    Show

  • Information Security (INFOSEC) - Secure Room Storage Standards - Intrusion Detection System (IDS)

    Failure to meet standards for maintenance and validation of structural integrity of the physical perimeter surrounding a secure room (AKA: collateral classified open storage area) IAW DoD Manual 52...
    Rule High Severity
    Show

  • IS-02.01.08

    Group
    Show

  • Information Security (INFOSEC) - Secure Room Storage Standards - Balanced Magnetic Switch (BMS) on Perimeter Doors

    Failure to meet standards for ensuring that there is structural integrity of the physical perimeter surrounding a secure room (AKA: collateral classified open storage area) IAW DoD Manual 5200.01, ...
    Rule High Severity
    Show

  • IS-02.01.09

    Group
    Show

  • Information Security (INFOSEC) - Secure Room Storage Standards - Interior Motion Detection

    Failure to meet standards for ensuring that there is structural integrity of the physical perimeter surrounding a secure room (AKA: collateral classified open storage area) IAW DoD Manual 5200.01, ...
    Rule High Severity
    Show

  • IS-02.01.10

    Group
    Show

  • Information Security (INFOSEC) - Secure Room Storage Standards - Four (4) Hour Random Checks in Lieu of Using Intrusion Detection System (IDS)

    Failure to meet standards for ensuring that there is structural integrity of the physical perimeter surrounding a secure room (AKA: collateral classified open storage area) IAW DoD Manual 5200.01, ...
    Rule High Severity
    Show

  • IS-02.01.11

    Group
    Show

  • Vault/Secure Room Storage Standards - IDS Transmission Line Security

    Failure to meet standards for ensuring integrity of the intrusion detection system signal transmission supporting a secure room (AKA: collateral classified open storage area) containing SIPRNet ass...
    Rule High Severity
    Show

  • IS-02.01.12

    Group
    Show

  • Vault/Secure Room Storage Standards - IDS Access/Secure Control Units Must be Located within the Secure Room Space

    Failure to ensure that IDS Access and Secure Control Units used to activate and deactivate alarms (primarily motion detectors) within vaults or secure rooms protecting SIPRNet assets are not locate...
    Rule High Severity
    Show

  • IS-02.01.13

    Group
    Show

  • Information Security (IS) - Continuous Operations Facility: Access Control Monitoring Methods

    Failure to control door access to a Continuous Operations Facility containing classified SIPRNET assets may result in immediate and potentially undetected access to classified information, with no ...
    Rule High Severity
    Show

  • IS-02.01.14

    Group
    Show

  • Vault/Secure Room Storage Standards - Access Control During Working Hours Using Visual Control OR Automated Entry Control System (AECS) with PIN / Biometrics

    Failure to properly monitor and control collateral classified open storage area access doors during working hours (while the FF-L-2740 combination lock is not secured) could result in an undetecte...
    Rule High Severity
    Show

  • IS-02.01.15

    Group
    Show

  • Vault/Secure Room Storage Standards - Automated Entry Control System (AECS) and Intrusion Detection System (IDS) Head-End Equipment Protection: The physical location (room or area) containing AECS and IDS head-end equipment (server and/or work station/monitoring equipment) where authorization, personal identification or verification data is input, stored, or recorded and/or where system status/alarms are monitored must be physically protected.

    Inadequate physical protection of Intrusion Detection System or Automated Entry Control System servers, data base storage drives, or monitoring work stations could result in unauthorized access to ...
    Rule High Severity
    Show

  • IS-02.02.01

    Group
    Show

  • Information Security (INFOSEC) - Secure Room Storage Standards - Structural Integrity Checks

    Failure to ensure that there is structural integrity of the physical perimeter surrounding a secure room (AKA: collateral classified open storage area) IAW DOD Manual 5200.01, Volume 3 could result...
    Rule Medium Severity
    Show

  • IS-02.02.02

    Group
    Show

  • Vault/Secure Room Storage Standards - IDS Performance Verification

    Failure to test IDS functionality on a periodic basis could result in undetected alarm sensor or other system failure. This in-turn could result in an undetected intrusion into a secure room (AKA...
    Rule Medium Severity
    Show

  • IS-02.02.03

    Group
    Show

  • Vault/Secure Room Storage Standards - Masking of IDS Sensors Displayed at the Intrusion Detection System (IDS) Monitoring Station

    Failure to meet standards for the display of masked alarm sensors at the IDS monitoring station could result in the location with masked or inactive sensors not being properly supervised. This cou...
    Rule Medium Severity
    Show

  • IS-02.02.04

    Group
    Show

  • Vault/Secure Room Storage Standards - IDS Alarm Monitoring Indicators, both audible and visual (Alarm Status) must be displayed for each sensor or alarmed zone at the monitoring station.

