I - Mission Critical Sensitive
Rules and Groups employed by this XCCDF Profile
-
IS-02.02.07
<GroupDescription></GroupDescription>Group -
Vault/Secure Room Storage Standards - Primary IDS Monitoring Location Outside the Monitored Space
<VulnDiscussion>Failure to locate the alarm monitoring station at an external location; at a safe distance from the space being monitored, to...Rule Medium Severity -
IS-02.02.08
<GroupDescription></GroupDescription>Group -
Vault/Secure Room Storage Standards - Automated Entry Control System (AECS) Records Maintenance, which includes documented procedures for granting and removal of access.
<VulnDiscussion>Failure to document procedures for removal of access and inadequate maintenance of access records for both active and removed...Rule Medium Severity -
IS-02.02.09
<GroupDescription></GroupDescription>Group -
Vault/Secure Room Storage Standards - Automated Entry Control System (AECS) Transmission Line Security: AECS Transmission lines traversing an uncontrolled area (not within at least a Secret Controlled Access Area (CAA) ) shall use line supervision OR Electrical, mechanical, or electromechanical access control devices, which do not constitute an AECS that are used to control access during duty hours must have all electrical components, that traverse outside minimally a Secret Controlled Access Area (CAA), secured within conduit.
<VulnDiscussion>Persons not vetted to at least the same level of classification residing on the information systems being protected by the AE...Rule Medium Severity -
IS-02.02.10
<GroupDescription></GroupDescription>Group -
Vault/Secure Room Storage Standards - Automated Entry Control System (AECS) Door Locks: Electric Strikes and/or Magnetic Locking devices used in access control systems shall be heavy duty, industrial grade and be configured to fail secure in the event of a total loss of power (primary and backup).
<VulnDiscussion>There are a variety of locking mechanisms that may be used to secure both primary and secondary doors for vaults and classifi...Rule Medium Severity -
IS-02.02.11
<GroupDescription></GroupDescription>Group -
Information Security (INFOSEC) - Secure Room Storage Standards - Perimeter Construction using Proper Permanent Construction Materials for True Ceiling, Walls and Floors.
<VulnDiscussion>Failure to meet standards for ensuring that there is structural integrity of the physical Perimeter surrounding a secure room...Rule Medium Severity -
IS-02.03.01
<GroupDescription></GroupDescription>Group -
Vault/Secure Room Storage Standards - Automated Entry Control System (AECS) Keypad Device Protection: Keypad devices designed or installed in a manner that an unauthorized person in the immediate vicinity cannot observe the selection of input numbers.
<VulnDiscussion>If someone were to successfully observe an authorized user's selection of numbers for their PIN at an entrance to a classifie...Rule Low Severity -
IS-03.02.01
<GroupDescription></GroupDescription>Group -
Marking Classified - Equipment, Documents or Media: In a classified operating environment, all unclassified items must be marked in addition to all classified items.
<VulnDiscussion>Failure to properly mark classified material could result in the loss or compromise of classified information. REFERENCES: ...Rule Medium Severity -
IS-03.03.01
<GroupDescription></GroupDescription>Group -
Marking Classified - Local or Enclave Classified Marking Procedures must be developed to ensure employees are familiar with appropriate organization Security Classification Guides (SCG), how to obtain guidance for marking classified documents, media and equipment, and where associated forms, classified cover sheets, labels, stamps, wrapping material for classified shipment, etc. can be obtained.
<VulnDiscussion>Failure to properly mark classified material could result in the loss or compromise of classified information. REFERENCES: ...Rule Low Severity -
IS-04.03.01
<GroupDescription></GroupDescription>Group -
Classified Working Papers are properly marked, destroyed when no longer needed, or treated as a finished document after 180 days.
<VulnDiscussion>Failure to properly mark or handle classified documents can lead to the loss or compromise of classified or sensitive informa...Rule Low Severity -
IS-05.01.01
<GroupDescription></GroupDescription>Group -
Storage/Handling of Classified Documents, Media, Equipment - must be under continuous personal protection and control of an authorized (cleared) individual OR guarded or stored in an approved locked security container (safe), vault, secure room, collateral classified open storage area or SCIF.
<VulnDiscussion>Failure to store classified in an approved container OR to properly protect classified when removed from storage can lead to ...Rule High Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.