    Failure to meet standards for the display of audible and visual alarm indicators at the IDS monitoring station could result in an a sensor going into alarm state and not being immediately detected....
    Rule Medium Severity
    Show

  • IS-02.02.05

    Group
    Show

  • Vault/Secure Room Storage Standards - Intrusion Detection System (IDS) / Automated Entry Control System (AECS) Primary and Emergency Power Supply

    Failure to meet standards for ensuring that there is an adequate commercial and back-up power sources for IDS/AECS with uninterrupted failover to emergency power could result in a malfunction of th...
    Rule Medium Severity
    Show

  • IS-02.02.06

    Group
    Show

  • Vault/Secure Room Storage Standards - Intrusion Detection System and Automated Entry Control System (IDS/AECS) Component Tamper Protection

    Failure to tamper protect IDS/AECS component enclosures and access points external to protected vaults/secure rooms space could result in the undetected modification or disabling of IDS/AECS system...
    Rule Medium Severity
    Show

  • IS-02.02.07

    Group
    Show

  • Vault/Secure Room Storage Standards - Primary IDS Monitoring Location Outside the Monitored Space

    Failure to locate the alarm monitoring station at an external location; at a safe distance from the space being monitored, to ensure that it is not involved in any surprise attack of the alarmed sp...
    Rule Medium Severity
    Show

  • IS-02.02.08

    Group
    Show

  • Vault/Secure Room Storage Standards - Automated Entry Control System (AECS) Records Maintenance, which includes documented procedures for granting and removal of access.

    Failure to document procedures for removal of access and inadequate maintenance of access records for both active and removed persons could result in unauthorized persons having unescorted access t...
    Rule Medium Severity
    Show

  • IS-02.02.09

    Group
    Show

  • Vault/Secure Room Storage Standards - Automated Entry Control System (AECS) Transmission Line Security: AECS Transmission lines traversing an uncontrolled area (not within at least a Secret Controlled Access Area (CAA) ) shall use line supervision OR Electrical, mechanical, or electromechanical access control devices, which do not constitute an AECS that are used to control access during duty hours must have all electrical components, that traverse outside minimally a Secret Controlled Access Area (CAA), secured within conduit.

    Persons not vetted to at least the same level of classification residing on the information systems being protected by the AECS or other access control system components could gain access to the un...
    Rule Medium Severity
    Show

  • IS-02.02.10

    Group
    Show

  • Vault/Secure Room Storage Standards - Automated Entry Control System (AECS) Door Locks: Electric Strikes and/or Magnetic Locking devices used in access control systems shall be heavy duty, industrial grade and be configured to fail secure in the event of a total loss of power (primary and backup).

    There are a variety of locking mechanisms that may be used to secure both primary and secondary doors for vaults and classified open storage areas (secure rooms). While the primary access door is ...
    Rule Medium Severity
    Show

  • IS-02.02.11

    Group
    Show

  • Information Security (INFOSEC) - Secure Room Storage Standards - Perimeter Construction using Proper Permanent Construction Materials for True Ceiling, Walls and Floors.

    Failure to meet standards for ensuring that there is structural integrity of the physical Perimeter surrounding a secure room (AKA: collateral classified open storage area) could result in a lack o...
    Rule Medium Severity
    Show

  • IS-02.03.01

    Group
    Show

  • Vault/Secure Room Storage Standards - Automated Entry Control System (AECS) Keypad Device Protection: Keypad devices designed or installed in a manner that an unauthorized person in the immediate vicinity cannot observe the selection of input numbers.

    If someone were to successfully observe an authorized user's selection of numbers for their PIN at an entrance to a classified storage area or unclassified but sensitive computer room it could res...
    Rule Low Severity
    Show

  • IS-03.02.01

    Group
    Show

  • Marking Classified - Equipment, Documents or Media: In a classified operating environment, all unclassified items must be marked in addition to all classified items.

    Failure to properly mark classified material could result in the loss or compromise of classified information. REFERENCES: The Information Security Oversight Office (ISOO): http://www.archives.go...
    Rule Medium Severity
    Show

  • IS-03.03.01

    Group
    Show

  • Marking Classified - Local or Enclave Classified Marking Procedures must be developed to ensure employees are familiar with appropriate organization Security Classification Guides (SCG), how to obtain guidance for marking classified documents, media and equipment, and where associated forms, classified cover sheets, labels, stamps, wrapping material for classified shipment, etc. can be obtained.

    Failure to properly mark classified material could result in the loss or compromise of classified information. REFERENCES: The Information Security Oversight Office (ISOO): http://www.archives.go...
    Rule Low Severity
    Show

  • IS-04.03.01

    Group
    Show

  • Classified Working Papers are properly marked, destroyed when no longer needed, or treated as a finished document after 180 days.

    Failure to properly mark or handle classified documents can lead to the loss or compromise of classified or sensitive information. REFERENCES: The Information Security Oversight Office (ISOO): ht...
    Rule Low Severity
    Show

  • IS-05.01.01

    Group
    Show

  • Storage/Handling of Classified Documents, Media, Equipment - must be under continuous personal protection and control of an authorized (cleared) individual OR guarded or stored in an approved locked security container (safe), vault, secure room, collateral classified open storage area or SCIF.

    Failure to store classified in an approved container OR to properly protect classified when removed from storage can lead to the loss or compromise of classified or sensitive information. REFERENC...
    Rule High Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules