Technical Specifications for Construction and
Management of Sensitive Compartmented
Information Facilities
VERSION 1.5
IC Tech Spec for ICD/ICS 705
An Intelligence Community Technical Specification
Prepared by the
National Counterintelligence and Security Center
March 13, 2020
This page intentionally left blank.
OFFICE OF THE DIRECT OR OF NATIONAL INTELLIGENCE
DIRECT OR OF THE NATIONAL COUNTERINTELLIGENCE AND SECURITY CENTER
WASHINGTO N, DC 20511
NCSC 19-686
MEMORANDUM FOR:
SUBJECT:
REFERENCES:
Distribution
Technical Specifications for Construction and Management
of Sensitive Compartmented Information Facilities, Version
1.5
A.
(U) D/NCSC Memo NCSC-19-329, Technical Specifications
for Construction and Management of Sensitive Compartmented
Information Facilities, Version 1.4, 28 Sep 17 (U)
B.
(U) Technical Specifications, Version 1.4, 28 Sep 17 (U)
C.
(U) IC D 705, Sensitive Compartmented Information Facilities,
26 May 10 (U)
D.
(U) ICS 705-01, Physical and Technical Standards for Sensitive
Compartmented Information Facilities, 27 Sep 10 (U)
E.
(U) ICS 705-02, Standards for the Accreditation and Reciprocal
Use of Sensitive Compartmented Information Facilities, 22
Dec 16 (U)
This memorandum promulgates Version 1.5 of the Technical Specification for
Construction and Management of Sensitive Compartmented Information Facilities to the
Intelligence Community, which replaces Version 1.4 (Ref A), effective immediately.
The Technical Specifications was designed to be a living document that enables periodic
updates to keep up with changing and emerging technology. Based on input from the
Int elligence Community (IC) and as a result of a cooperative effort by physical and technical
experts from IC elements and our industrial partners, this Version 1.5 of the Technical
Specifications has been updated to meet the needs of the community and enhance the
standards identified in ICS 705-01, Physical Security Standards for Sensitive Compartmented
Information
Facilities (Ref C) and ICS 705-02, Standards for the Accreditation and
Reciprocal Use of Sensitive Compartmented Information Facilities (Ref D).
Qu estions may be directed to the National Counterintelligence and Security Center's
Special Security Directorate
NI-NCSC-SSD-CSG-PTSP-Mailbox@cia.ic.gov.
William R. Evanina
Date
UNCLASSIFIED
SUBJECT: Technical Specifications for Construction and Management of Sensitive
Compartmented Information Facilities, Version 1.5
ii
UNCLASSIFIED
Distribution:
Secretary of State, Department of State
Secretary of the Treasury, Department of the Treasury
Secretary of Defense, Department of Defense
Attorney General, Department of Justice
Secretary of the Interior, Department of the Interior
Secretary of Agriculture, Department of Agriculture
Secretary of Commerce, Department of Commerce
Secretary of Labor, Department of Labor
Secretary of Health and Human Services, Department of Health and Human Services
Secretary of Housing and Urban Development, Department of Housing and Urban
Development Secretary of Transportation, Department of Transportation
Secretary of Energy, Department of Energy
Secretary of Education, Department of Education
Secretary of Veterans Affairs, Department of Veterans Affairs
Secretary of Homeland Security, Department of Homeland Security
Administrator, Executive Office of the President
Administrator, Environmental Protection Agency
Director, Office of Management and Budget
United States Trade Representative
Administrator, Small Business Administration
Director, National Drug Control Policy
Director, Central Intelligence Agency
Administrator, Equal Employment Opportunity Commission
Chairman, Federal Communications Commission
Chairman, Federal Maritime Commission
Chairman, Federal Reserve System
Chairman, Federal Trade Commission
Administrator, General Services Administration
Administrator, National Aeronautics and Space Administration
Archivist, National Archives and Records Administration
Director, National Science Foundation
Chairman, Nuclear Regulatory Commission
Director, Office of Government Ethics
Chairman, Privacy and Civil Liberties Oversight Board
Chairman, Security and Exchange Commission
Director, Selective Service System
Commissioner, Social Security Administration
Administrator, United States Agency for International Development
United States Postal Service
Chairman, United States International Trade Commission
Director, United States Peace Corps
UNCLASSIFIED
SUBJECT: Technical Specifications for Construction and Management of Sensitive
Compartmented Information Facilities, Version 1.5
iii
UNCLASSIFIED
Distribution, cont.:
Office of the Chief Administrative Officer
Change History
iv
Change History
Date
Page
Changes
Approver
04/23/12
Cover
Banner Graphic, Version, Date
PTSEWG
04/23/12
4
Added note to warn users of
classification when associating threat
information and facility location.
PTSEWG
04/23/12
5
Re-worded approval of CAs to
designate the AO as the primary
approval authority of Compartmented
Areas within SCIFs.
PTSEWG
04/23/12
9-10
Changed “Type X Gypsum” to
“wallboard” to remove the standard of
fire resistant gypsum and permit use of
other wallboard types.
PTSEWG
04/23/12
9-10
Changed references to wall design
drawings to “suggested” wall types to
enable variety of wall construction
techniques to meet the security
standards.
PTSEWG
04/23/12
10
Added explanation to glue and screw
plywood to ceiling and floor to clarify
standard. Stud placement changed to 16
on center to match drawing and correct
error.
PTSEWG
04/23/12
11
Added statement to finish wall and
paint from true floor to true ceiling in
Walls B and C to clarify and equal
Type A Wall.
PTSEWG
04/23/12
9-10
Replaced drawings to reflect
“suggested” wall construction methods
and remove references to “Type X
gypsum wallboard”.
PTSEWG
04/23/12
17-19
Replaced drawings to reflect
“suggested” wall construction methods
and remove references to “Type X
gypsum wallboard”.
PTSEWG
04/23/12
56
Updated Federal Information
Processing Standards (FIPS) encryption
standards and certification to remove a
standard that could not be met by
commercial alarm systems.
PTSEWG
04/23/12
64
Replaced FIPS 140-2 with Advanced
Encryption Standard (AES) to remove
a standard that could not be met by
commercial alarm systems.
PTSEWG
Change History
v
Rev. #
Date
Page
Changes
Approver
1.2
04/23/12
TEMPEST
Checklist
Removed references to “inspectable
space” as requested by the TEMPEST
Advisory Group (TAG).
PTSEWG
1.2
04/23/12
TEMPEST
Checklist
Removed references to “Red-SCI”
information.
PTSEWG
1.2
04/23/12
TEMPEST
Checklist
Removed parenthetical reference to cell
phones and Bluetooth.
PTSEWG
1.2
04/23/12
CA
Checklist
Replaced Compartmented Area
Checklist to reflect IC standards.
PTSEWG
1.2
04/23/12
SCIF Co-Use
Request and
MOA Form
Replaced Co-Use and MOA Form to
include “joint-use” statements.
PTSEWG
1.3
03/26/15
Cover
Banner change, version, date
PTSEWG
1.3
03/26/15
B-C
Appended “D/NCSC Memorandum”
PTSEWG
1.3
03/26/15
D-G
“Appended Change History”
PTSEWG
1.3
03/26/15
3
Chapter 2.A (2)(a) Added: “NOTE”
regarding prefabricated modular SCIFs.
PTSEWG
1.3
03/26/15
9
Chapter 3.C
Corrected wording to match wall
drawings on p.21.
PTSEWG
1.3
03/26/15
14
Chapter 3.G (7)(c.4) Correction and
addition of guidance on vents and ducts
perimeter protection.
PTSEWG
1.3
03/26/15
17-19
Reformatted wall types to reflect
correct architectural graphics for
prescribed materials.
PTSEWG
1.3
03/26/15
53
Chapter 7.A (2)(d)
Added requirement for HSS switches.
PTSEWG
1.3
03/26/15
54
Chapter 7.A (2)(k) Changed to
reflect restrictions on dissemination of
installation plans.
PTSEWG
1.3
03/26/15
54
Chapter 7.A (3)(a.2) Added
exception that sensors must be located
within SCIF perimeter.
PTSEWG
1.3
03/26/15
55
Chapter 7.A (3)(b.7.e) Replaced
“Zones” with “IDE sensor points”.
PTSEWG
1.3
03/26/15
56
Chapter 7.A (3)(c.1) Added
language for approval authority.
PTSEWG
1.3
03/26/15
56
Chapter 7.A (3)(c.2) Added
language for integrated IDS and
Remote Access.
PTSEWG
1.3
03/26/15
56-57
Chapter 7.A (3)(c.2) Added system
application software requirements.
PTSEWG
1.3
03/26/15
58-59
Replaced “access/secure” with
“arm/disarm” throughout.
PTSEWG
Change History
vi
Rev. #
Date
Page
Changes
Approver
1.3
03/26/15
58
Chapter 7.B (2) Added “A
record shall be maintained that
identifies the person responsible for
disarming the system”.
PTSEWG
1.3
03/26/15
87
Chapter 12.G (2)
Changed Section header to read
“Inspections/Reviews, added same
where the term “inspection” or
“review” used. The responsibility to
perform as such was changed from “IC
element head” to the AO, or designee.
PTSEWG
1.3
03/26/15
SCIF Co-Use
Request and
MOA Form
Appended Co-Use Request and MOA
Form
PTSEWG
1.4
06/27/17
Cover
Banner change, version, date
PTSEWG
1.4
06/27/17
i-iii
Appended “D/NCSC Memorandum”
PTSEWG
1.4
06/27/17
iv-vii
“Appended Change History”
PTSEWG
1.4
06/27/17
1
Chapter 1.B.2
Added SAPF Language
PTSEWG
1.4
06/27/17
12
Chapter 3.E.1.b
Added egress device language
PTSEWG
1.4
06/27/17
60
Chapter 7.C.1.c
Added, “…IAW UL 2050 requirements
(60 minutes)”
PTSEWG
1.4
06/27/17
71-74
Chapter 10 Revised
PTSEWG
1.4
06/27/17
75-76
Chapter 11.B.5
Added sub-bullets to address CNSSI
5002
PTSEWG
1.4
06/27/17
90-91
Chapter 12.L1/2/7
Added clarification language
PTSEWG
1.4
06/27/17
91-92
Chapter 12.M.4
Synchronized bullets
PTSEWG
1.5
11/13/19
3-4
Chapter 2.A.3.a
Added clarification language
PTSEWG
1.5
11/13/19
5-6
Chapter 2.C.2
Defined CA Types
PTSEWG
1.5
11/13/19
8
Chapter 3. Added Pre-Construction
Checklist language
PTSEWG
1.5
11/13/19
13-15
Chapter 3.E
Expanded SCIF Door Criteria
PTSEWG
1.5
11/13/19
30
Chapter 4.E.2
Added reference to Inspectable
Materials Checklist
PTSEWG
Change History
vii
1.5
11/13/19
35
Chapter 5.A
Added language in Applicability
PTSEWG
1.5
11/13/19
46
Chapter 6.A.1.a
Added exception language
PTSEWG
1.5
11/13/19
74-77
Chapter 10
Changed “CSA” to “AO” where
appropriate
PTSEWG
1.5
11/13/19
90
Chapter 12.G.8
Added TSCM language to
Inspections/Reviews
PTSEWG
1.5
11/13/19
95-97
Chapter 12.N/O/P
Added CUA instructions
PTSEWG
1.5
11/13/19
98
Chapter 13
Updated FFC and added CUA Guide
and Cancellation Forms, Inspectable
Materials Checklist, Pre-
Construction Checklist
PTSEWG
This page intentionally left blank.
viii
Table of Contents
ix
Table of Contents
Chapter 1. Introduction………………………………………………………………………
1
A. Purpose…………………………………………………………………………………
1
B. Applicability……………………………………………………………………………
1
Chapter 2. Risk Management………………………………………………………………...
3
A. Analytical Risk Management Process…………………………………………………
3
B. Security in Depth (SID)……………………………………………………………….
4
C. Compartmented Area (CA) …………………………………………………………...
5
Chapter 3. Fixed Facility SCIF Construction………………………………………………...
8
A. Personnel…………………………………………………………………………........
8
B. Construction Security…………………………………………………………………..
9
C. Perimeter Wall Construction Criteria………………………………………………….
10
D. Floor and Ceiling Construction Criteria……………………………….………….…...
13
E. SCIF Door Criteria………………………………………………………………….…
13
F.
SCIF Window Criteria…......
…………………………………………………..…….15
G.
SCIF Perimeter Penetrations Criteria…………………………………………………. 15
H. Alarm Response Time Criteria for SCIFs within the U.S. ……………………………
17
I. Secure Working Areas (SWA) ………………………………………………………..
17
J. Temporary Secure Working Area (TSWA) …………………………………………..
18
Chapter 4. SCIFs Outside the U.S. and NOT Under Chief of Mission (COM) Authority…..
23
A. General…………………………………………………………………………………
23
B. Establishing Construction Criteria Using Threat Ratings……………………………..
23
C. Personnel……………………………………………………………………………….
26
D. Construction Security Requirements………………………………………………….
27
E. Procurement of Construction Materials………………………………………………..
30
F. Secure Transportation for Construction Material………………………………………
31
G. Secure Storage of Construction Material………………………………………………
32
H. Technical Security…………………………………………………………………….
33
I. Interim Accreditations…………………………………………………………………
33
Chapter 5. SCIFs Outside the U.S. and Under Chief of Mission Authority…………………
35
A. Applicability……………………………………………………………………………
35
B. General Guidelines……………………………………………………………………..
35
C. Threat Categories………………………………………………………………………
36
D. Construction Requirements……………………………………………………………
36
E. Personnel……………………………………………………………………………….
38
F. Construction Security Requirements………………………………………………….
39
G. Procurement of Construction Materials………………………………………………..
42
H. Secure Transportation for Construction Material………………………………………
43
I. Secure Storage of Construction Material………………………………………………
44
Table of Contents
x
J.
Technical Security…………..
…………………………………………………………....44
K. Interim Accreditations…………………………………………………………………
45
Chapter 6. Temporary, Airborne, and Shipboard SCIFs…………………………………….
46
A. Applicability…………………………………………………………………………..
46
B. Ground-Based T-SCIFs……………………………………………………………….
46
C. Permanent and Tactical SCIFS Aboard Aircraft……………………………………...
48
D. Permanent and Tactical SCIFs on Surface or Subsurface Vessels……………………
50
Chapter 7. Intrusion Detection Systems (IDS) ………………………………………………
56
A. Specifications and Implementation Requirements……………………………………..
56
B. IDS Modes of Operation……………………………………………………………….
61
C. Operations and Maintenance of IDS……………………………………………………
63
D. Installation and Testing of IDS…………………………………………………………
64
Chapter 8. Access Control Systems (ACS) …………………………………………………
66
A. SCIF Access Control………………………………………………………………….
66
B. ACS Administration……………………………………………………………………
67
C. ACS Physical Protection……………………………………………………………….
67
D. ACS Recordkeeping……………………………………………………………………
67
.
E. Using Closed Circuit Television (CCTV) to Supplement ACS………………………..
68
F. Non-Automated Access Control……………………………………………………….
68
Chapter 9. Acoustic Protection………………………………………………………………
70
A. Overview……………………………………………………………………………….
70
B. Sound Group Ratings…………………………………………………………………..
70
C. Acoustic Testing………………………………………………………………………
70
D. Construction Guidance for Acoustic Protection……….………………………………
71
E. Sound Transmission Mitigations……………………………………………………….
71
Chapter 10. Portable Electronic Devices with Recording Capabilities and Embedded
Technologies (PEDs/RCET)………………………………….…………….…………………
74
A. Approved Use of PEDs/RECET in a SCIF……………………………………………
74
B. Prohibitions…………………………………………………………………………….
75
C. PED/RCET Risk Levels……………………………………………………………….
75
D. Risk Mitigation…………………………………………………………………………
76
Chapter 11. Telecommunications Systems…………………………………………………..
78
A. Applicability……………………………………………………………………………
78
B. Unclassified Telephone Systems……………………………………………………….
78
C. Unclassified Information Systems……………………………………………………..
80
D. Using Closed Circuit Television (CCTV) to Monitor the SCIF Entry Point(s) ………
80
E. Unclassified Wireless Network Technology………………………………………….
80
F. Environmental Infrastructure Systems…………………………………………………
81
G. Emergency Notification Systems………………………………………………………
81
Table of Contents
xi
H. System Access…………………………………………………………………………
82
I. Unclassified Cable Control…………………………………………………………….
82
J. Protected Distribution Systems…………………………………………………………
83
K. References……………………………………………………………………………....83
Chapter 12. Management and Operations……………………………………………………
86
A. Purpose…………………………………………………………………………………
86
B. SCIF Repository……………………………………………………………………….
86
C
.
SCIF Management…………………………………………………………….......…... 87
D. SOPs………………………………………….………………………………….....… 88
E.
Changes in Security and Accreditation……………………………………………..…. 89
F. General………………………………………………...……………………………… 89
G. Inspections/Reviews……………………………………………………………………
90
H. Control of Combinations……………………………………………………………….
90
I. De-Accreditation Guidelines…………………………..……………………….………
91
J. Visitor Access…………………………………………………………………………..
91
K. Maintenance……..………………………………………………….………………… 93
L. IDS and ACS Documentation Requirements……………………………….…………..
93
M. Emergency Plan………………………………………………………………………..
94
N. SCIF Co-Use and Joint Use……..……………………………………………………..
95
O. CUA Form and Instructions…..………………………………………………………..
96
P. CUA Cancellation..……………………………………………………………………..
97
Chapter 13. Forms and Plans…………………………………………………………………
98
Fixed Facility Checklist
TEMPEST Checklist
Compartmented Area Checklist
Shipboard Checklist
Submarine Checklist
Aircraft/UAV Checklist
SCIF Co-Use/Joint-Use Request
SCIF Co-Use/Joint-Use Request Users Guide
Cancellation of SCIF Co-Use/Joint-Use
Pre-Construction Checklist
Construction Security Plan (CSP)
Inspectable Materials Checklist
xii
This page intentionally left blank.
Chapter 1
Introduction
1
Chapter 1. Introduction
A.
Purpose
This Intelligence Community (IC) Technical Specification sets forth the physical and
technical security specifications and best practices for meeting standards of Intelligence
Community Standard (ICS) 705-01 (Physical and Technical Standards for Sensitive
Compartmented Information Facilities). When the technical specifications herein are applied
to new construction and renovations of Sensitive Compartmented Information Facilities
(SCIFs), they shall satisfy the standards outlined in ICS 705-01 to enable uniform and
reciprocal use across all IC elements and to assure information sharing to the greatest extent
possible. This document is the implementing specification for Intelligence Community
Directive (ICD) 705 (Sensitive Compartmented Information Facilities), ICS 705-01, and ICS
705-02 (Standards for Accreditation and Reciprocal Use of Sensitive Compartmented
Information Facilities.
The specifications contained herein will facilitate the protection of Sensitive Compartmented
Information (SCI) against compromising emanations, inadvertent observation and disclosure
by unauthorized persons, and the detection of unauthorized entry.
B.
Applicability
IC Elements shall fully implement this standard within 180 days of its signature.
1.
SCIFs that have been de-accredited but controlled at the SECRET level (IAW 32
Code of Federal Regulations (CFR) parts 2001 and 2004) for less than one year may
be re-accredited. The IC SCIF repository shall indicate that the accreditation was
based upon the previous standards.
2.
When the technical specifications herein have been applied to new construction,
renovations, and operation of Special Access Program Facilities (SAPFs), those
facilities shall satisfy the standards outlined in ICD 705 to enable uniform use across
all IC elements for accreditation by IC elements as a Sensitive Compartmented
Information Facility.
a)
Accreditation of a SAPF as a SCIF will be based upon a review of all required
SCIF construction documentation to ensure all ICD 705 requirements were
met in the construction, maintenance, and operation of the SAPF.
b)
The Accrediting Official (AO) will conduct a review of all SAPF
accreditation documentation for compliance with the technical specifications
herein.
(1)
If all required documentation is available and correct, the AO will issue
SCIF accreditation.
(2)
If all required documentation is not available and correct, or waivers have
been authorized, the AO is not required to issue SCIF accreditation.
Chapter 1
Introduction
2
c)
If the facility is to be maintained as a SAPF and co-utilized as a SCIF, the
security posture of the facility will be to the highest requirement of the two.
(1)
The AO may issue a more restrictive accreditation based upon the SCI
requirements associated with the new SCIF accreditation. For example, 5
minute response versus 15 minutes, or Closed Storage versus Open
Storage.
(2)
Program indoctrination will be coordinated as part of the co-utilization
agreement. Compartmented Areas may be utilized, but no other sub-
division of the facility will be permitted. Facilities requiring additional
protections are not suitable for co-utilization.
3
Chapter 2
Risk Management
Chapter 2. Risk Management
A.
Analytical Risk Management Process
1. The Accrediting Official (AO) and the Site Security Manager (SSM) should evaluate
each proposed SCIF for threats, vulnerabilities, and assets to determine the most efficient
countermeasures required for physical and technical security. In some cases, based upon
that risk assessment, it may be determined that it is more practical or efficient to mitigate
a standard. In other cases, it may be determined that additional security measures should
be employed due to a significant risk factor.
2. Security begins when the initial requirement for a SCIF is known. To ensure the
integrity of the construction and final accreditation, security plans should be coordinated
with the AO before construction plans are designed, materials ordered, or contracts let.
a) Security standards shall apply to all proposed SCI facilities and shall be
coordinated with the AO for guidance and approval. Location of facility
construction and or fabrication does not exclude a facility from security standards
and or review and approval by the AO. SCI facilities include but are not limited
to fixed facilities, mobile platforms, prefabricated structures, containers, modular
applications or other new or emerging applications and technologies that may
meet performance standards for use in SCI facility construction.
NOTE: Advertised claims by manufactures that their product(s), to include
mobile platforms, prefabricated structures, containers and modular structures are
built to SCIF standards and can be accredited without modification may not be
accurate. AOs are responsible for ensuring security controls spelled out in the
ICD/ICS 705 series and this document are implemented to protect the security
integrity of the proposed SCIF prior to accreditation.
b) Mitigations are verifiable, non-standard methods that shall be approved by the
AO to effectively meet the physical/technical security protection level(s) of the
standard. While most standards may be effectively mitigated via non-standard
construction, additional security countermeasures and/or procedures, some
standards are based upon tested and verified equipment (e.g., a combination lock
meeting Federal Specification FF-L 2740) chosen because of special attributes
and could not be mitigated with non-tested equipment. The AO’s approval is
documented to confirm that the mitigation is at least equal to the
physical/technical security level of the standard.
c) Exceeding a standard, even when based upon risk, requires that a waiver be
processed and approved in accordance with ICD 705.
3. The risk management process includes a critical evaluation of threats, vulnerability,
and assets to determine the need and value of countermeasures. The process may include
the following:
a) Threat Analysis. Assess the capabilities, intentions, and opportunity of an
adversary to exploit or damage assets or information. For SCI Facilities under
Chief of Mission (COM) authority or established on a permanent or temporary
4
Chapter 2
Risk Management
basis within or on U.S. diplomatic facilities/compounds, use the Overseas
Security Policy Board (OSPB), Security Environment Threat List (SETL) to
determine technical threat to a location. When evaluating for TEMPEST, the
Certified TEMPEST Technical Authorities (CTTA) shall use the National
Security Agency Information Assurance (NSA IA) list as an additional resource
for specific technical threat information. NOTE: These threat documents are
classified. Associating the threat level or other threat information with the SCIF
location (including country, city, etc.) will normally carry the same classification
level identified in the threat document. Ensure that SCIF planning documents and
discussions that identify threat with the country or SCIF location are protected
accordingly. It is critical to identify other occupants of common and adjacent
buildings. (However, do not attempt to collect information against U.S. persons
in violation of Executive Order (EO) 12333.) In areas where there is a diplomatic
presence of high and critical technical threat countries, additional
countermeasures may be necessary.
b) Vulnerability Analysis. Assess the inherent susceptibility to attack of a
procedure, facility, information system, equipment, or policy.
c) Probability Analysis. Assess the probability of an adverse action, incident, or
attack occurring.
d) Consequence Analysis. Assess the consequences of such an action (expressed
as a measure of loss, such as cost in dollars, resources, programmatic
effect/mission impact, etc.).
B.
Security in Depth (SID)
1. SID describes the factors that enhance the probability of detection before actual
penetration to the SCIF occurs. The existence of a layer or layers of security that offer
mitigations for risks may be accepted by the AO. An important factor in determining risk
is whether layers of security already exist at the facility. If applied, these layers may,
with AO approval, alter construction requirements and extend security alarm response
time to the maximum of 15 minutes. Complete documentation of any/all SID measures
in place will assist in making risk decisions necessary to render a final standards decision.
2. SID is mandatory for SCIFs located outside the U.S. due to increased threat.
3. The primary means to achieve SID are listed below and are acceptable. SID requires
that at least one of the following mitigations is applied:
a) Military installations, embassy compounds, U.S. Government (USG)
compounds, or contractor compounds with a dedicated response force of U.S.
persons.
b) Controlled buildings with separate building access controls, alarms, elevator
controls, stairwell controls, etc., required to gain access to the buildings or
elevators. These controls shall be fully coordinated with a formal agreement or
managed by the entity that owns the SCIF.
5
Chapter 2
Risk Management
c) Controlled office areas adjacent to or surrounding SCIFs that are protected by
alarm equipment installed in accordance with manufacturer’s instructions. These
controls shall be fully coordinated with a formal agreement or managed by the
entity that owns the SCIF.
d) Fenced compounds with access controlled vehicle gate and/or pedestrian gate.
e) The AO may develop additional strategies to mitigate risk and increase
probability of detection of unauthorized entry.
C.
Compartmented Area (CA)
1. Definition
A CA is an area, room, or a set of rooms within a SCIF that provides controlled
separation between control systems, compartments, sub-compartments, or Controlled
Access Programs.
2. CA Types
a) Type I CAs are intended for workstation environments that are used to view and
process compartmented information. These areas may be comprised of open bays,
open spaces, or a set of rooms with multiple cubicles in an accredited SCIF. Within
these areas, compartmented information may be securely viewed and/or processed via
an approved computer workstation by authorized personnel. Workstations in these
environments may include computers with single or multiple monitors. When monitor
positioning alone will not adequately protect the material from unauthorized viewing,
i.e., shoulder surfing, polarized privacy screens shall be used. Compartmented data
shall never be openly displayed on a monitor that faces a primary door or common
work area. In addition to processing compartmented information on approved
computer workstations, Type I CAs may also include the use of printers, copiers, and
scanners if appropriate procedures for control of hard copy material have been
established and approved by the AO. No storage or discussion is authorized, logical
and/or physical.
b) Type II CAs are areas where discussions of compartmented information may take
place. If so equipped and approved, compartmented information may also be viewed
and processed. This CA comprises a room, e.g., office or conference room, inside an
accredited SCIF where compartmented discussions may be held by authorized
personnel. All Type II CAs must meet existing sound transmission class (STC)
requirements per ICS 705-1 to ensure that the room or office retains sound within its
perimeter. In addition to compartmented discussions, Type II CAs may be used for
secure video teleconferencing (SVTC) and related communication conferencing and
the use of secure telephones for compartmented discussions. The use of printers,
scanners, fax, copiers, and the secure transfer of data to approved removable media
require prior approval. No storage is authorized, logical and/or physical.
c) Type III: A restricted discussion area used for viewing, processing, printing,
copying, storage and control of accountable compartmented information. This CA is
6
Chapter 2
Risk Management
intended for storing and retaining compartmented information when accountability
and strict control of compartmented program information is required. This includes,
but is not limited to: notes, briefs, slides, electronic presentations, analytic papers,
removable hard drives, field packs, thumb drives, laptops, personal electronic devices
(PEDs) (see Chapter 10) or hand-held devices that store compartmented information.
In addition to the storage of compartmented material in a GSA-approved container,
Type III CAs may be used for processing compartmented information on approved
computer workstations; the use of printers, scanners, and copiers; the secure transfer
of data to approved removable media; the use of secure facsimile machines; and the
use of secure telephone equipment (STE) for compartmented discussions. All
personnel residing within or who have unfettered access to a Type III CA must be
formally briefed into all compartments that reside within the Type III CA. Visitors
are permitted within Type III areas only when all compartmented information (for
which the visitor is not briefed) is stored within containers, out of sight, and no
compartmented discussions occur.
3. Requirements
a) The CA shall be approved by the AO with the concurrence of the CA Program
Manager or designee. The CA Checklist (Chapter 13) shall be used to request
approval.
b) Any construction or security requirements above those listed herein require
prior approval from the element head as described in ICS 705-2.
4. Access Control
a) Access control to the CA may be accomplished by visual recognition or
mechanical/electronic access control devices.
b) Spin-dial combination locks shall not be installed on CA doors.
c) Independent alarm systems shall not be installed in a CA.
5. Visual Protection of CA Workstations
If compartmented information will be displayed on a computer terminal or group of
terminals in an area where everyone is not accessed to the program, the following
measures may be applied to reduce the ability of “shoulder surfing” or inadvertent
viewing of compartmented information:
Position the computer screen away from doorway/cubicle opening.
Use a polarizing privacy screen.
Use partitions and/or signs.
Existing private offices or rooms may be used but may not be a mandatory
requirement.
7
Chapter 2
Risk Management
6. Closed Storage
When the storage, processing, and use of compartmented information, product, or
deliverables is required, and all information shall be stored while not in use, then all of
the following shall apply:
a) Access and visual controls identified above shall be the standard safeguard.
b) Compartmented information shall be physically stored in a General Services
Administration (GSA) approved safe.
7. Open Storage
In rare instances when open storage of information is required, the following apply:
a) If the parent SCIF is accredited for open storage, a private office with access
control on the door is adequate physical security protection.
b) If the parent SCIF has been built and accredited for closed storage, then the
CA perimeter shall be constructed and accredited to open storage standards.
c) The CA AO may approve open or closed storage within the CA. Storage
requirements shall be noted in both the CA Fixed Facility Checklist (FFC) and, if
appropriate, in a Memorandum of Understanding (MOU).
8. Acoustic and Technical Security
a) All TEMPEST, administrative telephone, and technical surveillance
countermeasure (TSCM) requirements for the parent SCIF shall apply to the CA
and shall be reciprocally accepted.
b) When compartmented discussions are required, the following apply:
(1) Use existing rooms that have been accredited for SCI discussions.
(2) Use administrative procedures to restrict access to the room during
conversations.
8
Chapter 3
Fixed Facility SCIF Construction
Chapter 3. Fixed Facility SCIF Construction
Requirements outlined within this chapter apply to all fixed facility SCIFs. The SCIF Pre-
Construction Checklist is found in Chapter 13 and may be completed and sent to the Cognizant Security
Authority (CSA) and/or AO as part of the concept approval process. All questions about the checklist
content and expected information should be directed to the project CSA/AO.
Additional information
and requirements for facilities located outside the U.S., its possessions or territories, are found in
Chapters 4 and 5. Additional information and requirements for temporary SCIFs are described
in Chapter 6.
A.
Personnel
Roles and responsibilities of key SCIF construction personnel are identified in ICS 705-1
and restated here for reference.
1. AO Responsibilities
a) Provide security oversight of all aspects of SCIF construction under their security
purview.
b) Review and approve the design concept, Construction Security Plan (CSP), and
final design for each construction project prior to the start of SCIF construction.
c) Depending on the magnitude of the project, determine if the Site Security
Manager (SSM) performs duties on a full-time, principal basis, or as an additional
duty to on-site personnel.
d) Accredit SCIFs under their cognizance.
e) Prepare waiver requests for the IC element head or designee.
f) Provide the timely input of all required SCIF data to the IC SCIF repository.
g) Consider SID on USG or USG-sponsored contractor facilities to substitute for
standards herein. (SID shall be documented in the CSP and the FFC.)
2. Site Security Managers (SSMs) Responsibilities
a) Ensure the requirements herein are implemented and advise the AO of
compliance or variances.
b) In consultation with the AO, develop a CSP regarding implementation of the
standards herein. (This document shall include actions required to document the
project from start to finish.)
c) Conduct periodic security inspections for the duration of the project to ensure
compliance with the CSP.
d) Document security violations or deviations from the CSP and notify the AO
within 3 business days.
e) Ensure that procedures to control site access are implemented.
9
Chapter 3
Fixed Facility SCIF Construction
3. CTTA Responsibilities
a) Review SCIF construction or renovation plans to determine if TEMPEST
countermeasures are required and recommend solutions. To the maximum extent
practicable, TEMPEST mitigation requirements shall be incorporated into the SCIF
design.
b) Provide the CSA and AO with documented results of review with
recommendations.
4. Construction Surveillance Technicians (CSTs) Responsibilities
a) Supplement site access controls, implement screening and inspection procedures,
as well as monitor construction and personnel, when required by the AO.
b) In low and medium technical threat countries, begin surveillance of non-cleared
workers at the start of SCIF construction or the installation of major utilities,
whichever comes first.
c) In high and critical technical threat countries, begin surveillance of non-cleared
workers at the start of: construction of public access or administrative areas adjacent
to the SCIF; SCIF construction; or the installation of major utilities, whichever comes
first.
B.
Construction Security
1. Prior to awarding a construction contract, a CSP for each project shall be developed
by the SSM and approved by the AO.
2. Construction plans and all related documents shall be handled and protected in
accordance with the CSP.
3. For SCIF renovation projects, barriers shall be installed to segregate construction
workers from operational activities and provide protection against unauthorized access
and visual observation. Specific guidance shall be contained in the CSP.
4. Periodic security inspections shall be conducted by the SSM or designee for the
duration of the project to ensure compliance with construction design and security
standards.
5. Construction and design of SCIFs should be performed by U.S. companies using U.S.
citizens to reduce risk, but may be performed by U.S. companies using U.S. persons (an
individual who has been lawfully admitted for permanent residence as defined in 8
U.S.C. § 1101(a)(20) or who is a protected individual as defined by Title 8 U.S.C. §
1324b (a)(3)). The AO shall ensure mitigations are implemented when using non-U.S.
citizens. These mitigations shall be documented in the CSP.
6. All site control measures used shall be documented in the CSP. Among the control
measures that may be considered are the following:
Identity verification.
Random searches at site entry and exit points.
10
Chapter 3
Fixed Facility SCIF Construction
Signs at all entry points listing prohibited and restricted items (e.g., cameras,
firearms, explosives, drugs, etc.).
Physical security barriers to deny unauthorized access.
Vehicle inspections.
C.
Perimeter Wall Construction Criteria
1. General
a) SCIF perimeters include all walls that outline the SCIF confines, floors, ceilings,
doors, windows and penetrations by ductwork, pipes, and conduit. This section
describes recommended methods to meet the standards described within ICS 705-1
for SCIF perimeters.
b) Perimeter wall construction specifications vary by the type of SCIF, location, use
of SID, and discussion requirements.
c) Closed storage areas that do not require discussion areas do not have any forced
entry or acoustic requirements.
d) Open storage facilities without SID require additional protection against forced
and surreptitious entry.
e) When an existing wall is constructed with substantial material (e.g., brick,
concrete, cinderblock, etc.) equal to meet the perimeter wall construction standards,
the existing wall may be utilized to satisfy the specification.
2. Closed Storage, Secure Working Area (SWA), Continuous Operation, or Open
Storage with SID - Use Wall A - Suggested Standard Acoustic Wall (see construction
drawing for details).
a) Three layers ⅝ inch-thick gypsum wallboard (GWB), one layer on the
uncontrolled side of the SCIF and two on the controlled side of the SCIF, to provide
adequate rigidity and acoustic protection (Sound Class 3).
b) Wallboard shall be attached to 3 ⅝ inch-wide 16 gauge metal studs or wooden 2 x
4 studs placed no less than 16” on center (o.c.).
c) 16 gauge continuous track (top & bottom) w/ anchors at 32” o.c. maximum) – bed
in continuous bead of acoustical sealant.
d) The interior two layers of wallboard shall be mounted so that the seams do not
align (i.e., stagger joints).
e) Acoustic fill 3 ½ “ (89mm) sound attenuation material, fastened to prevent sliding
down and leaving void at the top.
f) The top and bottom of each wall shall be sealed with an acoustic sealant where it
meets the slab.
11
Chapter 3
Fixed Facility SCIF Construction
g) Fire safe non-shrink grout, or acoustic sealant in all voids above/below track both
sides of partition.
h) Entire wall assembly shall be finished and painted from true floor to true ceiling.
3. Open Storage without SID -- Use Wall B - Suggested Wall for Expanded Metal or
Wall C - Suggested Wall for Plywood.
a) Three layers of ⅝ inch-thick GWB, one layer on the uncontrolled side of the SCIF
and two on the controlled side of the SCIF to provide adequate rigidity and acoustic
protection (Sound Class 3).
b) Wallboard shall be attached to 3 ⅝ inch-wide 16 gauge metal studs or wooden 2 x
4 studs placed no less than 16” o.c.
c) 16 gauge continuous track (top & bottom) w/ anchors at 32” on center (o.c.)
maximum) – bed in continuous bead of acoustical sealant.
d) Wall B - Suggested Wall for Expanded Metal (see drawing for Wall B-Suggested
Construction for Expanded Metal).
(1) Three-quarter inch mesh, # 9 (10 gauge) expanded metal shall be affixed to
the interior side of all SCIF perimeter wall studs.
(2) Expanded metal shall be spot-welded to the studs every six inches along the
length of each vertical stud and at the ceiling and floor.
(3) Hardened screws with one inch washers or hardened clips may be used in
lieu of welding to fasten metal to the studs. Screws shall be applied every six
inches along the length of each vertical stud and at the ceiling and floor.
(4) Fastening method shall be noted in the FFC.
(5) Entire wall assembly shall be finished and painted from true floor to true
ceiling.
e) Wall C - Suggested Wall for Plywood (see drawing for Wall C-Suggested
Construction for Plywood).
(1) Three layers of ⅝ inch-thick GWB, two layers on the uncontrolled side and
one layer GWB over minimum ½ ” plywood on the controlled side of the SCIF.
NOTE: CTTA recommended countermeasures (foil backed GWB or layer of
approved Ultra Radiant R-Foil) shall be installed in accordance with (IAW) best
practices for architectural Radio Frequency (RF) shielding. Foil shall be located
between the layer of plywood and GWB.
(2) 1/2" Plywood affixed 8’ vertical by 4’ horizontal to 16 gauge studs using
glue and #10 steel tapping screws at 12 o.c.
(3) GWB shall be mounted to plywood with screws avoiding contact with studs
to mitigate any possible acoustic flanking path.
(4) 16 gauge continuous track (top & bottom) w/ anchors at 32” o.c. maximum)
– bed in continuous bead of acoustical sealant.
12
Chapter 3
Fixed Facility SCIF Construction
(5) Fire safe non-shrink grout, or acoustic sealant in all voids above/below track
both sides of partition.
(6) Entire wall assembly shall be finished and painted from true floor to true
ceiling.
4. Radio Frequency (RF) Protection for Perimeter Walls
a) RF protection shall be installed at the direction of the CTTA when a SCIF
utilizes electronic processing and does not provide adequate RF attenuation at the
inspectable space boundary. It is recommended for all applications where RF
interference from the outside of the SCIF is a concern inside the SCIF.
b) Installation of RF protection should be done using either the drawings or Best
Practices Guidelines for Architectural Radio Frequency Shielding, prepared by the
Technical Requirements Steering Committee under the Center for Security
Evaluation. This document is available through the Center for Security Evaluation,
Office of the Director of National Intelligence (NCSC/CSE).
5. Vault Construction Criteria
GSA-approved modular vaults meeting Federal Specification AA-V-2737 or one of
the following construction methods may be used:
a) Reinforced Concrete Construction
(1) Walls, floor, and ceiling will be a minimum thickness of eight inches of
reinforced concrete.
(2) The concrete mixture will have a comprehensive strength rating of at least
2,500 pounds per square inch (psi).
(3) Reinforcing will be accomplished with steel reinforcing rods, a minimum of
⅝ inches in diameter, positioned centralized in the concrete pour and spaced
horizontally and vertically six inches on center; rods will be tied or welded at the
intersections.
(4) The reinforcing is to be anchored into the ceiling and floor to a minimum
depth of one-half the thickness of the adjoining member.
b) Steel-Lined Construction Where Unique Structural Circumstances Do Not Permit
Construction of a Concrete Vault
(1) Construction will use ¼ inch-thick steel alloy-type plates having
characteristics of high-yield and high-tensile strength.
(2) The steel plates are to be continuously welded to load-bearing steel members
of a thickness equal to that of the plates.
(3) If the load-bearing steel members are being placed in a continuous floor and
ceiling of reinforced concrete, they must be firmly affixed to a depth of one-half
the thickness of the floor and ceiling.
(4) If floor and/or ceiling construction is less than six inches of reinforced
concrete, a steel liner is to be constructed the same as the walls to form the floor
13
Chapter 3
Fixed Facility SCIF Construction
and ceiling of the vault. Seams where the steel plates meet horizontally and
vertically are to be continuously welded together.
All vaults shall be equipped with a GSA-approved Class 5 vault door.
D.
Floor and Ceiling Construction Criteria
1. Floors and ceilings shall be constructed to meet the same standards for force
protection and acoustic protection as walls.
2. All floor and ceiling penetrations shall be kept to a minimum.
E.
SCIF Door Criteria
1. Door type definitions:
a) Primary door: A SCIF perimeter door recognized as the main entrance.
b) Secondary door: A SCIF perimeter door employed as both an entry and egress
door that is not the Primary door.
c) Emergency egress-only door: A SCIF perimeter door employed as an emergency
egress door with no entry capability.
2. Primary door criteria:
a) There shall be only one Primary door to a SCIF.
b) The Primary door shall be equipped with the following:
(1) A GSA-approved pedestrian door deadbolt meeting the most current version
of Federal Specification FF-L-2890. Previously AO-approved FFL-2740
integrated locking hardware may be used. Additional standalone and flush-
mounted dead bolts are prohibited.
(2) A combination lock meeting the most current version of Federal
Specification FFL- 2740. Previously AO-approved combination lock or deadbolt
lock type may be used.
(3) An approved access control device (see Chapter 8). May be equipped with a
by-pass keyway for use in the event of an access control system failure.
(4) Include requirements in E.5 below.
3. Secondary door criteria:
a) Secondary doors may be established with AO approval and as required by
building code, safety and accessibility requirements,
(1) Secondary doors shall:
(a) Be equipped with a GSA-approved pedestrian door egress
device with deadbolt meeting the most current version of Federal
Specification FF-L-2890 for secondary door use. An AO-approved
14
Chapter 3
Fixed Facility SCIF Construction
alternate device with similar functionality may be authorized.
Additional standalone and flush-mounted deadbolts are prohibited.
(b) Have approved access control hardware (see Chapter 8). The
access control system must be deactivated when the SCIF is not
occupied, or as determined by the AO.
(c) Include requirements in E.5 below.
4. Emergency Egress-only doors shall:
a) Be installed as required by building code, safety and accessibility requirements.
b) Be equipped with GSA-approved pedestrian door emergency egress device with
deadbolt configuration meeting the most current version of Federal Specification FF-
L-2890 for exit only door use. An AO-approved alternate device with similar
functionality and no exterior hardware may be authorized. Additional standalone and
flush-mounted deadbolts are prohibited.
c) Be alarmed 24/7 and have a local audible annunciator that must be activated if the
door is opened.
d) Include requirements in E.5 below.
5. Criteria for all SCIF perimeter doors:
a) All SCIF perimeter doors shall comply with applicable building code, safety, and
accessibility requirements as determined by the Authority Having Jurisdiction.
b) Ensure SCIF Standard Operating Procedures (SOP) includes procedures to ensure
all doors are secured at end of day.
c) All SCIF perimeter pedestrian doors shall be equipped with an automatic, non-
hold door-closer which shall be installed internal to the SCIF.
d) Door hinge pins that are accessible from outside of the SCIF shall be modified to
prevent removal of the door, e.g., welded, set screws, dog bolts, etc.
e) SCIF perimeter doors and frame assemblies shall meet acoustic requirements as
described in Chapter 9 unless declared a non-discussion area.
f) All SCIF perimeter doors shall be alarmed in accordance with Chapter 7.
g) SCIF Perimeter doors shall meet TEMPEST requirements per CTTA guidance.
h) When practical and permissible, SCIF entry doors should incorporate a vestibule
to preclude visual observation and enhance door acoustic protection.
6. SCIF door fabrication and unique criteria:
a) Wooden SCIF doors shall be 1 ¾ inch-thick solid wood core (i.e. wood stave,
structural composite lumber).
b) Steel doors shall meet following specifications:
(1) 1 ¾ inch-thick face steel equal to minimum 18-gauge steel.
(2) Hinges reinforced to 7-gauge steel and preferably a lift hinge.
(3) Door closure installation reinforced to 12-gauge steel.
15
Chapter 3
Fixed Facility SCIF Construction
(4) Lock area predrilled and/or reinforced to 10-gauge steel.
c) Vault doors shall not be used to control day access to a facility. To mitigate both
security and safety concerns, a vestibule with an access control device may be
constructed for the purpose of day access to the vault door.
d) Roll-up Doors shall be minimum 18-gauge steel and shall be secured inside the
SCIF using dead-bolts on both the right and left side of the door and alarmed in
accordance with Chapter 7.
e) SCIF perimeter Double Door Specifications:
(1) The fixed leaf shall be secured at the top and bottom with deadbolts.
(2) An astragal shall be attached to one door.
(3) Each leaf of the door shall have an independent security alarm contact.
f) Adjacent SCIF adjoining doors:
(1) Doors that join adjacent SCIFs, not required for emergency egress, shall:
(a) Be dead bolted on both sides.
(b) Be alarmed on both sides according to chapter 7.
(c) Meet acoustic requirements as required.
(d) Be covered by AO SOP.
g) Other door types shall be addressed on an individual basis as approved by the AO.
F.
SCIF Window Criteria
1. Every effort should be made to minimize or eliminate windows in the SCIF,
especially on the ground floor.
2. Windows shall be non-opening.
3. Windows shall be protected by security alarms in accordance with Chapter 7 when
they are within 18 feet of the ground or an accessible platform.
4. Windows shall provide visual and acoustic protection.
5. Windows shall be treated to provide RF protection when recommended by the CTTA.
6. All windows less than 18 feet above the ground or from the nearest platform
affording access to the window (measured from the bottom of the window), shall be
protected against forced entry and meet the standard for the perimeter.
G.
SCIF Perimeter Penetrations Criteria
1. All penetrations of perimeter walls shall be kept to a minimum.
2. Metallic penetrations may require TEMPEST countermeasures, to include dielectric
breaks or grounding, when recommended by the CTTA.
3. Utilities servicing areas other than the SCIF shall not transit the SCIF unless
mitigated with AO approval. This restriction does not apply to secure communication
16
Chapter 3
Fixed Facility SCIF Construction
lines required to transit a SCIF to service an adjacent SCIF through a common perimeter
surface.
4. Electrical Utilities should enter the SCIF at a single point.
5. All utility (power and signal) distribution on the interior of a perimeter wall treated
for acoustics or RF shall be surface mounted, contained in a raceway, or an additional
wall shall be constructed using furring strips as stand-off from the existing wall assembly.
If the construction of an additional wall is used, gypsum board may be ⅜ inch-thick and
need only go to the false ceiling.
6. Installation of additional conduit penetration for future utility expansion is
permissible provided the expansion conduit is filled with acoustic fill and capped (end of
pipe cover).
7. Vents and Ducts
a) All vents and ducts shall be protected to meet the acoustic requirements of the
SCIF. (See Figure 4, Typical Air (Z) Duct Penetration, for example.)
b) Walls surrounding duct penetrations shall be finished to eliminate any opening
between the duct and the wall.
c) All vents or duct openings that penetrate the perimeter walls of a SCIF and exceed
96 square inches shall be protected with permanently affixed bars or grills.
(1) If one dimension of the penetration measures less than six inches, bars or
grills are not required.
(2) When metal sound baffles or wave forms are permanently installed and set
no farther apart than six inches in one dimension, then bars or grills are not
required.
(3) If bars are used, they shall be a minimum of ½ inch diameter steel, welded
vertically and horizontally six inches on center; a deviation of ½ inch in vertical
and/or horizontal spacing is permissible.
(4) If grilles are used they shall be of:
(a) ¾ inch-mesh, #9 (10 gauge), case-hardened, expanded metal; or
(b) expanded metal diamond mesh, 1-1/2” #10 (1-3/8” by 3” openings, 0.093”
thickness, with at least 80% open design) tamperproof; or
(c) welded wire fabric (WWF) 4x4 W2.9xW2.9 (6 gauge smooth steel wire
welded vertically and horizontally four inches o.c.).
(5) If bars, grilles, or metal baffles/wave forms are required, an access port shall
be installed inside the secure perimeter of the SCIF to allow visual inspection of
the bars, grilles, or metal baffles/wave forms. If the area outside the SCIF is
controlled (SECRET or equivalent proprietary space), the inspection port may be
17
Chapter 3
Fixed Facility SCIF Construction
installed outside the perimeter of the SCIF and be secured with an AO-approved
high-security lock. This shall be noted in the FFC.
H.
Alarm Response Time Criteria for SCIFs within the U.S.
Response times for Intrusion Detection Systems (IDS) shall meet 32 CFR Parts 2001 and
2004.
a) Closed Storage response time of 15 minutes.
b) Open Storage response time within 15 minutes of the alarm annunciation if the
area is covered by SID or a five minute alarm response time if it is not.
I.
Secure Working Areas (SWA)
SWAs are accredited facilities used for discussing, handling, and/or processing SCI, but
where SCI will not be stored.
1. The SWA shall be controlled at all times by SCI-indoctrinated individuals or secured
with a GSA-approved combination lock.
2. The SCIF shall be alarmed in accordance with Chapter 7 with an initial alarm
response time of 15 minutes.
3. Access control shall be in accordance with Chapter 8.
4. Perimeter construction shall comply with section 3.C. above.
5. All SCI used in an SWA shall be removed and stored in GSA-approved security
containers within a SCIF, a vault, or be destroyed when the SWA is unoccupied.
18
Chapter 3
Fixed Facility SCIF Construction
J.
Temporary Secure Working Area (TSWA)
TSWAs are accredited facilities where handling, discussing, and/or processing of SCI is
limited to less than 40-hours per month and the accreditation is limited to 12 months or
less. Extension requests require a plan to accredit as a SCIF or SWA. Storage of SCI is
not permitted within a TSWA.
1. When a TSWA is in use at the SCI level, access shall be limited to SCI- indoctrinated
persons.
2. The AO may require an alarm system.
3. No special construction is required.
4. When the TSWA is approved for SCI discussions, sound attenuation specifications of
Chapter 9 shall be met.
5. The AO may require a TSCM evaluation if the facility has not been continuously
controlled at the SECRET level.
6. When the TSWA is not in use at the SCI level, the following shall apply:
a) The TSWA shall be secured with a high-security, AO-approved key or
combination lock.
b) Access shall be limited to personnel possessing a minimum U.S. SECRET
clearance.
19
Chapter 3
Fixed Facility SCIF Construction
Figure 1
Wall A Suggested Standard Acoustic Wall Construction
20
Chapter 3
Fixed Facility SCIF Construction
Figure 2
Wall B - Suggested Construction for Expanded Metal
21
Chapter 3
Fixed Facility SCIF Construction
Figure 3
Wall C Suggested Construction for Plywood
22
Chapter 3
Fixed Facility SCIF Construction
Figure 4
SECURE SIDE
Acoustically lined, thru-wall
sheet metal transfer duct
Access hatch
(In bottom of duct)
Man-bar at partition
if duct opening size
exceeds 96 SI
min.
Acoustically rated partition
(Plan view)
3x
3x
SECURE SIDE
x
Rev. 04-05
Typical Perimeter Air (Z) Duct Penetration
23
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
Chapter 4. SCIFs Outside the U.S. and NOT Under Chief of Mission (COM)
Authority
A.
General
1. Requirements outlined here apply only to SCIFs located outside of the U.S., its
territories and possessions that are not under COM authority.
2. The application and effective use of SID may allow AOs to deviate from this
guidance at Category II and III facilities.
B.
Establishing Construction Criteria Using Threat Ratings
1. The Department of State’s (DoS) Security Environment Threat List (SETL) shall be
used in the selection of appropriate construction criteria based on technical threat rating.
2. If the SETL does not have threat information for the city of construction, the SETL
threat rating for the closest city within a given country shall apply. When only the capital
is noted, it will represent the threat for all SCIF construction within that country.
3. Based on technical threat ratings, building construction has been divided into the
following three categories for construction purposes:
Category I - Critical or High Technical Threat, High Vulnerability Buildings
Category II - High Technical Threat, Low Vulnerability Buildings
Category III - Low and Medium Technical Threat
4. Facilities in Category I Areas
a) Open Storage Facilities
(1) Open storage is to be avoided in Category I areas. The head of the IC
element shall certify mission essential need and approve on case-by-case basis.
When approved, open storage should only be allowed when the host facility is
manned 24-hours-per-day by a cleared U.S. presence or the SCIF is continuously
occupied by U.S. SCI-indoctrinated personnel.
(2) SCI shall be contained within approved vaults or Class M or greater modular
vaults.
(3) The SCIF shall be alarmed in accordance with Chapter 7.
(4) Access control shall be in accordance with Chapter 8.
(5) An alert system and/or duress alarm is recommended.
(6) Initial alarm response time shall be five minutes.
24
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
b) Closed Storage Facilities
(1) The SCIF perimeter shall provide five minutes of forced-entry protection.
(Refer to Wall B or Wall C construction methods.)
(2) The SCIF shall be alarmed in accordance with Chapter 7.
(3) Access control system shall be in accordance with Chapter 8.
(4) SCI shall be stored in GSA-approved containers or in an area that meets vault
construction standards.
(5) Initial alarm response time shall be within 15 minutes.
c) Continuous Operation Facilities
(1) An alert system and duress alarm is required.
(2) The capability shall exist for storage of all SCI in GSA-approved security
containers or vault.
(3) The emergency plan shall be tested semi-annually.
(4) Perimeter walls shall comply with enhanced wall construction methods in
accordance Wall B or C standards.
(5) The SCIF shall be alarmed in accordance with Chapter 7.
(6) Access control shall be in accordance with Chapter 8.
(7) Initial response time shall be five minutes.
d) SWAs
Construction and use of SWAs is not authorized for facilities in Category I
areas because of the significant risk to SCI.
e) TSWAs
Construction and use of TSWAs is not authorized for facilities in Category I areas
because of the significant risk to SCI.
5. Facilities in Category II and III Areas
a) Open Storage Facilities
(1) Open storage is to be avoided in Category II areas. The head of the IC
element shall certify mission essential need and approve on case-by-case basis.
When approved, open storage should only be allowed when the host facility is
manned 24-hours-per-day by a cleared U.S. presence or the SCIF is continuously
occupied by U.S. SCI-indoctrinated personnel.
(2) In Category III areas, open storage should only be allowed when the host
facility is manned 24-hours-per-day by a cleared U.S. presence or the SCIF is
continuously occupied by U.S. SCI-indoctrinated personnel.
(3) The SCIF perimeter shall provide five minutes of forced-entry protection.
(Refer to Wall B or Wall C construction methods.)
25
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
(4) The SCIF shall be alarmed in accordance with Chapter 7.
(5) Access control shall be in accordance with Chapter 8.
(6) An alert system and/or duress alarm is recommended.
(7) Initial alarm response time shall be five minutes.
b) Closed Storage Facilities
(1) The SCIF perimeter shall provide five minutes of forced-entry protection.
(Refer to Wall B or Wall C construction methods.)
(2) The SCIF must be alarmed in accordance with Chapter 7.
(3) Access control system shall be in accordance with Chapter 8.
(4) SCI shall be stored in GSA-approved containers.
(5) Initial alarm response time shall be within 15 minutes.
c) Continuous Operation Facilities
(1) Wall A - Standard wall construction shall be utilized.
(2) The SCIF shall be alarmed in accordance with Chapter 7.
(3) Access control shall be in accordance with Chapter 8.
(4) Initial response time shall be five minutes.
(5) An alert system and/or duress alarm is recommended.
(6) The capability shall exist for storage of all SCI in GSA-approved security
containers.
(7) The emergency plan shall be tested semi-annually.
d) SWAs
(1) Perimeter walls shall comply with standard Wall A construction.
(2) The SCIF shall be alarmed in accordance with Chapter 7.
(3) Access control shall be in accordance with Chapter 8.
(4) Initial alarm response time shall be within 15 minutes.
(5) The SWA shall be controlled at all times by SCI-indoctrinated individuals or
secured with a GSA-approved combination lock.
(6) An alert system and/or duress alarm is recommended.
(7) All SCI used in an SWA shall be removed and stored in GSA-approved
security containers within a SCIF or be destroyed.
(8) The emergency plan shall be tested semi-annually.
e) TSWAs
(1) No special construction is required.
(2) The AO may require an alarm system.
26
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
(3) When the TSWA is approved for SCI discussions, sound attenuation
specifications of Chapter 9 shall be met.
(4) When a TSWA is in use at the SCI level, access shall be limited to SCI-
indoctrinated persons.
(5) The AO may require a TSCM evaluation if the facility has not been
continuously controlled at the SECRET level.
(6) When a TSWA is not in use at the SCI level, the following shall apply:
(a) The TSWA shall be secured with a high security, AO-approved key or
combination lock.
(b) Access shall be limited to personnel possessing a U.S. SECRET
clearance.
C.
Personnel
1. SSM Responsibilities
a) Ensures the security integrity of the construction site (hereafter referred to as the
“site”).
b) Develops and implements a CSP.
c) Ensures that the SSM shall have 24-hour unrestricted access to the site (or
alternatives shall be stated in CSP).
d) Conducts periodic security inspections for the duration of the project to ensure
compliance with the CSP.
e) Documents security violations or deviations from the CSP and notifies the AO.
f) Maintains a list of all workers used on the project; this list shall become part of
the facility accreditation files.
g) Implements procedures to deny unauthorized site access.
h) Works with the construction firm(s) to ensure security of the construction site and
compliance with the requirements set forth in this document.
i) Notifies the AO if any construction requirements cannot be met.
2. CST Requirements and Responsibilities
a) Possesses U. S. TOP SECRET clearances.
b) Is specially trained in surveillance and the construction trade to deter technical
penetrations and thwart implanted technical collection devices.
c) Supplements site access controls, implements screening and inspection
procedures, and, when required by the CSP, monitors construction and personnel.
d) Is not required when U.S. TOP SECRET-cleared contractors are used
e) In Category III countries, must do the following:
27
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
(1) Shall begin surveillance of non-cleared workers at the start of SCIF
construction or the installation of major utilities, whichever comes first.
(2) Upon completion of all work, shall clear and secure the areas for which they
are responsible prior to turning control over to the cleared American guards
(CAGs).
f) In Category I and II countries, must do the following:
(1) Shall begin surveillance of non-cleared workers at the start of construction of
public access or administrative areas adjacent to the SCIF, SCIF construction, or
the installation of major utilities, whichever comes first.
(2) Upon completion of all work, shall clear and secure the areas for which the
CST is responsible prior to turning over control to the CAGs.
g) On U.S. military installations, when the AO considers the risk acceptable,
alternative countermeasures may be substituted for the use of a CST as prescribed in
the CSP.
3. CAG Requirements and Responsibilities
a) Possesses a U.S. SECRET clearance (TOP SECRET required under COM
authority)
b) Performs access-control functions at all vehicle and pedestrian entrances to the
site except as otherwise noted in the CSP.
(1) Screens all non-cleared workers, vehicles, and equipment entering or exiting
the site.
(2) Denies introduction of prohibited materials, such as explosives, weapons,
electronic devices, or other items as specified by the AO or designee.
(3) Conducts random inspections of site areas to ensure no prohibited materials
have been brought on to the site. (All suspicious materials or incidents shall be
brought to the attention of the SSM or CST.)
D.
Construction Security Requirements
1. Prior to awarding a construction contract, a CSP for each project shall be developed
by the SSM and approved by the AO.
2. Construction plans and all related documents shall be handled and protected in
accordance with the CSP.
3. For SCIF renovation projects, barriers shall be installed to segregate construction
workers from operational activities. These barriers will provide protection against
unauthorized access and visual observation. Specific guidance shall be contained in the
CSP.
4. When expanding existing SCIF space into areas not controlled at the SECRET level,
maximum demolition of the new SCIF area is required.
28
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
5. For areas controlled at the SECRET level, or when performing renovations inside
existing SCIF space, maximum demolition is not required.
6. All requirements for demolition shall be documented in the CSP.
7. Citizenship and Clearance Requirements for SCIF Construction Personnel
a) Use of workers from countries identified in the SETL as “critical technical threat
level” or listed on the DoS Prohibited Countries Matrix is prohibited.
b) General construction of SCIFs shall be performed using U.S. citizens and U.S.
firms.
c) SCIF finish work (work that includes closing up wall structures; installing,
floating, taping and sealing wallboards; installing trim, chair rail, molding, and
floorboards; painting; etc.) in Category III countries shall be accomplished by
SECRET-cleared, U.S. personnel.
d) SCIF finish work (work that includes closing up wall structures; installing,
floating, taping and sealing wallboards; installing trim, chair rail, molding, and
floorboards; painting; etc.) in Category I and II countries shall be accomplished by
TOP SECRET-cleared, U.S. personnel.
e) On military facilities, the AO may authorize foreign national citizens or firms to
perform general construction of SCIFs. In this situation, the SSM shall prescribe,
with AO approval, mitigating strategies to counter security and counterintelligence
threats.
f) All non-cleared construction personnel shall provide the SSM with biographical
data (full name, current address, Social Security Number (SSN), date and place of
birth (DPOB), proof of citizenship, etc.), and fingerprint cards as allowed by local
laws prior to the start of construction/renovation.
(1) Two forms of I-9 identification are required to verify U.S. persons.
(2) Whenever host nation agreements or Status of Forces Agreements make this
information not available, it shall be addressed in the CSP.
g) When non-U.S. citizens are authorized by the AO:
(1) The SSM shall conduct checks of criminal and subversive files, local,
national, and host country agency files, through liaison channels and consistent
with host country laws.
(2) Checks shall be conducted of CIA indices through the country’s Director of
National Intelligence (DNI) representative and appropriate in-theater U.S. military
authorities.
h) Access to sites shall be denied or withdrawn if adverse security,
Counterintelligence (CI), or criminal activity is revealed. The SSM shall notify the
AO when access to the site is denied or withdrawn.
i) For new facilities, the following apply:
(1) Non-cleared workers, monitored by CSTs, may perform the installation of
major utilities and feeder lines.
29
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
(2) Installation shall be observed at perimeter entry points and when any
trenches are being filled.
(3) The number of CSTs shall be determined by the size of the project (square
footage and project scope) as outlined in the CSP.
j) For existing facilities, the following apply:
(1) Non-cleared workers, monitored by CSTs or cleared escorts, may perform
maximum demolition and debris removal.
(2) TOP SECRET-cleared workers shall be used to renovate or construct SCIF
space.
(3) SECRET-cleared individuals may perform the work when escorted by TOP
SECRET-cleared personnel.
(4) SCI-indoctrinated escorts are not required when the existing SCIF has been
sanitized or a barrier has been constructed to separate the operational areas from
the areas identified for construction.
k) Prior to initial access to the site, all construction personnel shall receive a security
briefing by the SSM or designee on the security procedures to be followed.
l) If a construction worker leaves the project under unusual circumstances, the SSM
shall document the occurrence and notify the AO. The AO shall review for CI
concerns.
m) The SSM may require cleared escorts or CSTs for non-cleared workers
performing work exterior to the SCIF that may affect SCIF security.
n) The ratio of escort personnel to construction personnel shall be determined by the
SSM on a case-by-case basis and documented in the CSP. Prior to assuming escort
duties, all escorts shall receive a briefing regarding their responsibilities.
8. Access Control of Construction Sites
a) Access control to the construction site and the use of badges are required.
b) Guards are required for SCIF construction outside the U.S.
c) All site control measures used shall be documented in the CSP. The following are
site control measures that should be considered:
Identity verification.
Random searches at site entry and exit points.
Signs, in English and other appropriate languages, at all entry points
listing prohibited and restricted items (e.g., cameras, firearms, explosives,
drugs, etc.).
Physical security barriers to deny unauthorized access.
Vehicle inspections.
30
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
d) Guards
(1) Local guards, supervised by CAGs and using procedures established by the
AO and documented in the CSP, may search all non-cleared personnel, bags,
toolboxes, packages, etc., each time they enter or exit the site.
(2) In Category I countries, CAGs shall be assigned to protect the site and
surrounding area as defined in the CSP.
(3) For existing SCIFs, TOP SECRET/SCI-indoctrinated guards are not required
to control access to the site or secure storage area (SSA) provided that TOP
SECRET/SCI-indoctrinated personnel are present on a 24-hour basis and
prescribed post security resources are in place.
(4) Use of non-cleared U.S. guards or non-U.S. guards to control access to the
site or SSA requires the prior approval of the AO. A SECRET-cleared, U.S.
citizen must supervise any non-cleared or non-U.S. guards. Non-cleared or non-
U.S. guards shall not have unescorted access to the site.
E.
Procurement of Construction Materials
1. General Standards. These standards apply to construction materials (hereafter
referred to as “materials”) used in SCIF construction outside the U.S. These standards do
not apply to installations on a roof contiguous to the SCIF provided there is no SCIF
penetration.
a) Procurements shall be in accordance with Federal Acquisition Regulations.
b) In exceptional circumstances, SSMs may deviate from procurement standards
with a waiver; such deviation shall be noted in the CSP.
c) For building construction projects in Category III countries, cleared U.S. citizens
may randomly select up to 35% of building materials from non-specific general
construction materials for SCIF construction. Random selection may exceed 35%
only if materials can be individually inspected.
d) For building construction projects in Category I and II countries, cleared U.S.
citizens may randomly select up to 25% of building materials from non-specific
general construction materials for SCIF construction. Random selection may exceed
25% only if materials can be individually inspected.
e) Procurement of materials from host or third party countries identified in the SETL
as critical for technical intelligence or listed in the DoS Prohibited Countries Matrix
is prohibited.
f) All such materials must be selected immediately upon receipt of the shipment and
transported to secure storage.
2. Inspectable (e.g., See Chapter 13 Inspectable Materials Checklist) Materials
a) Inspectable materials may be procured from U.S. suppliers without security
restrictions.
31
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
b) The purchase of inspectable materials from host or third party countries requires
advanced approval from the AO.
c) Procurement of materials from host or third party countries identified in the SETL
as critical for technical intelligence or listed in the DoS Prohibited Countries Matrix
is prohibited.
d) All inspectable materials procured in host and third party countries, or shipped to
site in unsecured manner, shall be inspected using an AO-approved method as
outlined in the CSP and then moved to an SSA.
e) Random selection of all inspectable material selected from stock stored outside of
the SSA shall be inspected using AO-approved methods outlined in the CSP prior to
use in SCIF construction.
3. Non-Inspectable Materials
a) Non-inspectable materials may be procured from U.S. suppliers or other AO-
approved channels with subsequent secure transportation to the SSA at the
construction site.
b) Non-inspectable materials may be procured in a host or third party country if
randomly selected by U.S. citizens with a security clearance level approved by the
AO.
c) Materials shall be randomly chosen from available suppliers (typically three or
more) without advance notice to, or referral from, the selected supplier and without
reference of the intended use of material in a SCIF.
d) Selections shall be made from available shelf stock and transported securely to an
SSA.
e) Procurement officials should be circumspect about continually purchasing non-
inspectable materials from the same local suppliers, and thereby establishing a pattern
that could be reasonably discernible by hostile intelligence services, foreign national
staff, and suppliers.
F.
Secure Transportation for Construction Material
1. Inspectable Materials
a) Secure transportation of inspectable materials is not required, but materials shall
be inspected using procedures approved by the AO prior to use.
b) Once inspected, all inspectable materials shall be stored in a SSA prior to use.
c) If securely procured, securely shipped, and stored in a secure environment,
inspectable materials may be utilized within the SCIF without inspection.
2. Non-Inspectable Materials
a) Non-inspectable materials include inspectable materials when the site does not
possess the capability to inspect them by AO-approved means.
32
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
b) Non-inspectable materials shall be securely procured and shipped to site by secure
transportation from the U.S., a secure logistics facility, or low threat third party
country using one of the following secure methods:
(1) Securely packaged or containerized and under the 24-hour control of an
approved courier or escort office. (Escorted shipments shall be considered
compromised if physical custody or direct visual observation is lost by the escort
officer during transit. Non-inspectable materials that are confirmed or suspected
of compromise shall not be used in a SCIF.)
(2) Securely shipped using approved transit security technical safeguards capable
of detecting evidence of tampering or compromise. (An unescorted container
protected by technical means (“trapped”) is considered compromised if evidence
of tampering of the protective technology is discovered, or if an unacceptable
deviation from the approved transit security plan occurs. Non-inspectable
materials that are confirmed or suspected of compromise shall not be used in a
SCIF.).
(3) Non-inspectable materials shall be shipped using the following surface and
air carriers in order of preference:
U.S. Military
U.S. Flag Carriers
Foreign Flag Carriers
G.
Secure Storage of Construction Material
1. A SSA shall be established and maintained for the secure storage of all SCIF
construction material and equipment. An SSA is characterized by true floor to true
ceiling, slab-to-slab construction of some substantial material, and a solid wood-core or
steel-clad door equipped with an AO-approved security lock.
2. All inspected and securely shipped materials shall be placed in the SSA upon arrival
and stored there until required for installation.
3. Alternative SSAs may include the following:
a) A shipping container located within a secure perimeter that is locked, alarmed,
and monitored.
b) A room or outside location enclosed by a secure perimeter that is under direct
observation by a SECRET-cleared U.S. citizen.
4. The SSA shall be under the control of CAGs or other U.S. personnel holding at least
U.S. SECRET clearances.
5. Supplemental security requirements for SSAs shall be set forth in the CSP and may
vary depending on the location and/or threat to the construction site.
33
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
H.
Technical Security
1. TEMPEST countermeasures shall be pre-engineered into the construction of the
SCIF.
2. In Category I countries, a TSCM inspection shall be required for new SCIF
construction or for significant renovations (50% or more of SCIF replacement cost).
3. In Category II and III countries, a TSCM inspection may be required by the AO for
new SCIF construction or significant renovations (50% or more of SCIF replacement
cost).
4. A TSCM inspection shall be required if uncontrolled space is converted (maximum
demolition) to new SCIF space.
5. When a TSCM inspection is not conducted, a mitigation strategy based on a physical
security inspection that identifies preventative and corrective countermeasures shall be
developed to address any technical security concerns.
I.
Interim Accreditations
1. Upon completion of a successful inspection, the respective agency’s AO may issue an
Interim Accreditation pending receipt of required documentation.
2. If documentation is complete, AOs may issue an Interim Accreditation pending the
final inspection.
34
Chapter 4
SCIFs Outside the U.S. and NOT Under COM
This page intentionally left blank.
35
Chapter 5
SCIFs Outside the U.S. and Under COM
Chapter 5. SCIFs Outside the U.S. and Under Chief of Mission Authority
A.
Applicability
1. This portion applies to the construction of SCIFs located overseas and that are on any
compound that falls under the DoS COM authority or created to support any Tenant
Agency that falls under COM authority.
2. The creation of new SCIF space at facilities that fall under COM authority is
governed by both ICDs and Overseas Security Policy Board (OSPB) standards published
as 12 Foreign Affairs Handbook-6 (12 FAH-6). If there is a conflict between the
standards, the more stringent shall apply.
3. For SCIFs constructed in new facilities (new compound or new office building under
COM authority), the proponent activity shall coordinate specific requirements for the
proposed SCIF with the DoS/Overseas Buildings Operations (OBO).
4. For SCIFs constructed in existing facilities under COM authority, the project
proponent activity must coordinate SCIF requirements with DoS/Bureau of Diplomatic
Security (DS), the affected Embassy or Consulate (through the Regional Security Officer
(RSO) and General Services Officer (GSO)), and DoS/OBO.
5. Upon an upgrade in the SETL Technical Threat rating for a facility under COM
authority, the tenant agency in concert with the RSO, shall conduct a survey for OSPB
compliance to the new technical threat requirements, and document any compliance
issues accordingly. Upgrade requirements shall be coordinated through the RSO, GSO,
and DoS/OBO and DS.
6. Temporary SCIFs may only be authorized by exception for facilities under COM
authority. The AO of the tenant agency shall notify both the RSO and the DoS AO of the
requirement and the expected duration of these facilities. Prior to accreditation, the tenant
agency AO must coordinate with the DoS AO.
B.
General Guidelines
1. SCIFs located under COM authority outside the U.S. are located within the CAA.
2. Prior to initiating any SCIF implementation process for upgrade or new construction
in an existing office building, the tenant agency CSA shall do the following:
a) Obtain concurrence from the Post‘s Counterintelligence Working Group (CIWG).
b) Obtain written approval from the COM.
c) Notify the DoS AO of CWIG and COM approvals.
d) Coordinate OSPB preliminary survey with the post RSO/Engineering Services
Office (ESO) if space is not core CAA.
3. A Preliminary Survey shall be developed by the RSO/ESO and submitted to DoS/DS
for review and approval prior to awarding a construction contract. A CSP shall then be
developed by the tenant and forwarded to DoS/OBO for processing.
36
Chapter 5
SCIFs Outside the U.S. and Under COM
4. All SCIF design, construction, or renovation shall be in compliance with OSPB
standards for facilities under COM authority.
5. Any waivers that are granted for a SCIF by a waiver authority that would result in
non-compliance with OSPB standards shall require an exception to OSPB standards from
DoS/DS.
6. Written approval of the request for an exception to OSPB standards must be received
prior to the commencement of any construction projects.
7. Upon completion of construction, the tenant agency AO will accredit the SCIF for
SCI operations.
C.
Threat Categories
1. The DoS SETL shall be used in the selection of appropriate construction criteria.
Based on technical threat ratings, building construction has been divided into three
categories for construction purposes:
Category I - Critical or High Technical Threat, High Vulnerability Buildings
Category II - High Technical Threat, Low Vulnerability Buildings
Category III - Low and Medium Technical Threat
2. High and Low Vulnerability Buildings will be determined in accordance with the
definitions in the OSPB standards.
3. SCIF design and construction shall comply with the building codes utilized by
DoS/OBO.
4. SCIF construction projects are subject to the DoS Construction Security Certification
requirements stipulated in Section 160 (a), Public Law 100-204, as amended.
Construction activities may not commence until the required certification has been
obtained from DoS.
5. SCIF construction projects are subject to permit requirements established by
DoS/OBO.
6. Open storage in Category I and II areas is to be avoided. The CSA shall certify
mission-essential need and approve on a case-by-case basis.
7. Open storage shall only be allowed for Category III posts when the host facility is
manned 24-hours per day by a cleared U.S. presence (i.e., Marine Security Guard).
8. Open storage of SCI material is not authorized in lock-and-leave facilities (i.e., no
Marine Security Guard).
D.
Construction Requirements
1. Perimeter Wall Construction (all facilities regardless of type or location).
37
Chapter 5
SCIFs Outside the U.S. and Under COM
a) Perimeter walls shall comply with enhanced wall construction (See drawings for
Walls B and C.)
b) Perimeter shall meet acoustic protection standards unless designated as a non-
discussion area.
2. All SCIFs must be alarmed in accordance with Chapter 7.
3. Initial alarm response times shall be within 15 minutes for closed storage and five
minutes for open storage.
4. Access control systems shall be in accordance with Chapter 8.
5. SCI shall be stored in GSA-approved containers.
6. An alert system and/or duress alarm is recommended.
7. Continuous Operation Facilities
a) An alert system and/or duress alarm is recommended.
b) The capability shall exist for storage of all SCI in GSA-approved security
containers.
c) The emergency plan shall be tested semi-annually.
d) The SCIF shall be alarmed in accordance with Chapter 7.
e) Access control shall be in accordance with Chapter 8.
f) Initial response time shall be five minutes.
8. TSWAs
a) When a TSWA is in use at the SCI level, the following apply:
(1) Unescorted access shall be limited to SCI-indoctrinated persons.
(2) The AO may require an alarm system.
(3) No special construction is required.
(4) When the TSWA is approved for SCI discussions the following apply:
(a) Sound attenuation specifications of Chapter 9 shall be met.
(b) The AO may require a TSCM evaluation if the facility has not been
continuously controlled at the SECRET level.
b) When the TSWA is not in use at the SCI level, the following shall apply:
(1) The TSWA shall be secured with a DoS/DS-approved key or combination
lock.
(2) Unescorted access shall be limited to personnel possessing a U.S. SECRET
clearance.
9. SWA
a) Initial alarm response times shall be within 15 minutes.
38
Chapter 5
SCIFs Outside the U.S. and Under COM
b) The SWA shall be controlled at all times by SCI-indoctrinated individuals or
secured with a GSA-approved combination lock.
c) The SWA shall be alarmed in accordance with Chapter 7.
d) Access control shall be in accordance with Chapter 8.
e) Perimeter walls shall comply with standard Wall A.
f) An alert system and/or duress alarm is recommended.
g) All SCI used in a SWA shall be removed and stored in GSA-approved security
containers within a SCIF or be destroyed.
h) There shall be an emergency plan that is tested semi-annually.
E.
Personnel
1. SSM Requirements and Responsibilities
a) Possesses a U.S. TOP SECRET clearance.
b) Ensures the security integrity of the construction site.
c) Develops and implements a CSP.
d) Shall have 24-hour unrestricted access to the site (or alternatives shall be stated in
CSP).
e) Conducts periodic security inspections for the duration of the project to ensure
compliance with the CSP.
f) Documents security violations or deviations from the CSP and notifies the RSO
and the tenant AO.
g) Maintains a list of all workers utilized on the project; this list shall become part of
the facility accreditation files.
h) Implements procedures to deny unauthorized site access.
i) Works with the construction firm(s) to ensure security of the construction site and
compliance with the requirements set forth in this document.
j) Notifies the RSO and tenant AO if any construction requirement cannot be met.
2. CST Requirements and Responsibilities
a) Possesses a TOP SECRET clearance.
b) Is specially trained in surveillance and the construction trade to deter technical
penetrations and to detect implanted technical collection devices.
c) Supplements site access controls, implements screening and inspection
procedures, and when required by the CSP, monitors construction and personnel.
d) Is not required when contractors who are U.S. citizens with U.S. TOP SECRET
clearances are used.
39
Chapter 5
SCIFs Outside the U.S. and Under COM
e) In Category III countries the following shall apply:
(1) The CST shall begin surveillance of non-cleared workers at the start of SCIF
construction.
(2) Upon completion of all work, the CST shall clear and secure the areas for
which they are responsible prior to turning control over to the CAGs.
f) In Category I and II countries the following shall apply:
(1) The CST shall begin surveillance of non-cleared workers at the start of
construction of public access or administrative areas adjacent to the SCIF, or
SCIF construction, whichever comes first.
(2) Upon completion of all work, the CST shall clear and secure the areas for
which the CST is responsible prior to turning over control to the CAGs.
3. CAG Requirements and Responsibilities
a) Possesses a U.S. TOP SECRET clearance.
b) Performs access control functions at all vehicle and pedestrian entrances to the
site except as otherwise noted in the CSP.
(1) Screens all non-cleared workers, vehicles, and equipment entering or exiting
the site.
(2) Uses walk-through and/or hand-held metal detectors or other means
approved by the RSO or designee to deny introduction of prohibited materials
such as explosives, weapons, electronic devices, or other items as specified by the
RSO or designee.
(3) Conducts random inspections of site areas to ensure no prohibited materials
have been brought on to the site. All suspicious materials or incidents shall be
brought to the attention of the SSM.
c) In Category III countries, CAGs shall be assigned to protect the site and
surrounding area at the start of construction of the SCIF or commencement of
operations of the SSA.
d) In Category I and II countries, CAGs shall be assigned to protect the site and
surrounding area at the start of construction of the SCIF, areas adjacent to the SCIF,
or commencement of operations of the SSA.
e) For existing SCIFs, TOP SECRET/SCI-indoctrinated U.S. citizen guards are not
required to control access to the site or SSA provided the following apply:
(1) TOP SECRET/SCI-indoctrinated U.S. citizens are present on a 24-hour basis
in the SCIF or the SCIF can be properly secured and alarmed.
(2) Prescribed post security resources are in place to monitor the SSA.
F.
Construction Security Requirements
40
Chapter 5
SCIFs Outside the U.S. and Under COM
1. Prior to awarding a construction contract, a CSP for each project shall be developed
by the SSM and approved by DoS/DS and DoS/OBO and the tenant AO.
2. Construction plans and all related documents shall be handled and protected in
accordance with the CSP.
3. For SCIF renovation projects, barriers shall be installed to segregate construction
workers from operational activities. These barriers will provide protection against
unauthorized access and visual observation. Specific guidance shall be contained in the
CSP.
4. When expanding existing SCIF space into areas not controlled at the SECRET level,
maximum demolition of the new SCIF area is required.
5. For areas controlled at the SECRET level that meet OSPB pre-conditions, or when
performing renovations inside existing SCIF space, maximum demolition is not required.
6. All requirements for demolition shall be documented in the CSP.
7. Periodic security inspections shall be conducted by the SSM or designee for the
duration of the project to ensure compliance with construction design and security
standards.
8. Citizenship and Clearance Requirements for SCIF Construction Personnel
a) Use of workers from countries identified as critical for Technical or Human
Intelligence threat, or listed on the DoS Prohibited Countries Matrix, is prohibited.
b) General construction and finish work is defined by OSPB standards.
c) General construction of SCIFs shall be performed using U.S. citizens and U.S.
firms. Use of foreign national citizens or firms to perform general construction of
SCIFs may be authorized in accordance with OSPB standards. In this situation, the
CSP shall prescribe mitigating strategies to counter security and counterintelligence
threats.
d) SCIF finish work shall be accomplished by appropriately cleared personnel as
directed by OSPB standards for CAA construction.
e) All non-cleared construction personnel shall provide the SSM with biographical
data (full name, current address, SSN, DPOB, proof of citizenship, etc.), and
fingerprint cards as allowed by local laws prior to the start of construction/renovation.
f) Two forms of I-9 identification are required to verify U.S. persons.
g) Whenever host nation agreements make this information not available, it shall be
addressed in the CSP.
h) When non-U.S. citizens are authorized, the following shall apply:
(1) The SSM shall conduct, through liaison channels, checks of criminal and
subversive files, local and national; and host country agencies, consistent with
host country laws.
(2) Checks shall also be conducted of CIA indices through the country’s DNI
representative and appropriate in-theater U.S. military authorities.
41
Chapter 5
SCIFs Outside the U.S. and Under COM
(3) Access to sites shall be denied or withdrawn if adverse security, CI, or
criminal activity is revealed. The SSM shall notify the AO and RSO when access
to the site is denied or withdrawn.
(4) For existing facilities, the following apply:
(a) Non-cleared workers monitored by CSTs may perform maximum
demolition for conversion of non-CAA to SCIF. Debris removal by non-
cleared workers must be monitored at a minimum by cleared U. S. citizen
escorts.
(b) TOP SECRET-cleared U.S. citizens must perform maximum
demolition within, or penetrating the perimeter of, an existing SCIF.
(c)TOP SECRET-cleared U.S. citizens shall be used to renovate SCIF
space.
(d) SECRET-cleared individuals may perform the work when escorted by
TOP SECRET-cleared U.S. citizens.
(e) SCI-indoctrinated escorts are not required when the existing SCIF has
been sanitized or a barrier has been constructed to separate the operational
areas from the areas identified for construction.
i) Prior to initial access to the site, all construction personnel shall receive a security
briefing by the SSM or designee on the security procedures to be followed.
j) If a construction worker leaves the project under unusual circumstances, the SSM
shall document the occurrence and notify the RSO and tenant AO. The RSO shall
review for CI concerns.
k) The SSM may require cleared escorts or CSTs for non-cleared workers
performing work exterior to the SCIF that may affect SCIF security.
l) The ratio of escort personnel to construction personnel shall be determined by the
SSM on a case-by-case basis and documented in the CSP. Prior to assuming escort
duties, all escorts shall receive a briefing regarding their responsibilities.
9. Access Control of Construction Sites
a) Access control to the construction site and the use of badges are required.
b) Guards are required for SCIF construction outside the U.S.
c) All site control measures used shall be documented in the CSP.
d) The following site control measures should be considered:
(1) Identity verification.
(2) Random searches at site entry and exit points.
(3) Signs, in English and other appropriate languages, at all entry points listing
prohibited and restricted items (e.g., cameras, firearms, explosives, drugs, etc.).
(4) Physical security barriers to deny unauthorized access.
(5) Vehicle inspections.
10. Local Guards
42
Chapter 5
SCIFs Outside the U.S. and Under COM
a) Local guards, supervised by CAGs and using procedures established by the RSO
and documented in the CSP, may search all non-cleared personnel, bags, toolboxes,
packages, etc., each time they enter or exit the site.
b) Use of non-cleared U.S. guards or non-U.S. guards to control access to the site or
secure storage area (SSA) requires the prior approval of the RSO. A SECRET-
cleared U.S. citizen must supervise non-cleared or non-U.S. guards. Non-cleared or
non-U.S. guards shall not have unescorted access to the site.
G.
Procurement of Construction Materials
1. General Standards
a) These standards apply to construction materials used in SCIF construction under
COM authority. These standards do not apply to installations on a roof contiguous to
the SCIF provided there is no SCIF penetration.
b) Procurements shall be in accordance with Federal Acquisition Regulations.
c) In exceptional circumstances, SSMs may deviate from procurement standards
with a waiver; such deviation shall be noted in the CSP.
d) For building construction projects in Category III countries, cleared U.S. citizens
may randomly select up to 35% of building materials from non-specific general
construction materials for SCIF construction. Random selection may exceed 35%
only if materials can be individually inspected.
e) For building construction projects in Category I and II countries, cleared U.S.
citizens may randomly select up to 25% of building materials from non-specific
general construction materials for SCIF construction. Random selection may exceed
25% only if materials can be individually inspected.
f) All such materials must be selected immediately upon receipt of the shipment and
transported to secure storage.
g) Procurement of materials from host or third party countries identified in the SETL
as critical for technical intelligence, or listed on the DoS Prohibited Countries Matrix,
is prohibited.
2. Inspectable Materials Specifically Destined for SCIF Construction
a) Inspectable materials specifically destined for SCIF construction may be procured
from U.S. third-country or local suppliers without security restrictions.
b) All inspectable materials specifically destined for SCIF construction procured in
host and third party countries or shipped to site in an unsecured manner from the U.S.
shall be inspected using a DoS/DS-approved method and then moved to an SSA.
c) All inspectable material selected from stock stored outside of the SSA shall be
inspected using DoS/DS-approved methods prior to use in SCIF construction.
3. Non-Inspectable Materials Specifically Destined for SCIF Construction
43
Chapter 5
SCIFs Outside the U.S. and Under COM
a) Non-inspectable materials specifically destined for SCIF construction shall be
procured from U.S. suppliers with subsequent secure transportation to the SSA at the
construction site.
b) On an exceptional basis, non-inspectable materials may be procured in a host or
third party country if randomly selected by cleared U.S. citizens.
(1) Materials shall be randomly chosen from available suppliers (typically three
or more) without advance notice to, or referral from, the selected supplier and
with no reference of the intended use of material in a SCIF.
(2) Such selections shall be made from available shelf stock, brought
immediately under personal control of a cleared U.S. citizen, and transported
securely to an SSA.
(3) Procurement officials should be circumspect about continually purchasing
non-inspectable materials from the same local suppliers and establishing a pattern
that could be reasonably discernible by hostile intelligence services, foreign
national staff, and suppliers.
H.
Secure Transportation for Construction Material
1. Inspectable Materials Specifically Destined for SCIF Construction
a) Inspectable materials do not require secure transportation but shall be inspected
using procedures approved by the DoS/DS prior to use in the SCIF.
b) Once inspected, all inspectable items shall be stored in an SSA.
c) Materials may be utilized within the SCIF without inspection if securely procured,
securely shipped, and stored in a secure environment.
2. Non-inspectable Materials Specifically Destined for SCIF Construction
a) Non-inspectable material includes inspectable materials when the site does not
possess the capability to inspect by Do/DS-approved means.
b) Non-inspectable materials shall be securely procured and shipped to site by secure
transportation from the U.S., a secure logistics facility, or low threat third party
country using one of the following secure methods:
(1) Securely packaged or containerized and under the 24-hour control of an
approved courier or escort officer. (Escorted shipments shall be considered
compromised if physical custody or direct visual observation is lost by the escort
officer during transit. Non-inspectable materials that are confirmed compromised
or suspected of compromise shall not be used in a SCIF.)
(2) Securely shipped using approved transit security technical safeguards capable
of detecting evidence of tampering or compromise. (An unescorted container
protected by technical means (“trapped”) is considered compromised if evidence
of tampering of the protective technology is discovered, or if an unacceptable
deviation from the approved transit security plan occurs. Non-inspectable
44
Chapter 5
SCIFs Outside the U.S. and Under COM
materials that are confirmed compromised or suspected of compromise shall not
be used in a SCIF.)
(3) Non-inspectable materials shall be shipped using the following surface and
air carriers in order of preference:
(a) U.S. Military
(b) U.S. Flag Carriers
(c) Foreign Flag Carriers
I.
Secure Storage of Construction Material
1. Upon arrival, all inspected and securely shipped materials shall be placed in the SSA
until required for installation.
2. An SSA shall be established and maintained for the secure storage of all SCIF
construction material and equipment. It is characterized by true floor to true ceiling, slab-
to-slab construction of some substantial material and a solid wood-core or steel-clad door
equipped with a DoS/DS-approved security lock.
3. Alternative SSA’s may include a shipping container located within a secure perimeter
that is locked, alarmed, and monitored, or a room or outside location enclosed by a secure
perimeter that is under direct observation by a SECRET-cleared U.S. citizen.
4. The SSA shall be under the control of CAGs or other U.S. citizens holding at least
U.S. SECRET clearances.
5. Supplemental security requirements for SSAs shall be set forth in the CSP and may
vary depending on the location and/or threat to the construction site.
J.
Technical Security
1. TEMPEST countermeasures shall be pre-engineered into the building.
2. A TSCM inspection shall be required in Category I countries for new SCIF
construction or significant renovations (50% or more of SCIF replacement cost).
3. A TSCM inspection may be required by the AO in Category II or III countries for
new SCIF construction or significant renovations (50% or more of SCIF replacement
cost).
4. A TSCM inspection, conducted at the completion of construction, shall be required if
uncontrolled space is converted (maximum demolition) to new SCIF space.
5. When a TSCM inspection is not conducted, a mitigation strategy based on a physical
security inspection that identifies preventative and corrective countermeasures shall be
developed to address any technical security concerns.
45
Chapter 5
SCIFs Outside the U.S. and Under COM
K.
Interim Accreditations
1. Upon completion of a successful inspection, the respective agency’s AO may issue an
Interim Accreditation pending receipt of required documentation.
2. If documentation is complete, AOs may issue an Interim Accreditation pending the
final inspection.
46
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
Chapter 6. Temporary, Airborne, and Shipboard SCIFs
A.
Applicability
1. General Information
a) This chapter covers all SCIFs designed to be temporary or such as those at sites
for contingency operations, emergency operations, and tactical military operations.
This chapter does not apply to temporary SCIFs established or operated within or on
U.S. diplomatic facilities/compounds; see Chapter 5 for applicable guidance.
b) These standards apply to the following:
(1) All ground-based temporary SCIFs (T-SCIFs), including those on mobile
platforms (e.g., trucks and trailers).
(2) SCIFs aboard aircraft.
(3) SCIFs aboard surface and sub-surface vessels.
c) When employing T-SCIFs, a risk management approach shall be used that
balances the operational mission and the protection of SCI.
2. Accreditation
a) Accreditation for the use of T-SCIFs shall not exceed one year without mission
justification and approval by the AO.
b) When the T-SCIF owner determines that a T-SCIF is no longer required, the
withdrawal of accreditation shall be initiated by the SSO/Contractor Special Security
Officer (CSSO).
(1) Upon notification, the AO will issue appropriate SCI withdrawal
correspondence.
(2) The AO or appointed representative will conduct a close-out inspection of
the facility to ensure that all SCI material has been removed.
B.
Ground-Based T-SCIFs
1. T-SCIF Structures and Activation
a) Ground-based T-SCIFs may be established in hardened structures (e.g., buildings,
bunkers) or semi-permanent structures (e.g., truck-mounted or towed military
shelters, prefabricated buildings, tents).
b) Permanent-type hardened structures shall be used to the greatest extent possible
for T-SCIFs.
c) Prior to T-SCIF activation, the AO may require submission of a standard fixed
facility checklist or a T-SCIF checklist produced before or after a deployment.
47
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
2. SCI Storage and Destruction
a) Under field or combat conditions, open storage of SCI media and materials
requires a continuous presence by SCI-indoctrinated personnel.
b) Under field or combat conditions every effort shall be made to obtain from any
available host command necessary support for the storage and protection of SCI (e.g.,
security containers, generators, guards, weapons, etc.).
c) The quantity of SCI material within a T-SCIF shall be limited, to the extent
possible, to an amount consistent with operational needs.
d) All SCI shall be stored in GSA-approved security containers.
e) The AO may approve exceptions to the storage of SCI material in GSA-approved
storage containers for a specified period of time.
f) When no longer needed, SCI material shall be destroyed by means approved by
the AO.
3. Security Requirements
a) T-SCIF security features shall provide acoustical, visual, and surreptitious entry
protection.
b) A TSCM inspection shall be requested for any structure proposed for T-SCIF use
if the space was previously occupied by a non-U.S. element. It is the AO’s
responsibility to evaluate operating the SCIF prior to TSCM inspection and formally
assume all risk associated with early operation.
c) When possible, T-SCIFs shall be established within the perimeters of U.S.-
controlled areas or compounds.
d) If a U.S.-controlled area or compound is not available, the T-SCIF shall be
located within an area that affords the greatest degree of protection against
surreptitious or forced entry.
e) When a T-SCIF is in operation, the perimeter of its immediate area shall be
observed and protected by U.S. guards with U.S. SECRET clearances. Guards shall
be equipped with emergency communication devices and, if necessary, with weapons.
f) During non-operational hours, the T-SCIF shall be provided security protection in
accordance with AO guidelines.
g) The T-SCIF shall have only one entrance which shall be controlled during hours
of operation by an SCI-indoctrinated person using an access roster.
h) Unclassified telecommunications equipment shall meet the requirements outlined
in Chapter 10 to the greatest extent practical.
i) Telephones obtained in a foreign country shall not be used within a T-SCIF.
j) Cables and wires penetrating the T-SCIF perimeter shall be protected. The AO
may require inspections and routing of cables and wiring through protective
distribution systems or may require other countermeasures.
48
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
k) AO-approved emergency destruction and evacuation plans shall be developed and
rehearsed periodically by all personnel assigned to the T-SCIF; the results of the
rehearsal drills shall be documented.
l) When in transit, ground-based and mobile (e.g., truck-mounted, towed military
shelters) T-SCIFs containing unsecured and non-encrypted SCI shall be accompanied
by a U.S. TOP SECRET-cleared individual with SCI access approval(s).
m) During movement, T-SCIF structures shall be secured with GSA-approved
locking devices and equipped with tamper-evident seals.
n) When in transit, hardened T-SCIFs having no open storage of SCI may be
monitored by a U.S SECRET-cleared individual.
o) Hardened T-SCIFs shall be designed with TEMPEST countermeasures as
identified by the CTTA. The AO, in collaboration with the CTTA, shall provide
red/black separation and “protected distribution” guidance for field installation in
accordance with CNSSAM TEMPEST 1/13 and CNSSI 7003.
p) When a T-SCIF is no longer required, the responsible SCI security official shall
conduct a thorough facility inspection to ensure all SCI material has been removed.
C.
Permanent and Tactical SCIFs Aboard Aircraft
1. The Aircraft Facility Checklist (see Forms & Plans) will be used for permanent SCIFs
aboard aircraft.
2. The AO may determine that an Aircraft Facility Checklist may not be required for
tactical SCIFs aboard aircraft if the following information is provided:
a) Name of aircraft (tail number)/airborne T-SCIF.
b) Major command/organization.
c) ID number of parent SCIF, if applicable.
d) Location T-SCIF deployed from and date of deployment.
e) Location T-SCIF deployed to and date of deployment.
f) SCI compartment(s) involved in T-SCIF operations.
g) Time period for T-SCIF operations.
h) Name of exercise or operation.
i) Points of contact (responsible officers).
j) Type of aircraft and area to be accredited as a T-SCIF.
k) Description of security measures for entire period of T-SCIF use (standard
operating procedures).
l) Additional comments to add clarification.
49
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
3. Security Requirements for Aircraft when Operating in Support of Missions Involving
SCI Material
a) SCIF location shall be identified by aircraft tail number.
b) Access to the aircraft interior shall be controlled at all times by SCI-indoctrinated
personnel.
c) There are no unique physical security construction standards for SCIFs aboard
aircraft.
d) Accreditation, such as that from the Defense Courier Service, is not required for
aircraft used solely to transport SCI material between airfields.
e) When all personnel on an aircraft are not briefed on every SCI compartment
aboard, procedural methods or physical barriers shall be employed to isolate
compartments of the SCI.
f) When an aircraft T-SCIF is no longer required, the responsible SCI security
official shall conduct an inspection of the aircraft to ensure all SCI material has been
removed.
4. SCI Storage and Destruction
a) SCI materials shall be encrypted or secured in an AO-approved security container.
b) When no longer needed, SCI materials shall be destroyed by means approved by
the AO.
c) Following an unscheduled landing in U.S.-controlled or non-hostile territory, the
senior SCI-indoctrinated person shall retain control of the SCI material until approved
storage arrangements can be effected through a local Special Security Officer or SCI-
indoctrinated official.
d) Prior to an unscheduled landing in unfriendly or hostile territory, every
reasonable effort shall be made to destroy unencrypted SCI material and
communications security equipment in accordance with the emergency destruction
plan.
e) If the aircraft is stationary, in the absence of SCI-indoctrinated personnel, all SCI
information shall be encrypted or removed and stored in an alternative accredited
SCIF or location approved by the AO.
f) Emergency destruction plans for SCI material shall be developed, approved by the
AO, and rehearsed periodically by all personnel assigned to the aircraft; rehearsal
results shall be documented.
5. Additional Security Requirements for Stationary Aircraft
a) The aircraft shall be parked within a controlled area that affords the greatest
protection against surreptitious or forced entry.
b) In the absence of SCI-indoctrinated personnel, all SCI information shall be
encrypted or removed and stored in an alternative accredited SCIF or location
approved by the AO.
50
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
c) If the aircraft cannot be positioned within a U.S.-controlled area, the SCI is not
encrypted, and removal of the SCI is not possible, then the following measures must
be taken:
(1) SCI-indoctrinated personnel shall remain with the aircraft.
(2) A guard force that can control the perimeter of the aircraft shall be deployed,
unless infeasible. The guards shall possess U.S. SECRET clearances and be
armed and equipped with emergency communication devices.
d) If the aircraft is located within a U.S.-controlled area, the SCI is not encrypted,
and removal of SCI is not possible then, the following measures shall be taken:
(1) The AO may mitigate the requirement for SCI-indoctrinated personnel
provided the aircraft is equipped with, or stored within a structure equipped with,
an intrusion detection system approved by the AO.
(2) All aircraft hatches and doors shall be secured with AO-approved locks and
tamper-evident seals.
(3) A guard force must be available to respond to an alarm within five minutes.
(4) Guards shall possess U.S. SECRET clearances and be armed and equipped
with emergency communication devices.
(5) If a cleared U.S. guard force is not available, the AO may approve other
mitigation measures.
D.
Permanent and Tactical SCIFs on Surface or Subsurface Vessels
1. Permanent shipboard SCIFs shall consist of any area aboard a vessel where SCI is
processed, stored, or discussed.
2. The Shipboard Checklist (see Forms & Plans) will be used for permanent SCIFs. The
AO may determine that this checklist may not be required providing the below
information is available:
a) Name of vessel/hull number.
b) Major command/organization.
c) ID number of parent SCIF, if applicable.
d) Location SCIF deployed from and date of deployment.
e) Location SCIF deployed to and date of deployment.
f) SCI compartment(s) and sub-compartments involved in SCIF operations.
g) Name of exercise or operation.
h) Points of contact (responsible officers).
i) Description of security measures for entire period of SCIF use (standard operating
procedures).
51
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
j) Additional comments to add clarification.
3. Security Requirements for Permanent SCIFs
a) The perimeter (walls, floors, and ceiling) shall be fabricated of structural
bulkheads comprised of standard shipboard/submarine construction materials.
b) Elements of the perimeter shall be fully braced and welded or bonded in place.
c) Doors shall conform to the following requirements:
(1) Perimeter doors and emergency exit(s) shall be constructed of standard
shipboard materials and shall be mounted in a frame, braced and welded or
bonded in place in a manner commensurate with the structural characteristics of
the bulkhead, deck, or overhead.
(2) The primary entry door shall be equipped with a GSA-approved combination
lock and an access control device.
(3) If the door is in a bulkhead that is part of an airtight perimeter, the airtight
integrity may be maintained by co-locating the door with the metal joiner door, or
by adding a vestibule.
(4) Metal joiner doors shall be equipped with a combination lock that meets
specification FF-L-2740A and with an access control device approved by the AO.
(5) Doors shall be constructed in a manner that will preclude unauthorized
removal of hinge pins and anchor bolts, and obstruct access to lock-in bolts
between the door and frame.
(6) Doorways or similar openings that allow visual access to the SCIF shall be
screened or curtained.
d) No damage control fittings or cables shall be located within, or pass through, the
SCIF. This does not apply to smoke dampers or other life-safety devices that are
operated by personnel within the space during working hours.
e) Removable hatches and deck plates less than 10 square feet that are secured by
exposed nuts and bolts (external to the SCIF) shall be secured with a high security
padlock (unless their weight makes this unreasonable). Padlock keys shall be stored
in a security container located within the SCIF.
f) Vents, ducts, and similar openings with a cross-sectional measurement greater
than 96 inches shall be protected by a fixed barrier or security grill. (This requirement
is not applicable to through-ducts that do not open into the SCIF.)
(1) Grills shall be fabricated of steel or aluminum grating or bars with a
thickness equal to the perimeter barrier.
(2) If a grating is used, bridge center-to-center measurements will not exceed 1.5
inches by 4 inches.
(3) Bars shall be mounted in a grid pattern, six-inches on center.
(4) The grating or bars shall be welded into place.
52
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
g) Construction of the SCIF perimeter shall afford adequate sound attenuation. Air
handling units and ducts may require baffles if SCIF discussions can be overhead in
adjacent areas.
h) The SCIF shall be equipped with an AO-approved intrusion detection system
(IDS) or other countermeasures if SCI-indoctrinated personnel cannot continuously
occupy the area.
i) Passing scuttles and windows should not be installed between the SCIF and any
other space on the ship. If installed, they shall be secured on the inside of the SCIF.
j) All SCI cryptographic and processing equipment shall be located within the SCIF.
k) Unclassified telecommunications shall meet the requirements outlined in Chapter
11, to the greatest extent practical.
l) Sound-powered telephones will not be permitted in the SCIF without additional
mitigations determined by the AO. If a deviation is granted, sound-powered
telephones located within the SCIF and connecting to locations outside the SCIF shall
comply with the following:
(1) Telephone cables shall not break out to jack-boxes, switchboards, or
telephone sets other than at designated stations. Cables shall not be shared with
any circuit other than call or signal systems associated with the SCIF circuit.
(2) Telephone cables shall be equipped with a selector switch located at the
controlling station and shall be capable of disconnecting all stations, selecting any
one station, and disconnecting the remaining stations.
(3) Sound-powered telephones not equipped with a selector switch shall have a
positive disconnect device attached to the telephone circuit.
(4) Within any SCIF, sound-powered telephones not used for passing SCI
information shall have a warning sign prominently affixed indicating the
restriction.
(5) A call or signal system shall be provided. Call signal station, type ID/D,
shall provide an in-line disconnect to prevent a loudspeaker from functioning as a
microphone.
m) The approval of the AO is required for unencrypted, internal, communication-
announcing systems that pass through the SCIF perimeter.
n) Intercommunications-type announcing systems installed within an SCIF shall
meet the following standards:
(1) The system shall operate only in the push-to-talk mode.
(2) Receive elements shall be equipped with a local buffer amplifier to prevent
loudspeakers or earphones from functioning as microphones.
(3) Except as specified, radio transmission capability for plain radio-telephone
(excluding secure voice) will not be connected.
(4) Cable conductors assigned to the transmission of plain language radio-
telephone will be connected to ground at each end of the cable.
53
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
(5) A warning sign will be posted that indicates the system may not be used to
pass SCI.
(6) Unencrypted internal communication systems that pass through the SCIF
perimeter shall be in grounded ferrous conduit.
o) Commercial intercommunication equipment shall not be installed within a SCIF
without prior AO approval.
p) Loudspeakers used on general announcing systems shall be equipped with a one-
way buffer amplifier to protect against microphonic responses.
q) Pneumatic tube systems shall not be installed within the SCIF. The following
safeguards apply to existing systems on older ships:
(1) Covers shall be locked at both ends with an AO-approved lock. Keys shall be
stored within an approved security container within the SCIF.
(2) The system shall have the capability to maintain the pressure or vacuum and
the capability to lock in the secure position at the initiating end.
(3) There shall be a direct voice communications link between both ends to
confirm the transportation and receipt of passing cartridges.
(4) Cartridges passing SCI material shall have a distinctive color.
(5) Pneumatic tubes shall be visually inspectable along their entire length.
(6) The CTTA shall conduct a TEMPEST countermeasures inspection and shall
recommend safeguards to limit compromising emanations. TEMPEST safeguards
should be pre-engineered into platforms to the greatest extent possible.
4. General Requirements for T-SCIFs
a) SCIFs on sub-surface vessels shall be accredited as T-SCIFs.
b) T-SCIFs aboard a vessel include portable platforms or containers temporarily
placed within ship space such as embarked Portable Shipboard Collection Vans.
c) T-SCIFs shall be occupied by an SCI-indoctrinated person at all times unless the
facility is protected by a GSA-approved lock, an approved intrusion detection system,
and a response capability or other countermeasures approved by the AO.
5. Security Requirements for T-SCIFs
a) Overall T-SCIF construction standards shall be the same as those used for
permanent shipboard SCIFs.
b) Vents, ducts, and similar openings shall be constructed to the same standards as
those used for a shipboard SCIF.
c) SCI materials shall be destroyed by means approved by the AO when no longer
needed.
d) AO-approved emergency destruction plans shall be rehearsed periodically by all
personnel assigned to the T-SCIF and the rehearsals documented.
54
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
e) Unclassified telecommunications shall meet the requirements for a shipboard
SCIF, to the greatest extent practical.
f) When the T-SCIF is no longer required, the responsible SCI security official shall
conduct a closing inspection of the T-SCIF to ensure all SCI material has been
removed.
g) The CTTA shall conduct a TEMPEST countermeasures inspection and shall
recommend safeguards to limit compromising emanations. TEMPEST safeguards
should be pre-engineered into platforms to the greatest extent possible.
6. Additional Security Standards for Mobile Platforms or Containers
a) Construction of the perimeter must be of sufficient strength to reveal evidence of
physical penetration (except for required antenna cables and power lines).
b) Doors must fit securely and be equipped with a locking device that can be locked
from the inside and outside.
7. SCI Storage and Destruction
a) SCI material shall be stored in a GSA-approved security container that is welded
or otherwise permanently secured to the structural deck.
b) When no longer needed, SCI materials shall be destroyed by means approved by
the AO.
c) AO-approved emergency destruction and evacuation plans shall be developed and
rehearsed periodically by all personnel assigned to the SCIF and the rehearsals shall
be documented.
55
Chapter 6
Temporary, Airborne, and Shipboard SCIFs
This page intentionally left blank.
56
Chapter 7
Intrusion Detection Systems
Chapter 7. Intrusion Detection Systems (IDS)
A.
Specifications and Implementation Requirements
1. General SCIF IDS Requirements
a) SCIFs shall be protected by IDS when not occupied.
b) Interior areas of a SCIF through which reasonable access could be gained,
including walls common to areas not protected at the SCI level, shall be protected by
IDS. However, these adjacent areas do not need IDS protection if the AO determines
that a facility’s security programs consist of layered and complementary controls
sufficient to deter and detect unauthorized entry and movement.
c) Doors without access control systems and that are not under constant visual
observation shall be continuously monitored by the IDS.
d) If any component of the IDS is disrupted to the extent the system no longer
provides essential monitoring service (e.g., loss of line security, inoperable Intrusion
Detection Equipment (IDE), or loss of power), SCI-indoctrinated personnel shall
physically occupy the SCIF until the system is returned to normal operation. As an
alternative, the outside SCIF perimeter may be continuously monitored by a response
or guard force.
e) IDS failure shall be addressed in the SCIF emergency plan.
2. System Requirements
a) IDS installation related components and monitoring stations shall comply with
Underwriters Laboratories (UL) Standard for National Industrial Security Systems for
the Protection of Classified Material, UL 2050.
b) Installation shall comply with an Extent 3 installation as referenced in UL 2050.
c) Systems developed and used exclusively by the USG do not require UL
certification, but shall nonetheless comply with an Extent 3 installation as referenced
in UL 2050.
d) Areas of a SCIF through which reasonable access could be gained, including
walls common to areas not protected at the SCI level, shall be protected by IDS
consisting of UL 639 listed motion sensors and UL 634 listed High Security Switches
(HSS) that meet UL Level II requirements and/or other AO-approved equivalent
sensors. All new SCIF accreditations shall use UL Level II HSS. Existing UL Level
I HSS are authorized until major IDS modifications/upgrades are made.
e) IDE cabling that extends beyond the SCIF perimeter shall employ Encrypted Line
Security or be installed in a closed and sealed metal conveyance defined as a pipe,
tube or the like constructed of ferrous Electrical Metallic Tubing (EMT), ferrous pipe
conduit or ferrous rigid sheet metal ducting. All joints and connections shall be
permanently sealed completely around all surfaces (e.g. welding, epoxy, fusion, etc.).
Set screw shall not be used. The seal shall provide a continuous bond between the
57
Chapter 7
Intrusion Detection Systems
components of the conveyance. If a service or pull box must be utilized, it must be
secured with a GSA approved combination padlock or AO approved key lock.
f) SCIFs that share common or contiguous perimeter and support the same IC
Element, or have an established Co-Use-Agreement (CUA), may have the Premise
Control Unit (PCU) programmed into multiple logical units or partitions, of the same
PCU, that function as individual control units for the intrusion detection system
installed in multiple areas or rooms operated independently of one another. All
conditions of compliance that apply to a PCU and IDS apply equally to the partitions
of the PCU. The PCU shall be independent of IDS safeguarding non-UL 2050
certified areas.
g) If a monitoring station is responsible for more than one IDS, there shall be an
audible and visible annunciation for each IDS.
h) IDS’s shall be separate from, and independent of, fire, smoke, radon, water, and
other systems.
i) If the IDS incorporates an access control system (ACS), notifications from the
ACS shall be subordinate in priority to IDS alarms.
j) System key variables and passwords shall be protected and restricted to U.S. SCI-
indoctrinated personnel.
k) IDS technical drawings, installation instructions, specifications, etc., shall be
restricted as determined by the AO and documented in the CSP.
l) Systems shall not include audio or video monitoring without the application of
appropriate countermeasures and AO approval.
m) Monitoring systems containing auto-reset features shall have this feature disabled.
n) Alarm activations shall remain displayed locally until cleared by an authorized
SCI-cleared individual.
o) The AO shall approve all system plans. Final system acceptance testing shall be
included as part of the SCIF accreditation package.
p) False alarms shall not exceed one alarm per 30-day period per IDS partition.
False alarms are any alarm signal transmitted in the absence of a confirmed intrusion
that is caused by changes in the environment, equipment malfunction or electrical
disturbances. If false alarms exceed this requirement, a technical evaluation of the
system shall be conducted to determine the cause, repaired or resolved, and
documented.
3. System Components
a) Sensors
(1) All system sensors shall be located within the SCIF, except as noted in
3.a.(2) below.
(2) With AO approval, sensors external to the SCIF perimeter may be installed
in accordance with paragraph A.2.e.
58
Chapter 7
Intrusion Detection Systems
(3) Failed sensors shall cause immediate and continuous alarm activation until
the failure is investigated and corrected by procedures as documented in the SCIF
SOP or Emergency Action Plan.
(4) Dual technology sensors are authorized when each technology transmits
alarm conditions independent of the other technology.
(5) A sufficient number of motion detection sensors shall be installed to meet the
requirements of paragraph A.2.d or shall be approved by the AO. However, for
facilities outside the U.S. and in Category I and II countries, motion detection
sensors above false ceilings or below false floors may be required by the AO.
(6) When the primary entrance door employs a delay to allow for changing the
system mode of access, the delay shall not exceed 30 seconds.
(7) SCIF perimeter doors shall be protected by an HSS and a motion detection
sensor.
(8) Emergency exit doors shall be alarmed and monitored 24 hours per day.
b) Premise Control Units (PCUs)
(1) PCUs shall be located within a SCIF and only SCIF personnel may initiate
changes in access modes.
(2) Operation of the access/secure switch shall be restricted by using a device or
procedure that validates authorized use.
(3) Cabling between all sensors and the PCU shall be dedicated to the system, be
contained within the SCIF, and shall comply with national and local electric codes
and Committee for National Security Systems (CNSS) standards. If the wiring
cannot be contained within the SCIF, such cabling shall meet the requirements for
External Transmission Line Security 3.b.(10) below.
(4) Alarm status shall be continuously displayed with an alphanumeric display at
the PCU and/or monitoring station.
(5) Every effort shall be made to design and install the alarm-monitoring panel in
a location that prevents observation by unauthorized persons.
(6) The monitoring station or PCU shall identify and display activated sensors.
(7) Immediate and continuous alarm annunciations shall occur for the following
conditions.
(a) Intrusion Detection
(b) Failed Sensor
(c) Tamper Detection
(d) Maintenance Mode (a maintenance message displayed in place of an
alarm)
(e) IDE Sensor Points shunted or masked during maintenance mode
(8) A change in power status (AC or backup) shall be indicated locally and at the
monitoring station.
59
Chapter 7
Intrusion Detection Systems
(9) All system events shall be reset by authorized SCI-indoctrinated personnel
after an inspection of the SCIF and a determination for the cause of the alarm.
Any auto-alarm reset feature of the IDS shall be disabled.
(10) IDS transmission lines leaving the SCIF to the monitoring station, must meet
National Institute of Standards and Technology, Federal Information Processing
Standards (FIPS) for certified encrypted lines. The FIPS standard employed must
be noted on the UL 2050/CRZH Certificate or other certificate employed. PCUs
certified under UL 1610 must meet FIPS 197 or FIPS 140-2 encryption
certification and methods. For PCUs certified under UL1076, only FIPS 140-2 is
the acceptable encryption certification and method. Alternative methods shall be
approved by the AO and noted on the IDS Certificate
(11) The SCI cleared IDS Administrator(s) shall change maintenance and master
profiles, PINs or passcodes from their default settings to a unique PIN or
passcode.
c) Integrated IDS and Remote Terminal Access.
(1) US government LAN or WAN requires the AO’s Chief Information Officer
(CIO) to be consulted before connecting an IDS. The system hosting the IDS shall
be issued Authority to Operate (ATO) by the agency CIO, following the FISMA
Risk Management Framework as outlined in NIST SP 800-53.
(2) For IDS that have been integrated into a networked system (local area
network (LAN) or wide area network (WAN)), the requirements below shall be
met.
(a) IDS System software shall be installed on a host computing device that is
logically and physically restricted to corporate/government security elements
cleared to the SCI level. The host device shall be located in a Physically
Protected Space, which is defined as a locked room with walls, floor and
ceiling that are fixed in place forming a solid physical boundary to which
only SCI-cleared personnel have access. If uncleared personnel or personnel
with less than SCI indoctrination require access to this space, they shall be
escorted by authorized SCI-cleared personnel. The door(s) shall use
Commercial Grade 1 hardware fitted with high security key cylinder(s) in
compliance with UL 437. This room will be protected by a UL Extent 3
burglar alarm system and access control unless manned 24 hours.
(b) All system components and equipment shall be isolated in a manner that
may include, but are not limited to firewalls, Virtual Private Networks,
Virtual Routing Tables, Application Level security mechanisms or similar
enhancements, that are configured to allow secure and private data transfers
only between the PCU, host computer, remote terminal and monitoring
station.
60
Chapter 7
Intrusion Detection Systems
(c) If any component of the IDS is remotely programmable, continuous
network monitoring is required. Continuous network monitoring includes
auditing and reporting of network intrusion detection and prevention systems
used in A.3.c.2.b.
(d) A secondary communication path may be utilized to augment an existing
data communication link to reduce investigations of data communication
failures of less than five minute duration. The supervision provided by the
secondary communication path shall be equivalent to that of the primary
communication path. The secondary communications path may only be
wireless if approved by the AO in consultation with the CTTA and/or the
appropriate technical authority.
(e) A unique user ID and password is required for each individual granted
access to the system host computing devices or remote terminal. Passwords
shall be a minimum of twelve characters consisting of alpha, numeric, and
special characters, and shall be changed every six months or utilize US
Government Personal Identity Verification (PIV) Card or Common Access
Card (CAC) with two factor certificate authentication.
(f) Individuals with IDS administrative access shall immediately notify the
AO or designee of any unauthorized modifications.
(g) All transmissions of system information over the LAN/WAN shall be
encrypted using National Institute of Standards and Technology (NIST) FIPS
140-2, VPN, or closed and sealed conveyance (see A.2.e). FIPS-197 (AES)
may be used with AO approval.
(h) Remote System terminals shall:
Utilize role based user permissions (e.g. Super User, SO, Guard) as
approved by the AO. USG installations shall be in compliance with
paragraph 7.A.3.c.1Prohibit Non SCI Cleared personnel from
modifying the IDS or ACS.
Require an independent user ID and password in addition to the host
login requirements. Requirements for IDS Systems Software Passwords
shall be: a unique user ID and password for each individual granted
access to the remote terminal. Passwords shall be a minimum of twelve
characters consisting of alpha, numeric, and special characters and shall
be changed every six months or utilize US Government Personal
Identity Verification (PIV) Card or Common Access Card (CAC) with
two factor certificate authentication if supported by the application.
61
Chapter 7
Intrusion Detection Systems
Host systems shall log and monitor failed login attempts. All remote
sessions shall be documented and accessible to AO upon request.
All Host systems and PCUs shall be patched and maintained to
implement current firmware and security updates. USG systems shall
be in compliance with Information Assurance Vulnerability Alert
(IAVA) guidance.
B.
IDS Modes of Operation
1. General Information
a) The system shall operate in either armed or disarmed mode.
b) There shall be no remote capability for changing the mode of operation by non-
SCI cleared personnel.
c) Changing arm/disarm status of the system shall be limited to SCI-indoctrinated
personnel.
2. Requirements for Disarmed Mode
a) When in disarmed mode, normal authorized entry into the SCIF, in accordance
with prescribed security procedures, shall not cause an alarm.
b) A record shall be maintained that identifies the person responsible for disarming
the system.
c) Tamper circuits and emergency exit door circuits shall remain in the armed mode
of operation.
d) The PCU shall have the ability to allow alarm points to remain in armed status
while other points are in disarmed status.
3. Requirements for Armed Mode
a) The system shall be placed into armed mode when the last person departs the
SCIF.
b) A record shall be maintained identifying the person responsible for arming the
system.
c) Each failure to arm or disarm the system shall be reported to the responsible SCIF
Security Manager. Records of these events shall be maintained for two years.
d) When in the armed mode, any unauthorized entry into the SCIF shall cause an
alarm to be immediately transmitted to the monitoring station.
4. Requirements for Maintenance and Zone Shunting/Masking Modes
a) When maintenance is performed on a system, the monitoring station must be
notified and logged. The initiation of system maintenance can only be performed by
an SCI cleared IDS administrator or SCIF Security Officer (SO).
62
Chapter 7
Intrusion Detection Systems
b) When an IDE point is shunted or masked for reasons other than maintenance, it
shall be displayed as such at the monitoring station throughout the period the
condition exists.
c) Any sensor that has been shunted shall be reactivated upon the next change in
status from armed to disarmed.
d) All maintenance periods shall be archived in the system.
e) A Personal Identification Number (PIN) is required, for maintenance purposes, to
be established and controlled by the SCI cleared IDS administrator or SCIF SO.
Procedures shall be documented in the SCIF SOP.
f) Portable Electronic Devices (PEDs) are allowed attachment to system equipment
either temporarily or permanently for the purposes of system maintenance, repair and
reporting (See A.3.c). In addition, when utilizing a stand-alone device, the
requirements below shall be met.
(1) Such devices shall be kept under control of SCI-cleared personnel.
(2) When not in use, the PED shall be maintained in a Physically Protected
Space (see A.3.c.2.a).
(3) Mass storage devices containing SCIF alarm equipment details,
configurations, or event data will be protected at an appropriate level approved by
the AO.
g) After the initial installation, the capability for remote diagnostics, maintenance, or
programming of IDE shall be accomplished only by SCI-cleared personnel and shall
be logged or recorded.
5. Requirements for Electrical Power
a) In the event of primary power failure, the system shall automatically transfer to an
emergency electrical power source without causing alarm activation.
b) Twenty-four hours of uninterruptible backup power is required and shall be
provided by batteries, an uninterruptible power supply (UPS), generators, or any
combination.
c) An audible or visual indicator at the PCU shall provide an indication of the
primary or backup electrical power source in use.
d) Equipment at the monitoring station shall visibly and audibly indicate a failure in
a power source or a change in power source. The individual system that failed or
changed shall be indicated at the PCU or monitoring station as directed by the AO.
6. Monitoring Stations
a) Monitoring stations shall be government-managed or one of the following in
accordance with UL 2050:
(1) AO-operated monitoring station.
(2) Government contractor monitoring station (formerly called a proprietary
central station).
63
Chapter 7
Intrusion Detection Systems
(3) National industrial monitoring station.
(4) Cleared commercial central station (see NISPOM, Chap. 5).
b) Monitoring station employees shall be eligible to hold a U.S. SECRET clearance.
c) Monitoring station operators shall be trained in system theory and operation to
effectively interpret system incidents and take appropriate response action.
d) Records shall be maintained shall be maintained in accordance with Chapter 12
section L.
C.
Operations and Maintenance of IDS
1. Alarm Response
a) Alarm activations shall be considered an unauthorized entry until resolved.
b) The response force shall take appropriate steps to safeguard the SCIF, as
permitted by a written support agreement, until an SCI-indoctrinated individual
arrives to take control of the situation.
c) An SCI indoctrinated individual must arrive in accordance with UL 2050
requirements (60 minutes) or the response time approved by the AO, after receipt of the
alarm signal to conduct an internal inspection of the SCIF, attempt to determine the
probable cause of the alarm activation, and reset the IDS prior to the departure of the
response force.
2. System Maintenance
a) Maintenance and repair personnel shall be escorted if they are not TOP SECRET-
cleared and indoctrinated for SCIF access.
b) Repairs shall be initiated by a service technician within 4 hours of the receipt of a
trouble signal or a request for service.
c) The SCIF shall be continuously manned by SCI-indoctrinated personnel on a 24-
hour basis until repairs are completed or alternate documented procedures approved
by the AO are initiated.
d) The following apply to emergency-power battery maintenance:
(1) The battery manufacturer’s periodic maintenance schedule and procedures
shall be followed and documented in the system’s maintenance logs and retained
for two years. Batteries should be replaced per manufacture’s recommendations
or as environmental conditions dictate.
(2) If the communications path is via a network, the local uninterruptible power
source for the network shall also be tested.
(3) If a generator is used to provide emergency power, the manufacturers
recommended maintenance and testing procedures shall be followed.
e) Network Maintenance
64
Chapter 7
Intrusion Detection Systems
(1) System administrators shall maintain configuration control, ensure the latest
operating system security patches have been applied, and configure the operating
system to provide a high level of security.
(2) Inside the U.S., network maintenance personnel within a SCIF shall be a U.S.
person and be escorted by cleared SCIF individuals.
(3) Outside the U.S., network maintenance personnel shall be U.S. TOP
SECRET-cleared or U.S. SECRET-cleared and escorted by SCIF personnel.
D.
Installation and Testing of IDS
1. Personnel Requirements
a) Installation and testing within the U.S. shall be performed by U.S. companies
using U.S. citizens.
b) Installation and testing outside of the U.S. shall be performed by personnel who
are U.S. TOP SECRET-cleared or U.S. SECRET-cleared and escorted by SCIF
personnel.
2. Installation Requirements
All system components and elements shall be installed in accordance with
requirements of this document, UL 2050, and manufacturer’s instructions and
standards.
3. Testing
a) Acceptance testing shall be conducted on systems prior to operational use to
provide assurance that they meet all requirements of this section prior to SCIF
accreditation.
b) Semi-annual IDS testing shall be conducted to ensure continued performance.
c) Records of testing and test performance shall be maintained in accordance with
documentation requirements.
d) Motion Detection Sensor Testing
(1) All motion detection sensors shall be tested to ensure activation of the sensor
at a minimum of four consecutive steps at a rate of one step per second; that is, 30
inches ± 3 inches or 760 mm ± 80 mm per second. The four-step movement shall
constitute a “trial.”
(2) The test shall be conducted by taking a four-step trial, stopping for three to
five seconds, and taking another four-step trial.
(3) Trials shall be repeated throughout the SCIF and from different directions.
(4) An alarm shall activate at least three out of every four consecutive trials made
by moving progressively through the SCIF.
e) HSS Testing
65
Chapter 7
Intrusion Detection Systems
All HSS devices shall be tested to ensure that an alarm signal activates before the
non-hinged side of the door opens beyond the thickness of the door from the
closed position, e.g., the sensor initiates before the door opens 1¾ inch for a 1¾
inch door.
f) Tamper Testing
(1) Each IDS equipment cover shall be individually removed or opened to ensure
there is alarm activation at the PCU or monitoring station in both the secure and
access modes.
(2) Tamper detection devices need only be tested when installed.
(3) The AO may require more frequent testing of tamper circuits.
66
Chapter 8
Access Control Systems
Chapter 8. Access Control Systems (ACS)
A.
SCIF Access Control
1. Guidelines
a) SCIFs shall be controlled by SCI-indoctrinated personnel or by an AO- approved
ACS to ensure access is restricted to authorized personnel.
b) Personnel access control shall be utilized at all SCIFs.
c) Visual recognition of persons entering the SCIF by an SCI-indoctrinated person at
the entrance to a SCIF is the ideal access control.
d) Entrances where visitor control is conducted shall be under continuous visual
observation unless the SCIF is properly secured.
e) When the SCIF is an entire building, access control shall occur at the building
perimeter.
2. ACS Requirements if Continuous Visual Observation is Not Possible
a) An automated personnel ACS that verifies an individual’s identity before the
individual is permitted unescorted access shall be utilized when personal recognition
and verification is not used. Automated verification shall employ two of the
following three technologies:
(1) Identification (ID) badge or card used in conjunction with the access control
device that validates the identity of the person to whom the card is issued.
Compromised or lost access cards shall be reported immediately and updated in
the system to reflect “no access.”
(2) A personal identification number (PIN) that is entered into the keypad by
each individual. The PIN shall consist of four or more random digits, with no
known or logical association to the individual or which can be derived from the
person or system generated. Compromised PINs shall be reported immediately to
the facility Security Officer (SO) or SCIF SO and updated in the system to reflect
“no access.”
(3) Biometric personal identity verification using unique personal characteristics
such as fingerprint, iris scan, palm print, etc.
b) The automated personnel ACS shall ensure that the probability of an unauthorized
individual gaining access is no more than one in ten thousand while the probability of
an authorized individual being rejected access is no more than one in one thousand.
Manufacturers must certify in writing that their system meets these criteria.
67
Chapter 8
Access Control Systems
B.
ACS Administration
1. ACS administrators shall be SCI-indoctrinated.
2. Remote release buttons that by-pass the ACS shall be inside the SCIF and in a
location that provides continuous visual observation of personnel entering the SCIF.
3. ACSs shall not be used to secure an unoccupied SCIF.
4. When not occupied, SCIFs shall be alarmed and in secure mode in accordance with
Chapter 7 and secured with an approved GSA FF-L-2740A combination lock.
5. Authorized personnel who permit another individual to enter the SCIF shall verify the
individual’s authorized access.
6. SCIF access authorization shall be removed when the individual is transferred,
terminated, or the access approval is suspended or revoked.
C.
ACS Physical Protection
1. Card readers, keypads, communication interface devices, and other access control
equipment located outside the SCIF shall be tamper-protected and be securely fastened to
a wall or other fixed structure.
2. Electrical components, associated wiring, or mechanical links shall be accessible only
from inside the SCIF.
3. System data that is carried on transmission lines (e.g., access authorizations, personal
identification, or verification data) to and from equipment located outside the SCIF shall
be protected using FIPS AES certified encrypted lines. If this communication technology
is not feasible, transmission lines shall be installed as approved by the AO.
4. Equipment containing access-control software programs shall be located in the SCIF
or a SECRET controlled area.
5. Electric door strikes installed in conjunction with a personnel ACS shall have a
positive engagement and be approved under UL 1034 for burglar resistance.
D.
ACS Recordkeeping
1. Records shall reflect the active assignment of ID badge/card, PIN, level of access,
entries, and similar system-related information.
2. Records and information concerning encoded ID data, PINs, Authentication data,
operating system software, or any other data associated with the personnel ACS shall be
secured in an open-storage facility or, when unattended, secured in a GSA-approved
container in a closed-storage facility. Access to such data shall be restricted to only SCI-
indoctrinated personnel responsible for the access control system.
3. Records of personnel removed from the system shall be retained for two years from
the date of removal.
68
Chapter 8
Access Control Systems
4. Records of security incidents (violations/infractions) regarding ACS shall be retained
by the SO for five years from the date of an incident or until investigations of system
violations and incidents have been resolved.
E.
Using Closed Circuit Television (CCTV) to Supplement ACS
1. CCTV may be used to supplement the monitoring of a SCIF entrance for remote
control of the door from within the SCIF. The system shall present no technical security
hazard.
2. The remote control device shall be within the interior of the SCIF.
3. The system shall provide a clear view of the SCIF entrance and shall be
monitored/operated by SCI-indoctrinated personnel within the SCIF.
4. CCTV communication lines should be located within the SCIF. Communication lines
that must run external to the SCIF shall be installed to prevent tampering as approved by
the AO.
F.
Non-Automated Access Control
1. Non-automated access control devices (mechanical, electric, or electromechanical)
may be approved by the AO to control access to SCIFs where the number of personnel
that require access is low and there is only one entrance.
2. Combinations shall consist of four (4) or more random digits.
3. The use of pass keys to bypass such devices should be avoided except when local
fire/safety codes require them. Any pass keys for such devices must be strictly controlled
by SCI-indoctrinated personnel.
4. Mechanical access control devices (e.g., UNICAN, Simplex) shall be installed to
prevent manipulation or access to coding mechanisms from outside the door.
5. The following shall apply to electric or electromechanical access control devices:
a) The control panel or keypad shall be installed in such a manner to preclude
unauthorized observation of the combination or the actions of a combination change.
b) The selection and setting of combinations shall be accomplished by the SO and
shall be changed when compromised or deemed necessary by the SO.
c) The control panel in which the combination and all associated cabling and wiring
is set shall be located inside the SCIF and shall have sufficient physical security to
deny unauthorized access to its mechanism.
69
Chapter 8
Access Control Systems
This page intentionally left blank.
70
Chapter 9
Acoustic Protection
Chapter 9. Acoustic Protection
A.
Overview
1. This establishes DNI guidelines to protect classified conversations from being
inadvertently overheard outside a SCIF.
2. This is not intended to protect against deliberate technical interception of audio
emanations.
B.
Sound Group Ratings
The ability of a SCIF structure to retain sound within the perimeter is rated using a
descriptive value, the Sound Transmission Class (STC). To satisfy the normal security
standards of SCIFs, the following transmission attenuation groups have been established:
Sound Group 3 - STC 45 or better. Loud speech from within the SCIF can be
faintly heard but not understood outside of the SCIF. Normal speech is
unintelligible with the unaided human ear.
Sound Group 4 - STC 50 or better. Very loud sounds within the SCIF, such as
loud singing, brass music, or a radio at full volume, can be heard with the human
ear faintly or not at all outside of the SCIF.
C.
Acoustic Testing
1. Audio tests shall be conducted to verify standards are met. Tests may be instrumental
or non-instrumental as approved by the AO. Test method used shall be detailed in the
CSP.
2. Instrumental Acoustic Tests
a) Only those with training on audio testing techniques shall conduct instrumental
acoustic tests
b) With all SCIF doors closed, all perimeter walls and openings (e.g., air returns,
doors, windows, etc.) shall be tested along multiple points to ensure that either Sound
Group 3 or 4 is met.
c) Audio test sources shall have a variable sound level output.
d) The output frequency range shall include normal speech.
e) Test speakers shall be placed six feet from the test wall and 4 feet off the floor.
f) Audio gain of the test source shall produce “loud or very loud speech” as defined
by Sound Group 3 and 4 levels respectively.
71
Chapter 9
Acoustic Protection
g) As an alternative, instrumented testing may be performed to Noise Isolation Class
(NIC) standards. Results shall comply with NIC 40 for Sound Group 3 and NIC 45
for Sound Group 4.
3. Non-Instrumental Acoustic Tests
All non-instrumental tests shall be approved by the AO.
D.
Construction Guidance for Acoustic Protection
1. The SCIF perimeter shall be designed and constructed to meet Sound Group 3 or
better standards. (See construction drawings for Wall A, B, or C.)
2. Areas that provide for amplified conversations, such as conference centers, video
teleconference (VTC) rooms, or similar areas, shall be designed and constructed to meet
Sound Group 4 standards. (See construction drawings for Wall A, B, or C.)
3. Utility (e.g., power, signal, telephone) distribution shall be surface mounted to a
sound-treated wall and shall not completely penetrate the sound-engineered structure.
E.
Sound Transmission Mitigations
1. Construction of walls as described in Chapter 3 (Wall types A, B and C) or with
brick, concrete, or other substantive material and acoustically treating penetrations, walls
and doors should provide the necessary acoustic protection for Sound group 3.
2. When Sound Group 3 or 4 cannot be met with normal construction, supplemental
mitigations to protect classified discussions from being overheard by unauthorized
persons may include but not be limited to the following:
a) Structural enhancements such as the use of high-density building materials (i.e.,
sound deadening materials) can be used to increase the resistance of the perimeter to
vibration at audio frequencies.
b) Facility design can include a perimeter location or stand-off distance which
prevents non-SCI-indoctrinated person(s) traversing beyond the point where SCI
discussions become susceptible to interception. For example, use of a perimeter
fence or protective zone between the SCIF perimeter walls and the closest "listening
place" is permitted as an alternative to other sound protection measures.
c) Sound masking devices, in conjunction with an amplifier and speakers or
transducers, can be used to generate and distribute vibrations or noise; noise sources
may be noise generators, tapes, discs, or digital audio players.
d) Speakers/transducers must produce sound at a higher level than the voice
conversations within the SCIF.
e) Speakers/transducers shall be placed close to, or mounted on, any paths that
would allow audio to leave the area, including doors, windows, common perimeter
walls, vents/ducts, and any other means by which voice can leave the SCIF.
72
Chapter 9
Acoustic Protection
f) Wires and transducers shall, to the greatest extent possible, be located within the
perimeter of the SCIF.
g) The sound masking system shall be subject to inspection during TSCM
evaluations.
h) If the AO determines risk to be low, a speaker may be installed outside the SCIF
door if the following conditions are met:
The cable exiting the SCIF shall be encased within rigid conduit.
The sound masking system shall be subject to review during TSCM
evaluations.
i) For common walls, the speakers/transducers shall be placed so the sound
optimizes the acoustical protection.
j) For doors and windows, the speakers/transducers shall be placed close to the
aperture of the window or door and the sound projected in a direction facing away
from conversations.
k) Once the speakers or transducers are optimally placed, the system volume shall be
set and fixed. The volume level for each speaker shall be determined by listening to
conversations outside the SCIF or area to be protected, and the speaker volume
adjusted until conversations are unintelligible from outside the SCIF.
l) Sound-source generators shall be permanently installed and not contain an
AM/FM receiver and shall be located within the SCIF.
m) Any sound-source generator within the SCIF that is equipped with a capability to
record ambient sound shall have that capability disabled.
n) Examples of government-owned or government-sponsored sound-source
generators are given below:
Audio amplifier with a standalone computer (no network connection).
Audio amplifier with a cassette tape player, compact disc (CD) player, or
digital audio player, or with a digital audio tape (DAT) playback unit.
Integrated amplifier and playback unit incorporating any of the above music
sources.
A noise generator or shift noise source generator using either white or pink
noise.
73
Chapter 9
Acoustic Protection
This page intentionally left blank.
74
Chapter 10
(PEDs/RCET)
Chapter 10. Portable Electronic Devices with Recording Capabilities
and Embedded Technologies (PEDs/RCET)
A.
Approved Use of PEDs/RCET in a SCIF
1. DNI Executive Correspondence, ES 2017-00043, Wireless Technology in the
Intelligence Community, should be referred to in all cases dealing with Portable
Electronic Devices with Wireless capabilities.
2. Heads of IC elements will institute and maintain mitigation programs
(countermeasures) if they allow introduction of PEDs/RCETs with recording capabilities
into SCIFs under their cognizance. Such decisions are not reciprocal or applicable to
facilities under the cognizance of other heads of IC elements.
3. Medical devices. Approval for medical devices will comply with all applicable laws
and oversight policies, including the Rehabilitation Act, and the latest IC medical device
approval process. As a minimum, the medical device must be reviewed to determine any
technical security issues introduced by the device. Based on the security/technical
review, medical devices may be approved by the AO for introduction and use within a
SCIF.
4. Recording capabilities and restricted technologies are technologies that introduce
vulnerabilities to information and therefore impact SCIF security. These technologies
include, but are not limited to, radio frequency transmitters, audio and video recorders,
cameras, microphones, data storage devices, computing devices, memory sticks, thumb
drives or flash memory and devices with USB connectivity.
5. Any approval for radio frequency transmitters shall require the AO and the Certified
TEMPEST Technical Authority (CTTA) collaborate and approve (as required) the
introduction and use of PEDs/RCETs into a SCIF where there is a valid mission related
requirement.
6. The AO, and when appropriate, the information systems (ISs) authorizing official(s),
shall collaborate and approve (as required) the introduction and use of PEDs/RCETs into
a SCIF when there is a valid mission related requirement.
7. Outside the U.S., heads of intelligence elements may approve PED/RCET usage by
waiver and include the following:
Defined mission need for PED/RCET usage.
Defined period of time.
Statement of residual risk
8. Within the U.S., if the AO determines the risk from PEDs/RCET to SCI under their
cognizance is acceptable, taking a PED/RCET into the SCIF may be allowed with the
following restrictions:
a) A comprehensive risk assessment addressing each vulnerability, security concern
and the component of risk must be completed.
75
Chapter 10
(PEDs/RCET)
b) Only PEDs/RCET with low risk may be allowed entry to a SCIF.
c) Mitigation shall be applied to PEDs/RCET evaluated to be high and medium risk
to reduce the PED/RCET risk to low before the device may be allowed entry.
d) Assessments may result in an AO determination to prohibit specific PEDs/RCET.
B.
Prohibitions
1. Personally-owned PEDs/RCETs are prohibited from processing SCI. Connecting
personally-owned PEDs/RCETs to an unclassified IS inside SCIFs may only be done
when wireless capability is physically disconnected and has the approval of the AO for
the IS.
2. Personally-owned PEDs/RCETs are prohibited in SCIFs outside the U.S. If the AO
determines that mission requirements dictate a need, government- or contractor-owned
PEDs/RCETs may be permitted in a SCIF by specific exception or if the AO determines
the risk is low.
3. If a PED/RCET is transported outside the U.S. and left unattended or physical control
is lost, that device shall not be reintroduced into a SCIF.
C.
PED/RCET Risk Levels
1. General Information
a) Levels of risk are based on the functionality of PEDs/RCET.
b) The AO and appropriate authorizing official for the IS (when a portable IS is
involved) will determine risk level and mitigation requirements for devices not
addressed.
2. Low-, Medium-, and High-risk PEDs/RCET.
a) Low-risk PEDs/RCET are devices without recording or transmission capabilities
and may be allowed into a SCIF by AO without mitigation. Low-risk PEDs/RCET
include, but are not limited to, the following:
Electronic calculators, spell checkers, language translators, etc.
Receive-only pagers.
Audio and video playback devices with no storage capability.
Radios (receive-only).
Infrared (IR) devices that convey no intelligence data (e.g., text, audio, video,
etc.), such as an IR mouse or remote control.
b) Medium-risk PEDs/RCET are devices with built-in features that enable recording
or transmitting digital text, digital images/video, or audio data; however, these
features can be physically disabled. Medium-risk PEDs/RCET may be allowed in a
76
Chapter 10
(PEDs/RCET)
SCIF by the AO with appropriate mitigations. Examples of medium-risk
PEDs/RCET include, but are not limited to, the following:
Voice-only cellular telephones.
Portable ISs, such as personal digital assistants (PDAs), tablet personal
computers, etc.
Devices that may contain or be connected to communications modems
Devices that have microphones or recording capabilities
c) High-risk PEDs/RCET are those devices with recording and/or transmitting
capabilities that require more extensive or technically complex mitigation measures to
reduce the inherent risk or those that cannot be sufficiently mitigated with current
technology. The AO may approve entry and use of government- and contractor-
owned PEDs/RCET for official business provided mitigation measures are in place
that reduces the risk to low. Examples include, but are not limited to, the following:
Electronic devices with RF transmitting (IEEE 802.11, Bluetooth, etc.).
Photographic, video, and audio recording devices.
Multi-function cellular telephones.
D.
Risk Mitigation
1. Heads of IC elements shall establish risk mitigation programs if high- or medium-risk
PEDs/RCET are allowed into SCIFs.
2. Risk mitigation programs shall contain the following elements:
a) Formal approval process for PEDs/RCET.
b) Initial and annual refresher training for those individuals with approval to bring
PEDs/RCET into a SCIF.
c) Device mitigation compliance documents listing the specific PEDs/RCET, their
permitted use, required mitigations, and residual risk after mitigation.
d) A user agreement that specifies the following:
(1) The USG or a designated representative may seize the PED/RCET for
physical and forensic examination at the government’s discretion.
(2) The USG and the designated representative are not responsible for any
damage or loss to a device or information stored on personally-owned
PEDs/RCET resulting from physical or forensic examination.
3. Risk mitigation programs may include the following elements:
a) Registration of PED/RCET serial numbers.
b) PED/RCET security training program.
c) Reporting procedures for loss or suspected tampering.
77
Chapter 10
(PEDs/RCET)
d) Labeling approved PEDs/RCET for easy identification.
e) Electronic detection equipment to detect transmitters/cell phones.
78
Chapter 11
Telecommunications Systems
Chapter 11. Telecommunications Systems
A.
Applicability
1. This guidance is compatible with, but may not satisfy, security requirements of other
disciplines such as Information Systems Security, Communications Security (COMSEC),
Operational Security (OPSEC), or TEMPEST.
2. This section outlines the security requirements that shall be met to ensure the
following:
Protection of information.
Configuration of unclassified telecommunications systems, devices, features, and
software.
Access control.
Control of the cable infrastructure.
B.
Unclassified Telephone Systems
1. A baseline configuration of all unclassified telephone systems, devices, features, and
software shall be established, documented, and included in the SCIF FFC.
2. The AO shall review the telephone system baseline configuration and supporting
information to determine if the risk of information loss or exploitation has been suitably
mitigated.
3. When security requirements cannot be met, unclassified telephone equipment shall be
installed and maintained in non-discussion areas only.
4. When not in use, unclassified telephone systems shall not transmit audio and shall be
configured to prevent external control or activation, technical exploitation, or penetration.
5. Unclassified telephone systems shall incorporate physical and software access
controls to prevent disclosure or manipulation of system programming and data. The
following specific requirements shall be met:
a) On-hook and off-hook audio protection shall be provided by equipment identified
by the National Telephone Security Working Group within TSG-6/CNSSI 5006,
National Instruction for Approved Telephone Equipment, or an equivalent TSG 2/
CNSSI 5002:
(1) The purpose of a TSG-2 or CNSS 5002 Computerized Telephone Switch
(CTS) installation is to prevent manipulation of telephone instruments to obtain
audio from within the SCIF while the instrument is in an "on-hook" condition.
(2) When isolation is provided by a CTS installed IAW TSG-2 or CNSS 5002, the
AO accepts the risk on-hook audio from the SCIF may be present on all
instrument wiring until it reaches the CTS due to instrument configuration,
design, or breakdown. (TSG-2/CNSS 5002 does not address procedures to
determine security of the station itself.)
79
Chapter 11
Telecommunications Systems
(3) To provide the necessary level of security, the Physically Protected Space
(PPS) where the CTS is installed must meet equivalent security and access control
standards as the SCIF it supports to provide positive physical protection for the
CTS and all of its parts. (CNSSI 5002 para 7.A.(1) ). This includes all
instruments, cables, lines, intermediate wiring frames, and distributed CTS
modules necessary for the functioning of the instruments.
(4) The AO may require all instrument wiring exiting between the SCIF and PPS
which is not at the SCIF level be contained in a closed and sealed metal
conveyance as defined in Chapter 7.A.2 to ensure physical security of the
instrument wiring.
(5) Telephones or instruments not type-accepted will be presumed to have on-
hook audio available at the mounting cord until determined otherwise.
Determining telephone stations do not have on-hook audio hazards requires a
technical investigation and specific equipment. These investigations and
determinations may only be conducted by a TSCM team or National Telephone
Security Working Group (NTSWG) authorized telephone laboratory.
b) If a Computerized Telephone System (CTS) is selected for isolation, it shall be
installed and configured as detailed in TSG 2 with software and hardware
configuration control and audit reporting (such as station message detail reporting,
call detail reporting, etc.).
c) System programming shall not include the ability to place, or keep, a handset off-
hook.
d) Configuration of the system shall ensure that all on-hook and off-hook
vulnerabilities are mitigated.
e) When local or remote CTS administration terminals are not contained within a
controlled area and safeguarded against unauthorized manipulation, the use of CNSSI
5006 approved telephone instruments shall be required, regardless of the CTS
configuration.
f) Speakerphones and audio conferencing systems shall not be used on unclassified
telephone systems in SCIFs. Exceptions to this requirement may be approved by the
AO when these systems have sufficient audio isolation from other classified
discussion areas in the SCIF and procedures are established to prevent inadvertent
transmission outside the SCIF.
g) Features used for voice mail or unified messaging services shall be configured to
prevent access to remote diagnostic ports, internal dial tone, and dial plans.
h) Telephone answering devices and facsimile machines shall not contain features
that introduce security vulnerabilities, e.g., remote room monitoring, remote
programming, or other similar features that may permit off-premise access to room
audio.
i) All unclassified telephone systems and associated infrastructure shall be
physically isolated from classified information and telecommunications systems in
accordance with DNI and CNSS TEMPEST guidance.
80
Chapter 11
Telecommunications Systems
j) TSG6/CNSSI 5006 approved instruments or compliance with CNSSI 5000 is
required for installation in SCIFs for Voice over Internet Protocol (VoIP) systems
installed in a SCIF. TSG6/CNSSI 5006 approved instruments must be installed
following the manufacturer’s requirements. For non-TSG6/CNSSI 5006 approved
instruments, the security requirements and installation guidelines contained in the
National Telecommunications Security Working Group (NTSWG) publication
CNSSI 5000 shall be followed for Voice over Internet Protocol (VoIP) systems
installed in a SCIF.
C.
Unclassified Information Systems
1. Unclassified information systems shall be safeguarded to prevent hardware or
software manipulation that could result in the compromise of data.
2. Information systems equipment with telephonic or audio features shall be protected
against remote activation and/or removal of audio (analog or digitized) information.
3. Video cameras used for unclassified video teleconferencing and video recording
equipment shall be deactivated and disconnected when not in use.
4. Video devices shall feature a clearly visible indicator to alert SCIF personnel when
recording or transmitting.
D.
Using Closed Circuit Television (CCTV) to Monitor the SCIF Entry
Point(s)
1. CCTV may be used to supplement the monitoring of a SCIF entrance and to record
events for investigation.
2. The system shall present no technical security hazard to the SCIF.
3. The system and all components, including communications and control lines, shall be
exterior to the SCIF perimeter.
4. The system may provide a clear view of the SCIF entrance but not enable the viewer
to observe classified information when the door is open nor external control pads or
access control components that would enable them to identify PINs.
E.
Unclassified Wireless Network Technology
1. The use of devices or systems utilizing wireless technologies pose a high risk and
require approval from the AO, CTTA, and IT systems approving authority prior to
introduction into the SCIF.
2. Wireless systems shall meet all TEMPEST and TSCM requirements and shall be
weighed against the facilities overall security posture (i.e., facility location, threat, as well
as any compensatory countermeasures that create SID) when evaluating these systems.
81
Chapter 11
Telecommunications Systems
3. All separation and isolation standards provided in TEMPEST standards are applicable
to unclassified wireless systems installed or used in SCIFs.
F.
Environmental Infrastructure Systems
1. The FFC shall include information on whether or not environmental infrastructure
systems (also referred to as building maintenance systems) are located in the SCIF.
Examples include the following:
Premise management systems
Environmental control systems
Lighting and power control units
Uninterrupted power sources
2. The FFC shall identify all external connections for infrastructure systems that service
the SCIF. Examples of the purpose of external connections include the following:
Remote monitoring
Access and external control of features and services
Protection measures taken to prevent malicious activity, intrusion, and
exploitation.
G.
Emergency Notification Systems
1. The introduction of electronic systems that have components outside the SCIF
perimeter is prohibited, with the following exceptions:
a) The system is approved by the AO.
b) The system is required for security purposes.
c) The system is required under life safety regulations.
2. If required, and speakers or other transducers are part of a system that is not wholly
contained in the SCIF but are installed in the SCIF for life safety or fire regulations, the
system must be protected as follows:
a) All incoming wiring shall breach the SCIF perimeter at one point. TEMPEST or
TSCM concerns may require electronic isolation and shall require review and
approval by the CTTA.
b) One-way (audio into the SCIF) communication systems shall have a high gain
amplifier.
c) Two-way communication systems shall only be approved when absolutely
necessary to meet safety/security requirements. They shall be protected so that audio
cannot leave the SCIF without the SCIF occupants being alerted when the system is
activated.
82
Chapter 11
Telecommunications Systems
d) All electronic isolation components shall be installed within the SCIF and as close
to the point of SCIF penetration as possible.
H.
Systems Access
1. Installation and maintenance of unclassified systems and devices supporting SCIF
operations may require physical or remote access. The requirements outlined in this
section shall apply to telecommunications devices located within the SCIF or in a
controlled area outside the SCIF.
2. Installation and maintenance personnel requiring physical access shall possess the
appropriate clearance and access, or will be escorted and monitored at all times within the
SCIF by technically knowledgeable, U.S. SCI-indoctrinated personnel.
3. Remote maintenance shall be protected against manipulation or activation.
4. All capabilities for remote maintenance and diagnostic services shall be specified in
the FFC.
5. The FFC shall identify all procedures and countermeasures to prevent unauthorized
system access, unauthorized system modification, or introduction of unauthorized
software.
6. Remote maintenance and diagnosis may be performed from a SCIF or an adjacent
controlled area over a protected link in accordance with FIPS AES standards.
7. Telephone systems only may be accessed over an unclassified telephone line as
specified in TSG 2 Standard, Section 4.c.
I.
Unclassified Cable Control
1. To the extent possible, all telecommunications cabling shall enter the SCIF through a
single opening and allow for visual inspection.
2. Cable, either fiber or metallic, shall be accounted for from the point of entry into the
SCIF.
a) The accountability shall identify the precise use of every cable through labeling.
b) Log entries may also be used.
c) Designated spare conductors shall be identified, labeled, and bundled together.
3. Unused conductors shall be removed. If removal is not feasible, the metallic
conductors shall be stripped, bound together, and grounded at the point of ingress/egress.
4. Unused fiber shall be uncoupled from the interface within the SCIF, capped, and
labeled as unused fiber.
83
Chapter 11
Telecommunications Systems
J.
Protected Distribution Systems
1. Unencrypted communication cables transmitting SCI between accredited SCIFs shall
be installed in a Protective Distribution System that complies with standards established
in CNSSI 7003, Protected Distribution System.
2. PDS used to protect SCI shall be approved by the CSA AO.
K.
References
1. Overview
a) The NTSWG publishes guidance for the protection of sensitive information and
unclassified telecommunications information processing systems and equipment.
b) NTSWG documents are currently in transition from TSG/NTSWG documents to
Committee on National Security Systems (CNSS) publications.
c) The List of References is provided for use by personnel concerned with
telecommunications security.
2. List of References
a) TSG Standard 1 (Introduction to Telephone Security). Provides telephone
security background and approved options for telephone installations in USG
sensitive discussion areas.
b) TSG Standard 2 (TSG Guidelines for Computerized Telephone Systems) and
Annexes. Establishes requirements for planning, installing, maintaining, and
managing CTS, and provides guidance for personnel involved in writing contracts,
inspecting, and providing system administration of CTS.
c) TSG Standards 3, 4, 5, and CNSSI 5001. Contains design specifications for
telecommunication manufacturers and are not necessarily applicable to facility
security personnel.
d) CNSSI 5000. Establishes requirements for planning, installing, maintaining, and
managing VoIP systems.
e) CNSSI 5006. Lists approved equipment which inherently provide on-hook
security.
f) NTSWG Information Series (Computerized Telephone Systems). A Review of
Deficiencies, Threats, and Risks, December 1994). Describes deficiencies, threats,
and risks associated with using computerized telephone systems.
g) NTSWG Information Series (Executive Overview, October 1996). Provides the
salient points of the TSG standards and presents them in a non-technical format.
h) NTSWG Information Series (Central Office (CO) Interfaces, November 1997).
Provides an understanding of the types of services delivered by the local central
office and describes how they are connected to administrative telecommunications
systems and devices.
84
Chapter 11
Telecommunications Systems
i) NTSWG/NRO Information Series (Everything You Always Wanted to Know
about Telephone Security…but were afraid to ask, 2nd Edition, December 1998).
Distills the essence of the TSG standards (which contain sound telecommunications
practices) and presents them in a readable, non-technical manner.
j) NTSWG/NRO Information Series (Infrastructure Surety Program…securing the
last mile, April 1999). Provides an understanding of office automation and
infrastructure system protection that contributes to SCIF operation.
k) NTSWG Information Series (Computerized Telephone Systems Security Plan
Manual, May 1999). Assists to implement and maintain the “secure” operation of
CTSs as used to support SCIF operations. (The term “secure” relates to the safe and
risk-free operation, not the use of encryption or a transmission security device.)
l) Director of National Intelligence, Intelligence Community Directive 702,
Technical Surveillance Countermeasures.
m) Director of National Intelligence, Intelligence Community Directive 503,
Intelligence Community Information Technology Systems Security Risk
Management, Certification and Accreditation.
n) SPB Issuance 00-2 (18 January 2000). Infrastructure Surety Program and the
Management Assessment Tool.
85
Chapter 11
Telecommunications Systems
This page intentionally left blank.
86
Chapter 12
Management and Operations
Chapter 12. Management and Operations
A.
Purpose
To establish safeguards and procedures necessary to prevent the unauthorized disclosure
of SCI and other classified national security information in SCIFs. To define
administrative processes that shall provide a secure operating environment and enable
adequate security oversight, management, and operations of SCIFs.
B.
SCIF Repository
1. As required by ICD 705, the DNI shall manage an inventory of information on all
SCIFs which shall be reported to the DNI via the SCIF repository not later than 180 days
after the effective date of ICD 705 and updated no later than 30 days after changes occur
thereafter.
2. Reportable SCIF Administrative Information:
SCIF ID
AO ID
Location of SCIF
o In U.S.
o Outside U.S.
o Under COM
SCIF Type
o Closed Storage
o Open Storage
o SWA
o TSWA
o T-SCIF
SID
Initial Accredited Date
Re-Accreditation Date
Review date
Waivers
Date waiver approved
Waiver approval authority/ID
Exceeded standards
Does not meet standards
Date waiver expires
87
Chapter 12
Management and Operations
C.
SCIF Management
1. SO Responsibilities:
a) The SCIF SO shall be responsible for all aspects of SCIF management and
operations to include security policy implementation and oversight.
b) The SO shall prepare a comprehensive Standard Operating Procedure (SOP) that
documents management and operations of the SCIF.
c) The SO shall review the SOP at least annually and revise it when any aspect of
SCIF security changes.
d) The SO shall issue and control all SCIF keys. Locks shall be changed when a key
is lost or is believed to be compromised.
e) The SO shall conduct annual self-inspections to ensure the continued security of
SCIF operations, identify deficiencies, and document corrective actions taken.
Inspection results shall be forwarded to the AO and copies retained by the SO until
the next inspection.
f) The SO shall create an emergency plan to be approved by the AO. Plans shall be
reviewed and updated annually and all SCIF occupants shall be familiar with the
plans. Drills shall be conducted as circumstances warrant, but at least annually. The
emergency plan may be an extension of an overall department, agency, or installation
plan.
(1) For SCIFs within the U.S., emergency plans shall address the following:
Fire
Natural disaster
Civil unrest
Intrusion detection system failures
Admittance of emergency personnel
The protection of SCIF occupants and classified information
Evacuation requirements and emergency destruction
(2) For SCIFs outside the U.S., emergency plans shall address all of the above
and shall include instructions for the emergency destruction or removal of SCI
where political instability, terrorism, host country attitudes, or criminal activity
suggest the possibility that a SCIF may be overrun.
g) The SO shall control passwords to access the maintenance mode of copiers and
other office equipment.
h) The SO shall develop an SOP that addresses actions to be taken when IDS
maintenance access is required.
2. Required SCIF Documentation
a) Copies of all documents relating to SCIF accreditation shall be maintained by the
SCIF SO and include, but not limited to, the following:
88
Chapter 12
Management and Operations
SCIF accreditation
Fixed facility checklist
Construction security plan
CTTA evaluation
IS accreditation
SOPs
The results of the final acceptance test of the original system installation and
any tests to system modifications made thereafter
Emergency plan
b) As applicable, the following documents shall be maintained by the SCIF SO:
TSCM reports
Co-utilization agreements
Memoranda of agreement
Self-inspection reports
Compartmented area checklist
Shipboard SCIF checklist
Aircraft/UAV checklist
A copy of the CRZH certificate (UL 2050)
Pre-Construction Checklist Form
D.
SOPs
1. A comprehensive SOP that documents management and operations of the SCIF shall
be prepared by the SO.
2. The SOP shall be included in the accreditation package and approved by the AO.
3. All individuals assigned to, or having unescorted access to, the SCIF shall be familiar
with and adhere to the SOP.
4. All SOP revisions shall be provided to the AO for approval.
5. SOPs shall be tailored to a specific SCIF.
6. SOPs shall include specific areas of security concern as defined by program or
mission requirements.
7. The following are examples of subjects that should be addressed in an SOP:
Self-inspections
Security incidents and violations
Alarm systems and response requirements
Opening and closing procedures
Access controls
Visitor access
Escort procedures
Equipment maintenance procedures
89
Chapter 12
Management and Operations
Handling, processing, and destruction of classified material
Badge procedures
End-of-day security procedures
Personnel and package inspection procedures
Secure communications device instructions
E.
Changes in Security and Accreditation
1. Changes affecting the security posture of the SCIF shall be immediately reported by
the SO to the AO to include any corrective or mitigating actions taken.
2. If an AO determines that SCIF security conditions are unsatisfactory, SCIF
accreditation may be suspended or revoked.
a) All appropriate authorities and SCIF occupants shall be immediately notified and
the SCIF closed until deficient conditions are corrected.
b) All SCI material shall be relocated to another SCIF.
F.
General
1. Except for law enforcement officials or other personnel required to be armed in the
performance of their duties, firearms and other weapons are prohibited in SCIFs.
2. Photography, video, and audio recording equipment are restricted but may be
authorized for official purposes as documented in the SOP.
3. Procedures shall be established to control IT storage media upon entering or exiting a
SCIF in accordance with ICD 503 (Intelligence Community Information Technology
Systems Security Risk Management, Certification and Accreditation).
4. SCIF perimeter doors shall remain closed and controlled at all times. When a door
needs to be open, it shall be continually monitored by an SCI-indoctrinated individual.
5. All SCIF occupants shall be familiar with emergency plans and drills shall be
conducted as circumstances warrant, but at least annually.
6. Where the risk of hostile action is significant, SCI materials shall be maintained at an
absolute minimum.
90
Chapter 12
Management and Operations
G.
Inspections/Reviews
1. SCIF inspections shall be performed by the AO, or designee, prior to accreditation.
2. The AO, or designee, shall conduct periodic security inspections/reviews to ensure
the efficiency of SCIF operations, identify deficiencies, and document corrective actions
taken. All relevant documentation associated with SCIF accreditation, inspections, and
security administration may be subject to review.
3. Periodic inspections/reviews shall be conducted based on threat, facility
modifications, sensitivity of programs, past security performance, or at least every five
years.
4. SOs shall conduct annual self-inspections to ensure the continued security of SCIF
operations, identification of deficiencies, and to document corrective actions taken.
Inspection results shall be forwarded to the AO and copies retained by the SO until the
next inspection.
5. Authorized inspectors shall be admitted to a SCIF without delay or hindrance when
inspection personnel are properly certified to have the appropriate level of security
clearance and SCI indoctrination for the security level of the SCIF.
6. Short-notice or emergency conditions may warrant entry without regard to the normal
SCIF duty hours.
7. Government-owned equipment needed to conduct SCIF inspections will be admitted
into the SCIF without delay. Specifically, equipment for TEMPEST or Technical
Surveillance Countermeasures (TSCM) testing shall be admitted to a SCIF as long as the
personnel operating the equipment are certified to have the appropriate level of security
clearance and SCI indoctrination.
8. Technical Surveillance Countermeasures (TSCM) activities in SCIFs will only be
conducted by USG TSCM teams established or sponsored by a USG element. USG
TSCM teams consist of USG military or civilian personnel or USG contractors who have
successfully completed approved TSCM training.
H.
Control of Combinations
1. Combinations to locks installed on security containers/safes, perimeter doors,
windows, and any other opening should be changed in the following circumstances:
a) When a combination lock is first installed or used.
b) When a combination has been subjected, or believed to have been subjected, to
compromise.
c) Whenever a person knowing the combination no longer requires access to it
unless other sufficient controls exist to prevent access to the lock.
d) At other times when considered necessary by the SO.
91
Chapter 12
Management and Operations
2. When the lock is taken out of service, it will be reset to 50-25-50.
3. All combinations to the SCIF entrance doors should be stored in a different SCIF.
When this is not feasible, alternative arrangements shall be made in coordination with the AO.
I.
De-Accreditation Guidelines
SCIF closeouts and de-accreditations shall comply with the following procedures:
1. Inspect all areas, storage containers, and furniture for the presence of classified,
sensitive, or proprietary information, and remove any found.
2. Reset safe combinations to 50-25-50 and lock the containers.
3. Affix written certification to all storage containers that the container does not contain
classified, sensitive, or proprietary information. The certification shall include the date of
inspection and the name and signature of the inspector.
4. Ensure that reproduction and printing equipment is decertified or disposed of in
accordance with AO guidance.
5. Dispose of, or relocate, SCI computer equipment, media, hard drives, and portable
storage media as approved by the AO.
6. Request revocation of Automated Information Systems (AIS) accreditation.
7. Request revocation of SCIF accreditation.
8. If the SCIF will be used for another mission or project that requires alarms, transfer
alarm service to the new activity.
9. If the SCIF will not be used for another mission or project and all classified, sensitive,
or proprietary information has been removed, the following shall occur:
a) Alarm service shall be discontinued.
b) Combinations on the entrance door and any GSA containers shall be changed to
50-25-50.
c) All keys shall be accounted for.
J.
Visitor Access
1. General Requirements
a) Visitor logs shall be used to record all SCIF visitors and include the following
information:
Visitor’s full name
Organization
Citizenship
Purpose of the visit
92
Chapter 12
Management and Operations
Point of contact
Date/time of the visit
b) Government-issued identification shall be required as a means of positive
identification.
c) Visitor logs shall be retained for two years after the date of the last entry.
d) Visitor clearance verification shall be accomplished using the DNI Scattered
Castles database to the greatest extent possible.
e) Visitors whose clearances have not been verified may be permitted, under escort,
entry into the SCIF; however, access to and/or discussion of classified information
shall be denied pending clearance verification.
f) Visitors, SCIF occupants, and their possessions may be subject to screening and
inspections to deter the unauthorized removal of classified material or the
introduction of prohibited items or contraband.
g) Screening and inspection procedures shall be documented and approved by the
AO.
2. SCIF Access by Uncleared and Emergency Personnel
a) Uncleared personnel shall be escorted at all times by cleared personnel.
b) The ratio of cleared escorts to uncleared personnel shall be determined on a case-
by-case basis by the SO.
c) Prior to assuming escort duties, all escorts shall receive a briefing by the SO or
designee outlining their responsibilities.
d) Uncleared personnel shall be kept under observation at all times while in the
SCIF. Escorts shall ensure precautions are taken to preclude inadvertent access to
classified information.
e) Lights, signs, or other alerting mechanisms or procedures shall be used to alert
SCIF occupants of the presence of uncleared personnel.
f) Emergency personnel and equipment shall be allowed access to SCIFs and be
escorted to the degree practical. If exposed to classified information, they shall sign
an inadvertent disclosure statement when feasible.
93
Chapter 12
Management and Operations
K.
Maintenance
1. SCI-indoctrinated maintenance personnel shall be used to the extent possible.
2. Procedures for performing maintenance on office equipment, including the use of
diagnostic equipment, shall be documented in the SCIF SOP.
3. Computerized diagnostic equipment, to include associated hardware and software,
shall be kept under control within a SCIF and shall be managed to prohibit the migration
of classified data when connected to classified systems. Procedures shall be documented
in the SOP.
4. Passwords to access the maintenance mode of copiers and other office equipment
shall be controlled by the SO.
5. Office equipment that is no longer serviceable, such as copiers and classified fax
machines, shall be sanitized by having volatile memory erased and non-volatile memory
and disk storage removed for terminal destruction.
L.
IDS and ACS Documentation Requirements
The following documents and records shall be maintained by the SCIF SO:
1. System Plans such as system design, equipment, and installation documentation.
2. If applicable, agreements established for external monitoring, response, or both, and
which shall include the following information:
Response time for response forces and SCI indoctrinated personnel.
Responsibilities of the response force upon arrival.
Maintenance of SCIF points of contact.
Length of time response personnel are required to remain on-site.
3. Monitoring Station SOP and/or a copy of the monitoring station UL certificate.
4. Maintenance access SOP.
5. Records, logs, and archives.
6. Records of system testing (for two years) shall include the following information:
Testing dates
Names of individuals performing the test
Specific equipment tested
Malfunctions detected
Corrective actions taken
94
Chapter 12
Management and Operations
7. Records of guard or response force personnel testing as required by the AO.
8. The PCU shall contain a secured, non-volatile event (alarm) log capable of storing at
least six months of events, or a printer shall be installed that provides real-time recording
of openings, closings, alarms, trouble alarms, and loss of communications.
a) If the system has no provision for automatic entry into archive, the AO may
authorize a manual logging system.
b) Monitoring personnel shall record the time, source, type of alarm, and action
taken.
c) The SCIF SO shall routinely review the historical records.
d) Results of investigations and observations by the response force shall also be
maintained at the monitoring station.
e) Records of alarm annunciations shall be retained for two years.
f) Shunting or masking of any zone or sensor shall be logged in the system archives.
g) All maintenance periods shall be archived into the system.
h) An archive shall be maintained for all remote service mode activities.
9. Access Control Systems Records which include:
a) The active assignment of ID badge/card, PIN, level of access, entries, and similar
system-related information
b) Records of personnel removed from the system which shall be retained for two
years from the date of removal.
10. Records of security incidents (violations/infractions) regarding automated systems
shall be retained by the SO for five years from the date of an incident or until
investigations of system violations and incidents have been resolved.
M.
Emergency Plan
1. The SO shall create an emergency plan.
2. The emergency plan shall be approved by the AO and maintained on-site for each
accredited SCIF.
3. The emergency plan may be an extension of an overall department, agency, or
installation plan.
4. The emergency plan shall address the following:
Fire
Natural disaster
Civil unrest
Intrusion detection system failures
Admittance of emergency personnel into a SCIF
The protection of SCIF occupants and classified information
95
Chapter 12
Management and Operations
Evacuation requirements and emergency destruction
5. Plans shall be reviewed at least annually and updated as necessary.
6. All SCIF occupants shall be familiar with the plans and drills shall be conducted as
circumstances warrant, but at least annually.
7. Where political instability, terrorism, host country attitudes, or criminal activity
suggests the possibility that a SCIF may be overrun, emergency plans shall include
instructions for the secure destruction or removal of SCI under adverse circumstances and
include contingencies for loss of electrical power and non-availability of open spaces for
burning or chemical decomposition of material.
8. Where the risk of hostile actions are significant, SCI holdings and reference materials
shall be maintained at an absolute minimum required for current working purposes. If
reference or other material is needed, it shall be obtained from other activities and
returned or destroyed when no longer needed.
N.
SCIF Co-Use and Joint Use
1. Any SCIF that has been accredited by an AO or designee shall be reciprocally
accepted for use as accredited by all IC Elements when there are no waivers to the
requirements established in ICS 705-1, ICS 705-2 and the IC Tech Specs.
2. Reciprocity is a condition that occurs when there is a requirement to share an
accredited SCIF or a portion thereof with a compartment, program or special activity that
is sponsored by an IC Element or organization other than the current SCIF CSA.
3. Reciprocal use requires a Co-Use (or Joint Use) agreement (CUA) which:
-Identifies responsibilities of the tenant and host
-Identifies the proposed use/activity
4. All CUA require completion of the SCIF Co-Use Request form.
5. CUA are considered Joint Use when the tenant desires to use the host information
system.
6. CUA are routed through and approved by designated Co-Use Coordinators. These are
the only individuals another Co-Use Coordinator will accept a CUA form from for
processing.
7. The burden to initiate a CUA falls to the tenant. Information accuracy in the request is
the responsibility of the tenant/host to facilitate; not the CUA coordinator.
8. CUA are NOT required when sharing a SCIF by two or more components under the
cognizance of the same IC Element.
96
Chapter 12
Management and Operations
9. CUA are coordinated with the Information System security representatives if the
tenant intends to bring an IT system into the host SCIF. Joint Use requires Information
System security representative coordination as well.
O.
CUA Form and Instructions
1. The following provides a guide on required information to ensure a CUA form is
completed sufficiently and can be approved by both the tenant and host Co-Use
Coordinators. Information accuracy on the form is the responsibility of the tenant and
host mission areas to validate prior to the form being routed to the requesting (tenant) Co-
Use Coordinator to initiate the approval process.
2. Overall classification of the CUA will usually be to the host security classification
guide, unless the tenant mission is a higher classification.
3. All processing of a CUA should use the current form and be conducted on a classified
system. Obtain the current CUA form from your agency Co-Use Coordinator. Legacy
forms will not be accepted by the Co-Use Coordinator. Information necessary for a
complete form includes:
-Block 1: Host Agency/Department
-Block 2: Tenant Agency/Department POC’s (POC’s are NOT the CUA
Coordinator)
-Block 3: Provide complete and accurate information, to include the complete
address and SCIF ID; this is how a coordinator validates information. Ensure the
room numbers are accurate. This is important for IS installation. Site POC could
be someone from host mission area or SO.
-Block 4: Ensure accuracy; one box must be checked.
-Block 5: Ensure accuracy; this is how a coordinator validates information.
-Block 6: This is the Host Information Security POC. Ensure the Co-Use or Joint
Use categories and use criteria is accurate and clarified with Tenant/Host before
the form is filled out.
-Block 7: Ensure all required information is filled out for an Industry site. Most
Government locations are “Indefinite”, however IC Elements AO or Designee
may have designated time limits.
-Block 8: Most instances are “Intel Related”. If you check “Other” ensure that a
full and thorough description is provided in Block 9.
97
Chapter 12
Management and Operations
-Block 9: Ensure any information is clarified and input here; don’t use for “filler”.
Classify as needed and portion mark properly.
-Tenant/Host Concur Blocks: Do NOT digitally sign; these are for CUA
Coordinator use.
-Classification Block: Ensure the document is classified properly and this block is
filled out properly; most likely to the Host classification guides.
P.
CUA Cancellation
1. When a CUA is no longer desired or necessary a CUA cancellation form is required.
2. The burden to initiate the CUA cancellation form falls to the tenant.
3. The following provides a guide on required information to ensure a CUA cancellation
form is completed sufficiently.
-Block 1: Host Agency/Department
-Block 2: Tenant Agency/Department POC’s (POC’s are NOT the CUA
Coordinator)
-Block 3: Provide complete and accurate information, to include the complete
address of the facility hosting the CUA/JUA
-Block 4: Ensure the SCIF ID is accurate.
-Block 5: Ensure the room numbers are accurate. This is important for IS
removal (if applicable).
-Block 6: Ensure any pertinent information is clarified and input here.
-Tenant CUA Coordinator will digitally sign and date
-Classification Block: Ensure the document is classified properly and this block is
filled out properly.
Chapter 13
Forms and Plans
98
Chapter 13. Forms and Plans
Fixed Facility Checklist
TEMPEST Checklist
Compartmented Area Checklist
Shipboard Checklist
Submarine Checklist
Aircraft/UAV Checklist
SCIF Co-Use Request and MOA
SCIF Co-Use Request Users Guide
Cancellation of SCIF Co-Utilization or Joint-Utilization
Pre-Construction Checklist
Construction Security Plan (CSP)
Inspectable Materials Checklist
This page intentionally left blank.
Page 1 of 21
SCIF Fixed Facility Checklist V1.5
CLASSIFY ACCORDING TO CLASSIFICATION AUTHORITY
CHECK Applicable blocks
Domestic
Overseas Not COM
Overseas COM
Pre-construction, Complete
Sections as Required by A/O
Final FFC Accreditation
Update/Page Change
Checklist Contents
Section A: General Information
Section B: Security-in-Depth
Section C: SCIF Security
Section D: Doors
Section E: Intrusion Detection Systems (IDS)
Section F: Telecommunication Systems and Equipment Baseline
Section G: Acoustical Protection
Section H: Classified Destruction Methods
Section I: Information Systems/TEMPEST/Technical Security
List of Attachments
FFC Date:
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 2 of 21
Section A: General Information
1. SCIF Data
Organization/Company Name
SCIF Identification Number (if applicable)
Organization subordinate to (if applicable)
Contract Number & Expiration Date (if applicable)
Concept approval Date/by (if applicable)
Accrediting Office/Accrediting Individual's Name
Defense Special Security Communication System (DSSCS) Information (if applicable)
DSSCS Message Address
DSSCS INFO Address
If no DSSCS Message Address, please provide
passing instructions
2. SCIF Location
Street Address
Building Name
Floor(s) Suite(s) Room(s) #
City
Base/Post
State/Country Zip Code
3. Mailing Address (if different from SCIF location)
Street or Post Office Box
City State Zip Code
4. Responsible Security Personnel
PRIMARY
ALTERNATE
Name
Commercial Phone
DSN Phone
Secure Phone
Cell
Secure Fax
Command or Regional Special Security Office/Name (SSO) (if applicable)
Commercial Phone
Other Phone
/
/
Accrediting Agency
Type
Class Email
Unclass Email
Other Email
Name
Lat/Long (If No Street)
/
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 3 of 21
5. Accreditation Data (Ref ICS 705-01, Para F.2 & ICS 705-02, Para D.1.a)
a. Indicate storage requirement:
Closed Continuous Operation None
b. Indicate the facility type:
Secure Working Area TSWA
Yes No
d. Co-Use Agreements
e. SAP(s) co-located within SCIF
Yes No
If yes, identify SAP Classification level (check all that apply)
SCI Top Secret Secret Confidential
f. SCIF Duty Hours Hours to Hours: Days Per Week:
g. Total square footage that the SCIF occupies:
h. Does the facility have any approved waivers?
Yes No
Provide attachment if required by AO
6. Construction/Modification (Ref: Chapter 3B)
a. Is construction or modification complete?
Yes No N/A
If no, enter the expected date of completion:
b. Was all construction completed in accordance with the CSP?
Yes No N/A
If NO, explain:
7. Inspections (Ref: Chapter 12 G) (Provide attachment if required by AO)
Yes No
If yes, provide the following:
1) TSCM Service completed by:
On
2) Were deficiencies corrected?
Yes No N/A
3) If NO, explain:
c. Compartments of SCI Requested:
Open
Permanent
Temporary
a. Has a TSCM Inspection been performed?
b. Last AO compliance periodic inspection/review:
On
Were deficiencies corrected?
Yes No N/A
If NO, explain:
c. Last self Inspection completed by:
On
AO Office Name AO Individual's Name
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 4 of 21
8. REMARKS:
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 5 of 21
Section B: Security-in-Depth
1. Answer the questions in this section to describe your Security In Depth (Ref: Chapter 2B)
a. Is the SCIF located on a military installation, embassy compound, USG compound or
contractor compound with a dedicated U.S. person response force?
Yes No
b. Does the SCIF occupy an entire building
Yes No
c. Does the SCIF occupy a single floor of the building
Yes No
d. Does the SCIF occupy a secluded area of the building
Yes No
e. Is the SCIF located on a fenced compound with access controlled vehicle gate and/or
pedestrian gate?
Yes No
f. Fence Type
1) Height:
2) Does it surround the compound?
Yes No
3) How is it controlled?
4) How many gates (vehicle & pedestrian)?
5) Hours of usage?
6) How are they controlled when not in use?
7) Is the Fence Alarmed?
Yes No
If so, describe alarm
systems (i.e. - Microwave)
g. Exterior Lighting Type:
1) Fence Lighting
2) Building Lighting
h. Is there external CCTV coverage?
Yes No
If so, describe the CCTV system. (include monitor/coverage locations on map)
i. Exterior Guards
1) What kind of patrols are they?
Static Roving
Clearance level of guards (if applicable)
During what hours/days?
If yes, describe duties:
Any SCIF duties?
2)
3)
4)
SCI
Top Secret Secret
No
Yes
Yes No
None
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 6 of 21
2. Describe Building Security (Please provide legible general floor plan of the SCIF perimeter)
Is the SCIF located in a controlled building with separate access controls, alarms,
elevator controls, stairwell control, etc. required to gain access to building or elevator?
Yes No
If yes, is SCIF controlled by bldg owners?
Yes No
If controlled by SCIF owners, is alarm activation reported to SCIF owners by agreement?
Yes No
b. Construction Type
c. Windows
d. Doors
e. Describe Building Access Control: Continuous?
Yes No
If no, during what hours?
f. Clearance level of guards (if applicable)
SCI Top Secret Secret
1) Any SCIF duties?
Yes No
If yes, describe duties?
During what hours/days?
3. Describe Building Interior Security
Are office areas adjacent to the SCIF controlled and alarmed? Yes No
If yes, describe adjacent areas and types of alarm systems.
Controlled by SCIF Owner?
Yes No
If controlled by Bldg owner, alarm activation reported to SCIF owner by agreement? Yes No
4. Remarks (Describe any additional security measures not addressed in this section)
What external security attributes and/or features should the AO consider before determining whether
or not this facility has Security In-Depth? Please identify/explain all factors:
a.
b.
a.
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Section C: SCIF Security
1. How is access to the SCIF controlled (Ref: Chapter 8)
a. By Guard Force
Yes No
If yes, what is their minimum security clearance level?
SCI Top Secret Secret
b. Is Guard Force Armed?
Yes No
N/A
c. By assigned personnel?
Yes No
If yes, do personnel have visual control of SCIF entrance door?
Yes No
d. By access control device?
Yes No
If yes, what kind?
Automated access control system Non-Automated
If Non-Automated
1. Is there a by-pass key?
Yes No
N/A
If yes, how is the by-pass key protected?
2. Manufacturer:
Model:
(Explain in Remarks if more space is required)
If Automated
1. Is there a by-pass key?
Yes No
N/A
If yes, how is the by-pass key protected?
2. Manufacturer: Model:
(Explain in Remarks if more space is required)
3. Are access control transmission lines protected by 128-bit encryption/FIPS 140?
Yes No
If no, explain the physical protection provided
4. Is automated access control system located within a SCIF or an alarmed area controlled
at the SECRET level?
Yes No
5. Is the access control system encoded and is ID data and PINs restricted to SCI-
indoctrinated personnel?
Yes No
6. Does external access control outside SCIF have tamper protection?
Yes No
7. Is the access control device integrated with IDS
Yes No
N/A
8. Is the access control device integrated with a LAN/WAN System?
Yes No
N/A
2. Does the SCIF have windows? (Ref: Chapter 3F)
a. Are they acoustically protected? Yes No
N/A
If Yes, how:
If No, explain:
b. Are they secured against forced entry?
Yes No
N/A
If Yes, how:
If No, explain:
Yes No
N/A
Page 7 of 21
c. Do they have RF protection?
Yes No
N/A
If Yes,
describe:
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 8 of 21
3. Do ventilation ducts penetrate the SCIF perimeter? (Ref: Chapter 3G)
Yes No
(Indicate all duct penetrations and their size on a separate floor plan as an attachment)
a. Any ducts over 96 square inches that penetrate perimeter walls? Yes No
If yes, how are they protected?
Other as Approved by AO
Bars/Grills/Metal /Baffles
If Other,
Describe
Protection:
b. Inspection ports? Yes No
If yes, are they within the SCIF? Yes No
If no, are they secured with AO approved High Security Lock?
Yes No
If No, explain:
c. Do all ventilation ducts penetrating the perimeter meet acoustical requirements? Yes No
(NOTE: All ducts and vents, regardless of size may require acoustical protection)
If yes, how are they protected? Metal Baffles Noise Generator Z-Duct
If Other,
Describe
Protection:
4. Construction (Ref: Chapter 3)
b. Describe
Perimeter Wall
Construction:
c. True ceiling
Describe material and thickness:
d. False ceiling?
Yes No
1) If yes, what is the type of ceiling material?
2) What is the distance between false and true ceiling?
d. Are they protected against visual surveillance?
Yes No
N/A
If Yes, how:
If No, explain:
2. SCIF windows (continued) (Ref: Chapter 3F)
e. True floor
Describe material and thickness:
f. Raised floor?
Yes No
1) If yes, what is the type of false flooring?
2) What is the distance between raised and true floor?
a. Is the entire wall assembly finished from true floor to true ceiling?
Yes No
Other
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
4. REMARKS:
Page 9 of 21
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 10 of 20
Section D: SCIF Doors
a. A GSA-approved pedestrian door deadbolt meeting the most current version of Federal
Specification FF-L-2890. NOTE: Previously AO approved FF-L-2740 integrated locking
hardware may be used. Additional standalone and flush-mounted dead bolts are prohibited.
Yes No
b. A combination lock meeting the most current version of Federal Specification
FF-L-2740? NOTE: Previously AO approved combination lock or deadbolt lock type may be used.
Yes No
If NO, explain:
If NO, explain:
c. Is an approved access control device installed? Yes No
If NO, explain:
2. Secondary Door Criteria
Secondary doors may be established with AO approval and as required by building code, safety and
accessibility requirements.
Yes No
a. Does the SCIF have any approved Secondary doors?
Yes No
The following door type definitions are referenced in this section: (Reference 3E)
a. Primary door: A SCIF perimeter door recognized as the main entrance.
b. Secondary door: A SCIF perimeter door employed as both an entry and egress door that is not the
Primary door.
1. Is the Primary door equipped with the following
c. Emergency egress-only door: A SCIF perimeter door employed as an emergency egress door with no
entry capability.
d. Is there a by-pass keyway for use in the event of an access control system failure? Yes No
If NO, explain:
If Yes, are all approved Secondary doors equipped with the following:
1) A GSA-approved pedestrian door egress device with deadbolt meeting the most
current version of Federal Specification FF-L-2890 for secondary door use
If NO, explain:
2) Approved access control hardware which
n D: Doors
must be deactivated when the SCIF is
not occupied, or as determined by the AO.
Yes No
If NO, explain:
Yes No
b. Does the SCIF have any Emergency Egress-only doors?
Yes No
If Yes, do all approved Emergency Egress-only doors meet the following:
1) Are they installed as required by building code, safety and accessibility
requirements?
If NO, explain:
Page 10 of 21
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 11 of 21
3. Criteria for ALL SCIF Doors (Ref: Chapter 3E)
Yes No
a. Do all SCIF perimeter doors comply with applicable building code, safety, and
accessibility requirements as determined by the authority having jurisdiction?
If NO, explain:
Yes No
b. Does the SCIF SOP includes procedures to ensure all doors are secured at end of day"
If NO, explain:
Yes No
c. Are all SCIF perimeter pedestrian doors equipped with an automatic, non-hold
door-closer which shall be installed internal to the SCIF?
If NO, explain:
Yes No
d. Are door hinge pins that are accessible from outside of the SCIF modified to
prevent removal of the door, e.g., welded, set screws, dog bolts, etc?
If NO, explain:
2) Are they equipped with GSA-approved pedestrian door emergency egress device
with deadbolt configuration meeting the most current version of Federal
Specification FFL-2890 for exit only door use or an AO approved alternate device
with similar functionality ?
Yes No
If NO, explain:
3) Are they alarmed 24/7 and have a local audible annunciator that must be
activated if the door is opened?
Yes No
If NO, explain:
4. Describe SCIF door fabrication and unique criteria
a. Wooden SCIF doors are at least 1 ¾ inch-thick solid wood core (i.e. wood stave,
structural composite lumber).
Yes No
N/A
Yes No
e. Do SCIF perimeter doors and frame assemblies meet acoustic requirements unless
declared a non-discussion area?
If NO, explain:
Yes No
If NO, explain:
Yes
No
g. Do all SCIF Perimeter doors meet TEMPEST requirements per CTTA guidance?
If NO, explain:
f. Are all SCIF perimeter doors alarmed in accordance with Chapter 7 of the Technical
Specifications?
Section D: SCIF Doors
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
5. REMARKS:
Page 12 of 21
Section D: Doors
b. Steel doors have the following specifications:
1) 1 ¾ inch-thick face steel equal to minimum 18-gauge steel.
2) Hinges reinforced to 7-gauge steel and preferably a lift hinge.
3) Door closure installation reinforced to 12-gauge steel.
4) Lock area pre-drilled and/or reinforced to 10-gauge steel.
Yes No
N/A
c. Vault door are GSA-approved Class 5 and not used to control day access.
Yes No
N/A
d. Roll-up Doors are a minimum 18-gauge steel, secured inside the SCIF using
dead-bolts on both sides of the door and alarmed in accordance with Chapter 7
Yes No
N/A
e. SCIF perimeter Double Doors have the following specifications:
1) The fixed leaf shall be secured at the top and bottom with deadbolts.
2) An astragal shall be attached to one door.
3) Each leaf of the door shall have an independent security alarm contact.
Yes No
N/A
f. Adjacent SCIF adjoining doors specifications
1) Be dead bolted on both sides
2) Be alarmed on both sides according to chapter 7.
3) Meet acoustic requirements as required.
4) Be covered by AO standard operating procedures.
5) Other door types shall be addressed on an individual basis as approved by
the AO.
Yes No
N/A
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 13 of 21
Section E: Intrusion Detection Systems
1. General IDS Description (Ref: Chapter 7A)
a. Has the IDS configuration been approved by the AO? Yes No
IDS installed by:
c. Premise Control Unit (PCU)
Manufacturer
Model Number
Tamper Protection
Yes No
Is the PCU located inside the SCIF perimeter (indicated on floor plan)?
Yes No
If no, explain
b.
d.
e. Accessible points of entry/perimeter?
Yes No
Any others? Explain;
f. Has the IDS passed AO or UL 2050 installation and acceptance tests? Yes No
If yes, attach a copy of certificate (Non-commercial proprietary system must answer all questions)
g. High Security Switches Type I Yes No
h. High Security Switches Type II Yes No
i. Motion sensor
j. Are any other intrusion detection equipment sensors/detectors in
use?
Yes No
k. Does the IDS extend beyond the SCIF perimeter? Yes No
l. Can the status of PCU be changed from outside IDS protection?
Yes No
If yes, is an audit conducted daily?
Yes No
m. Do any intrusion detection equipment components have audio or
video capabilities?
Yes No
If yes, explain.
n. PCU administrator SCI indoctrinated? Yes No
o. Is external Transmission Line Security used? Yes No
If yes, explain.
If yes, explain.
p. What is the method of line security? National Institute of Standards and Technology
(NIST) FIPS AES encryption?
Yes No
Make Model Manufacturer
Function
Please identify make, model and manufacturer and function and the location of interior motion detection
protection(indicate on floor plan)
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 14 of 21
1) If yes, has the encryption been certified by NIST or another independent testing
laboratory?
Yes No
2) If not NIST standard, is there an alternate?
Yes No
If yes, explain.
3) Does the alternate line utilize any cellular or other Radio Frequency (RF) capability? Yes No
Manufacturer Model Number
q. Does any part of the IDS use local or wide area network (LAN/WAN)? Yes No
N/A
1) Is the host computer dedicated solely for security purposes? Yes No
N/A
2) Is the host computer secured within an alarmed area at the physically
or higher level protected spaces or higher level?
Yes No
N/A
3) Is the host computer protected through firewalls or similar devices? Yes No
N/A
4) Is the password for the host computer unique for each user and at least 8-
characters long consisting of alpha, numeric, and special characters?
Yes No
N/A
5) Is the password changed semi-annually? Yes No
N/A
6) Are remote security terminals protected the same as the host computer? Yes No
N/A
2. Is emergency power available for the IDS?
Yes No
N/A
Generator? Yes No If yes, how many hours?
Battery? Yes No If yes, how many hours?
3. Who monitors is the IDS alarm monitor station and where is it located?
4. Does the monitor station have any remote capabilities (i.e., resetting alarms,
issuing PINs, accessing/securing alarms, etc.?
Yes No
N/A
If yes, explain:
If no, explain:
5. Does the IDS have any automatic features (i.e., timed auto-secure, auto-access
capabilities?
Yes No
N/A
6. Does the PCU/keypad have dial out capabilities?
Yes No
N/A
7. IDS response personnel
Yes No
N/A
a. Who provides initial alarm response?
b. Does the response force have a security clearance?
Yes No
If yes, what is the clearance level? SCI Top Secret
Secret
c. Do you have a written agreement with external response force? Yes No
d. Emergency procedures documented? Yes No
e. Response to alarm condition: Minutes
f. Are response procedures tested and records maintained? Yes No
If no, explain:
a. Has the IDS alarm monitor station been installed to Underwriters Laboratories
certified standards?
Yes No
Contractor facility submit copy of Certificate
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 15 of 21
g. Has a catastrophic failure plan been approved by the AO? Yes No
If no, explain:
10. REMARKS:
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 16 of 21
Section F: Telecommunication Systems and Equipment Baseline
1. Does the facility have any unclassified telephones that are connected to the
commercial public switch telephone network (PSTN )?
Yes
Identify the method of on-hook protection by completing items below
NOTE: TSG 6 approved phones can be found at the following link:
https://www.dni.gov/files/NCSC/documents/products/TSG-Approved-Equipment-List-May-2017.pdf
Yes
Manufacturer Model Number
TSG Number (if applicable)
b. CNSSI 5006 (TSG-6) approved disconnect device? Yes
1) Line disconnect? Yes
2) Ringer protection? Yes
Manufacturer Model Number
c. CNSSI 5002 (TSG-2) configured computerized telephone system (CTS)? Yes
1) If yes, please provide the following information about the CTS
Manufacturer Model
3) Does the Physically Protected Space (PPS) meet equivalent security and access
control standards as the supported SCIF?"
4) How are all cables, signal lines and intermediate writing frames between the SCIF telephones and
the CTS physically protected within a physically controlled space?
5) Are all program media, such as tapes and/ or disks, from the CTS afforded
physical protection from unauthorized alterations?
Yes
No N/A
No N/A
No N/A
No N/A
No N/A
No
a. CNSSI 5006 (TSG-6) approved teleph
one or instrum
en
t
(Please identify all telephone equipment/stations and/or instruments being used either below or as an attachment)
TSG Num ber (if applicable)
No
6) Is an up-to-d ate master copy of the CTS software program maintained for
confirmation and/ or reloading of the operating system?
Yes
No
7) Does the CTS have the capability to force or hold a telephone station off-hook? Yes
No
Yes No
If no, explain?
2) If yes, please provide the location of the CTS
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 17 of 21
8) Does the CTS use remote maintenance and diagnostic procedures or other remote
access features?
Yes
No
If yes, explain maintenance procedures
9) Do the CTS installers and programmers have security clearances? Yes
No
If yes, at what access level (minimum established by AO)
SCI
Top Secret
Secret
If no, are escorts provid ed?
Yes
No
d. Is it a Voice over Internet Protocol (VOIP) phone system (IPS) (Ref CNSSI
5000)?
Yes No N/A
1) If yes, please provide the following information about the IPS
Manufacturer Model Number IPS Location
2) Do all unclassified telephones within the facility have a hold, mute and/
or push-to-talk [handset] capability, (for off-hook audio protection)?
Yes
No
N/A
If no, explain?
3) Is access to the facility housing the IPS physically controlled?
Yes
No
If yes, what is the clearance level (if any) of facility or area
where the switch is located and how is the area controlled?
SCI Top Secret Secret
If no facility clearance level how is the facility or area where the IPS is physically located
controlled
4) Are all cables, signal lines and intermediate wiring frames between the SCIF
telephones and the IPS physically protected or contained within a physically
controlled space?
Yes No
If no, explain?
Are all program media, such as tapes and/ or disks, from the IPS afforded
physical protection from unauthorized alterations?
Yes
No
5)
6) Is an up-to-date master copy of the IPS softw are program maintained for
confirmation and/ or reloading of the operating system?
Yes No
7) Does the IPS have the capability to force or hold a telephone station off-hook? Yes No
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 18 of 21
5)
8) Does the IPS use remote maintenance and diagnostic procedures or other remote
access features?
Yes No
9) Do the IPS installers and programmers have security clearances? Yes No
If yes, at what access level (minimum established by AO)?
SCI
Top Secret
Secret
If no, are escorts provid ed?
Yes
No
2.
Automatic telephone call answering
a. Are there any automatic call answering devices for the telephones in the SCIF? Yes
No
1) If yes, please identify the type
Voicemail/ unified message service?
Yes
No
Standalone telephone answ ering device (TAD)? Yes No
2) Provide manufacturer and model number of the equipment
Manufacturer Model
b. Are speakerphones/ microphones enabled? Yes
No
If yes, has the remote room monitoring capability been disabled?
Yes
No
Has this been approved for use by the AO? Yes No N/A
Provide detailed configuration procedures
If app
licable, is the v
oice m
ail or u
n
ified m
essagin
g services
con
figu
red to
p
revent unauthorized access from remote diagnostic ports or internal dial
Yes No
3. Are any multi-function office machines (M-FOMs) used within the SCIF (M-FOMs are
are electronic equipment that can be used at network or standalone printers, facsimiles,
and copiers)?
Yes No
a. If yes, please identify the device to include (Please iden tify all M-FOM devices in use, either below or
as an attachment) --- Include a manufacture Volatile statement for each M-FOM.
Make
Model
Serial Number
b. If yes, please identify all features and information processing level of each M-FOM
1) Copier ? Yes
No
N/A
If yes, level(s) of information
SCI Top Secret Secret
Unclassified
2) Facsimile? Yes
No
N / A
If yes, level(s) of information
SCI Top Secret Secret
Unclassified
3) Printer? (connected to a standalone computer or network)
Yes
No
N / A
If yes, please explain and identify the system(s) and the level(s) of inform ation
System: SCI Top Secret Secret
Unclassified
System:
SCI Top Secret Secret
Unclassified
SCI Top Secret Secret
Unclassified
System:
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 19 of 21
c. Does the M-FOM have memory storage cap ability? Yes
No
N / A
If yes, w hat kind?
Volatile (information in memory clears/
erases when powered off)
d. Does the M-FOM have a d igital hard drive? Yes
No
N / A
e. Have maintenance and disposition procedures been established?
Yes
No
N / A
Non-volatile (information in memory that
remains when powered off)
f. Does the M-FOM have voice transmission capability and/ or a telephone handset?
Yes
No
N / A
If yes, describe how is this feature protected?
4. Are there any video teleconference (VTC) systems installed? Yes
No
If yes, what level(s) of information is the
VTC system processing?
SCI Top Secret Secret
Unclassified
Which room(s) contain VTC system s?
5. Are there any commercial television receivers installed? Yes
No
If yes, provide a separate annotated floor plan of the commercial television system
6. Does the SCIF have any automated environmental infrastructure systems? Yes
No
If yes, describe what countermeasures have been taken to provide against malicious activity, intrusion, and
exploitation. (Example: premise management systems, environmental control systems, lighting and power control
units, uninterrupted power sources)
7. REMARKS:
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 20 of 21
Section G: Acoustical Protection
1. Do all areas of the SCIF meet AO required acoustical protection standards’’? (Ref:
Chapter 9A)
Yes
No
If no, describe additional measures taken to provide conforming acoustical protection (e.g., added sound
insulation, door and windows coverings, no discussion areas, sound masking, etc.)
3. Are there any amplified audio systems used for classified information? (Example VTC, PA
systems, etc.)
Yes
No
If yes, are the walls/ ceilings/ floor of the room where the amplified aud io
system resid es acoustically treated to meet a Sound Grou p 4 or STC 50?
Yes
No
N / A
4. Is there a public address, music system or white noise system entirely contained within the
SCIF
No
If yes, provide a separate annotated floor plan for each system and describe the protection provided to the system (fiber
isolation, self-amplified speakers, other method to ensure no audio back feed from the system, etc.)
5. Is the SCIF equipped with a public address, emergency/fire announcement or music
system originating outside the SCIF?
Yes
No
6. REMAKS:
2 Is the facility declared a No Classified Discussion Area’? (Ref: Chapter 11A)
Yes
No
If yes, then the audio protection questions within this section may be identified as N/A
If the facility is declared a "No Classified Discussion
Area,"are warning notices posted prominently within the facility?
No N/A Yes
Yes
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Section H: Classified Destruction Methods
1. Destruction methods? (Ref: Chapter 12M)
a. Describe the method and equipment u sed for destruction of classified / sensitive material (if m ore than
one m ethod or device, use Remarks to describe). List all m anufactu rer and mod els
Method Device Manufactu rer Mod el
b.
Is a secondary method of d estruction available? Yes
No
c. Describe the location of destruction site(s) in relation to the secure facility
d.
Describe method or procedure u sed for handling non-soluble classified/ sensitive material at this facility
e. Do you have a written Emergency Action Plan (EAP) approved by AO (if required)?
Yes
No
N / A
2. REMARKS:
Page 21 of 21
Section I: INFOSEC/TEMPEST/Technical Security
1. D oes the facility electronically process classified information? (Ref: Chapter 13) Yes
No
If yes, complete TEMPEST CH ECKLIST FOR SCIF Form
UNCLASSIFIED (Until Filled In)
UNCLASSIFIED (Until Filled In)
Page 1 of 7
SCIF TEMPEST Checklist
Organization Name:
FFC Date:
CLASSIFY ACCORDING TO CLASSIFICATION AUTHORITY
Checklist Contents
Section A: General Information
Section B: SCIF Equipment/Systems
Section C: Information Processing
Attachments
NOTE: Maps Include Compass with True North indicated
External Map
1. Scale Drawing of SCIF location within the base/post/compound city of its location.
a. If you are on a military base/post, a government controlled facility/area or a compound/campus
that is solely controlled by your company with a 24-hour guard force, indicate the following:
i. Distance between the building and the closest boundary of the compound in meters.
ii. Distance in meters to the boundaries in each cardinal direction (i.e. East, West, North and
South).
iii. Scale drawings or maps of the location of the post/base/facility/area/campus/compound in
relationship to the nearest city.
b. If you are not in a controlled area indicate the following:
i. Distances in meters from the SCIF perimeter to the closest limit of SCIF’s inspectable
space boundary
2. Show the locations of any areas within 100 meters of the SCIF which are occupied by Foreign Nationals
or controlled by Foreign Entitles/Companies that are not readily accessible by SCIF personnel
Internal Map
1. Scale drawings or maps of the location of your SCIF within the building or facility that it resides
2. Provide floor plans of the SCIF itself and provide the following:
a. Location and identify by manufacture, model, type, and level of classification of any equipment
that is electronically processes unencrypted National Security Information (NSI). For large
facilities, this list can be placed on a separate spread sheet and numbers/symbols can be used in
the drawing.
b. Location of all Signal Line Distribution Systems, telephone instruments, line and power filters
and/or isolators, signal ground points, etc...
c. Routing and identity of lines, cables and other metallic conductors which leave the SCI area,
including telephone, power, signal, alarm lines, pipes, air ducts, etc..
3. If the SCIF is located in a Multi-story building NOT entirely controlled by the US government, include
the following:
a. Floor plan of the entire floor and identify the occupants of the other spaces.
b. Provide the names of the occupants on the floors above and below.
c. Identify any foreign nationals.
NOTE: GSA facilities are not exempt from the above requirement.
4. Indicate whether the SCIF shares a common wall with any non-government organizations. If so, list
them and show their locations on the diagram and maps.
5. Indicate identity of all signal lines and signal distribution systems within the SCIF.
a. Identify them as BLACK or RED and include all telephone lines, signal lines, alarm lines, etc.
b. If applicable, indicate where they leave the SCIF area.
c. Indicate where the leave they SCIF how the locations of all filters, Isolators and amplifiers
CLASSIFICATION
CLASSIFICATION
Page 2 of 7
Section A: General Information
1. SCIF Data
Organization/Company Name
SCIF Identification Number (if applicable)
Organization subordinate to (if applicable)
Contract Number & Expiration Date (if
applicable)
Concept approval Date/by (if applicable)
Cognizant Security Authority (CSA)
Defense Special Security Communication System Information (if applicable)
DSSCS Message Address
DSSCS INFO Address
If no DSSCS Message Address, please provide
passing instructions
2. SCIF Location
Street Address
Building Name
Floor(s)
Suite(s)
Room(s) #
City
Base/Post
State/Country
Zip Code
3. Mailing Address (if different from SCIF location)
Street or Post Office Box
City
State
Zip Code
4. Responsible Security Personnel
PRIMARY
ALTERNATE
Name
Commercial Phone
DSN Phone
Secure Phone
STE Other Phone
Home
Secure Fax
Command or Regional Special Security Office/Name (SSO) (if applicable)
Commercial Phone
Other Phone
/
CSA
ST
ST
CLASSIFICATION
CLASSIFICATION
Page 3 of 7
5. E-Mail Address of Responsible Security Personnel
Classified
Network/System Name & Level
Unclassified
Network/System Name
Other
Network/System Name
Section B: SCIF Equipment/Systems
1. Signal Lines and Signal Distribution Systems
Provide a floor plan diagram that show the location, routing and identity of all signal lines and signal distribution
systems within the SCIF. Identify them as BLACK or RED and include all telephone lines, signal lines, alarm lines, etc. If
applicable, indicate where they leave the SCIF area and show the locations of all filters, Isolators and amplifiers.
a. Are there any Signal Lines/Signal Distribution systems that exit the SCIF?
Yes
No
b. If No, skip to 2
c. If Yes, what type of lines exit the
SCIF?
d. □ Fiber Optic (skip to 2)
e. □ Coaxial
Copper
f. If they are Coaxial or Copper wires, is there any kind of Filter or Isolation device
installed on them?
Yes
No
If Yes, what type of device is used in the system? If needed, use additional sheets.
Make
Model #
Location
If No, describe each Signal Lines/Signal Distribution Systems.
Where it does each Signal Lines/Signal Distribution Systems go?
What does each Signal Lines/Signal Distribution Systems connect to outside the SCIF?
What is the composition of line?
How many lines
Additional Information
CLASSIFICATION
CLASSIFICATION
Page 4 of 7
2. Power Lines and Power Distribution Systems
a. Are there any Power Lines/Power Distribution Systems that exit the SCIF
Yes
No
If Yes, provide a diagram showing where it exits the SCIF. If No, skip to item 3.
b. Where do the power lines leave the SCIF
c. What does the power line connect to outside the SCIF
d. Does the power come from a host nation source
Yes
No
e. Does the power come from a US controlled generator
Yes
No
Describe the material composition of the line, the number of lines and the voltages involved
3. Heating, Ventilation and Air Conditioning (HVAC) Systems; Water Pipes; Gas Pipes, Sprinkler
Systems, etc.
Provide a diagram indicating their exits from the SCIF. If there are any grounding mitigations, please indicate
on the diagram. Are wave guides installed?
Do ventilation ducts/pipes penetrate the SCIF perimeter? (Ref: Chapter 3G)
Yes
No
Describe each HVAC Systems or pipe. Please explain in detail: path, connections in/outside of the SCIF,
composition of the vent or pipe, size, accessibility, etc.:
Are there any grounding mitigations?
Yes
No
If Yes, describe:
Are any wave guides installed
Yes
No
If Yes, describe:
CLASSIFICATION
CLASSIFICATION
Page 5 of 7
4. Radio Transmission/Reception Device:
Submit floor plans of the SCIF showing the transmitter locations, signal and power line routing and the
identity of all system components installed within the SCIF. If applicable, indicate where they leave the SCI
area, where the antenna is and show the locations of all Isolators and filters.
a.
Are there any Radio Transmitters or Receivers located in the SCIF or within three
meters of the SCIF’s perimeter wall? If No, skip to 5
Yes
No
Device #1:
a) Type Equipment
Make
Model
b) Hours Used
Per Month Per Week Per Day
c) Prior to encryption, highest classification of information transmitted
SCI Top Secret Secret
d) Location (Rm#)
e) List the distance between the radio transmission/reception device and the nearest RED
equipment or crypto gear
f) Is the power for the radio transmission/reception equipment isolated from the power for
the RED processing equipment
Yes
No
If Yes, how are they isolated
Separate power circuit (Skip to 5.)
Power line filters (annotate in 2d.)
If No, describe each transmitter power source
Transmitter power source path
Transmitter power source connections in/out of the SCIF
Transmitter power source composition of the line
Transmitter power source voltage
Transmitter power source size/gauge
Transmitter power sources accessibility
Additional transmitter power source information
For Additional Devices (use additional sheets)
CLASSIFICATION
CLASSIFICATION
Page 6 of 7
Use Fixed Facility Checklist “Section F: Telecommunication Systems and Equipment Baseline” to answer
items 5 and 6.
5. Multilevel Systems:
Are there any multi-level systems (e,g, equipment that processes different classification levels)located in the
SCIF or within one meter of the SCIF’s perimeter wall?
6. Telecommunications Systems:
What kind of telecommunications systems are in the SCIF? (VoIP, DSM) Please describe.
7. Existing TEMPEST
a. List any existing TEMPEST countermeasures
1) Are there any shielded enclosures?
Yes
No
If Yes, describe.
2) Is there any supplemental shielding?
Yes
No
If Yes, describe.
3) Are there any filters (power, signal, telephone, etc...)
Yes
No
If Yes, describe.
4) Are there any non-conductive sections in metallic distribution systems (pipes, a/c
ducts, etc.)?
Yes
No
If Yes, describe.
b. Construction method and materials
1) Describe Perimeter Wall Construction:
2) Ceiling
True ceiling?
Yes
No
If Yes, What is the material and thickness:
False ceiling?
Yes
No
If yes, what is the type of ceiling material?
CLASSIFICATION
CLASSIFICATION
Page 7 of 7
What is the distance between false and true ceiling?
3) Floor
True floor ?
Yes
No
If Yes, What is the material and thickness:
False floor?
Yes
No
If yes, what is the type of false flooring?
What is the distance between false and true floor?
c. Windows
1) Does the SCIF have windows
Yes
No
Quantity:
Size:
Countermeasures:
Section C: Information Processing
Volume of Information Processed- Describe the percentage and volume of information processed
at the UNCLASSIFIED, SENSITIVE, CONFIDENTIAL, SECRET, and TOP SECRET levels.
CLASSIFICATION
CLASSIFICATION
Page 1 of 5
CHECK Applicable blocks
Initial Approval
Re-approval
Modified Facility
Pre-construction
New Facility
Page Change
Checklist Contents
Section A: General information
Section B: Compartmented Area Security
Section C: Compartmented Area Type Descriptions
List of Attachments
(Diagrams must be submitted on 8 ½” x 11” or 11” x 17” format)
CLASSIFICATION
CLASSIFICATION
SCIF Compartmented Area (CA) Fixed Facility Checklist
Page 2 of 5
Section A: General Information
1. SCIF Data
Organization/Company Name
SCIF Identification Number (if applicable)
Organization subordinate to (if applicable)
Cognizant Security Authority (CSA)
Defense Special Security Communication System Information (if applicable)
DSSCS Message Address
DSSCS INFO Address
If no DSSCS Message Address, please provide passing instructions
Contract Information:
Contract #
Expiration Date
2. Location of Proposed Compartmented Area
Street Address
Building Name
Floor(s)
Suite(s)
Room(s) #
City
Base/Post
State/Country
Zip Code
3. Mailing Address (if different from SCIF location)
Street or Post Office Box
City
State
Zip Code
4. Responsible Security Personnel
PRIMARY
ALTERNATE
Name
Commercial Phone
DSN Phone
Secure Phone
STE Other Phone
Home
Secure Fax
Command or Regional Special Security Office/Name (SSO)
ISSO
Commercial Phone
Secure Phone
ST
ST
CLASSIFICATION
CLASSIFICATION
Page 3 of 5
5. Existing SCIF Accreditation Data
a. Type
□ Open Storage
□ Closed Storage
□ IT Processing
□ Discussions
□ Continuous
Operation
□ Fixed □ TSWA
□ SWA □ Other
b. Accreditation Granted by:
on:
c. If automated information system (AIS) is used, has an accreditation been granted?
Yes
No
If yes, identify compartment classification level (check all that apply)
SCI
Top Secret
Secret
Confidential
d. SCIF Duty Hours
Hours to Hours:
Days Per Week:
e. Total square footage that the SCIF occupies:
f. Any waivers? (If Yes, attach copy of approved waiver)
Yes
No
N/A
6. Requestor Contact Information
Name
Phone
Open
Secure
Email
Unclass
Classified
Additional Email
Unclass
Classified
7. Compartmented Area Information
a. Compartmented area accreditation level desired:
1) Indicate CA requirements
□ Open Storage
□ Closed Storage
□ IT Processing
□ Discussions
□ Continuous Operation
2) Indicate the CA Type Requested (See Section C)
□ Type 1
□ Type 2
□ Type 3
Section B: Compartmented Area Security
1. Equipment Processing
Are all equipment (computers, copiers, printers, scanners, fax, etc.) used to process compartmented information
approved to process compartmented program information or a system security plan (SSP) submitted for approval
to the appropriate information system authorizing official?
□ Yes
□ No
Provide a copy of the approval documentation or a copy of the SSP submitted.
2. Workstations in a cubicle or office configuration Type 1:
a. Is the CA in a cubicle or other open environment?
□ Yes
□ No
b. Is the workstation in a closable office?
□ Yes
□ No
c. If the office is closable, is there an access control device?
□ Yes
□ No
If yes, please provide the following:
MANUFACTURER
MODEL
d. Are display screens positioned to avoid “shoulder-surfing”?
□ Yes
□ No
e. Are polarized privacy screens installed?
□ Yes
□ No
f. Is printing of CA material required?
□ Yes
□ No
If yes, explain printer location, connectivity and procedures to retrieve printed material.
CLASSIFICATION
CLASSIFICATION
Page 4 of 5
g. Is scanning/copying of CA material required?
□ Yes
□ No
If yes, explain copier/scanner location, connectivity and procedures to protect CA material.
h. Is storage of CA material required within the CA?
□ Yes
□ No
If yes, do only individuals briefed to the CA program have access to the GSA approved storage container?
□ Yes
□ No
i. Describe procedures to secure the workstation when the individual leaves the CA (for any length of time).
j. Describe procedures to secure the CA at the end of day.
3. CAs with a requirement for discussions of compartmented information Type 2:
a. Are all individuals within the CA briefed to the compartment?
□ Yes
□ No
If No, describe procedures to prevent inadvertent disclosure of compartmented information.
b. Is the CA constructed to meet ICS 705-1 acoustic standards?
Yes
□ No
If Yes, describe acoustic protection method used.
c. Is secure teleconferencing equipment to be used?
Yes
□ No
d. Describe the procedures for controlling access during program discussions and control of meeting material used (if applicable)
during and after the discussions.
4. CAs with a requirement for strict accountability of compartmented information Type 3:
a. Are all personnel who have unescorted access to the CA briefed to the compartmented program?
Yes
□ No
b. Does the CA meet ICS 705-1 standard for acoustic protection? (if applicable)
Yes
□ No
If Yes, describe acoustic protection method used.
c. Are storage containers GSA approved?
Yes
□ No
d. Are all equipment (computers, copiers, printers, scanners, fax, etc.) used to process compartmented
information approved or a system security plan (SSP) submitted for approval?
Yes
□ No
5. Controlling Access to Program Information
Describe the procedures for controlling access during program discussions and control of meeting material used (if applicable)
during and after the discussions. In addition, include any remarks to assist in the approval process.
CLASSIFICATION
CLASSIFICATION
Page 5 of 5
6. Additional security measures (locks, alarms, dedicated reading rooms, etc.) are considers waivers
(above) to the standards and require approval of the IC Element Head. Identify any additional
security requirements requested:
Section C: Compartmented Area Type Descriptions
1. Compartmented Area Types
Type I: A workstation environment that is used to view and process compartmented information.
Type I comprises open bays, open spaces, or a set of rooms with multiple cubicles in an accredited SCIF where
compartmented information may be securely viewed and/or processed, i.e., via an approved computer workstation by
authorized personnel. Workstations in these environments may include computers with single or multiple monitors.
Polarized privacy screens may be used on a computer monitor to prevent persons other than the authorized user to view
the material, i.e., shoulder surfing, or when a monitor faces a primary door or common work area. In addition to
processing compartmented information on approved computer workstations, Type I CAs may include the use of
printers, copiers, and scanners with prior approval.
Type II: An area where discussions of compartmented information may take place. If so equipped and
approved, compartmented information may also be viewed and processed.
This CA comprises a room, e.g., office or conference room, inside an accredited SCIF where compartmented
discussions may be held by authorized personnel. All Type II CAs must meet existing sound transmission class (STC)
requirements per ICS 705-1 to ensure that the room or office retains sound within its perimeter. In addition to
compartmented discussions, Type II CAs may be used for secure video teleconferencing (SVTC) and related
communication conferencing and the use of secure telephones for compartmented discussions. The use of printers,
scanners, and copiers, and the secure transfer of data to approved removable media or and the use of secure facsimile
machines require prior approval.
Type III: A restricted discussion area used for viewing, processing, printing, copying, storage and control of
accountable compartmented information.
This CA is intended for storing and retaining compartmented information when accountability and strict control of
compartmented program information is required. This includes, but is not limited to: notes, briefs, slides, electronic
presentations, analytic papers, removable hard drives, field packs, thumb drives, laptops, personal electronic devices
(PEDs) or hand-held devices that store compartmented information. In addition to the storage of compartmented
material in a GSA-approved container, Type III CAs may be used for processing compartmented information on
approved computer workstations; the use of printers, scanners, and copiers; the secure transfer of data to approved
removable media; the use of secure facsimile machines; and the use of secure telephone equipment (STE) for
compartmented discussions. All personnel residing within or who have unfettered access to a Type III CA must be
formally briefed into all compartments that reside within the Type III CA. Visitors are permitted within Type III areas
only when all compartmented information (for which the visitor is not briefed) is stored within containers, out of sight,
and while the visitor is under constant observation by a fully briefed person.
CLASSIFICATION
CLASSIFICATION
Page 1 of 13
SHIPBOARD
SCIF Fixed Facility Checklist
Organization Name:
FFC Date:
CLASSIFY ACCORDING TO CLASSIFICATION AUTHORITY
CHECK Applicable blocks
Initial Accreditation
Re- Accreditation
Modified Facility
Pre-construction
Final FFC Accreditation
Page Change
Checklist Contents
Section A: General information
Section B: Security-in-Depth
Section C: Intrusion Detection Systems (IDS)
Section D: Telecommunication Systems and Equipment Baseline
Section E: Classified Destruction Methods
Section F: TEMPEST/Technical Security
List of Attachments
(Diagrams must be submitted)
CLASSIFICATION
CLASSIFICATION
Page 2 of 13
Section A: General Information
1. SCIF Data
a. Organization/Company Name
b. Name of Ship and Hull number
c. Home Port
d. SCIF ID Number
e. Contract Number and Expiration
f. Date (if applicable)
g. Concept Approval Date
h. Cognizant Security Authority (CSA)
Defense Special Security Communication System Information (if applicable)
i. DSSCS Message Address
j. DSSCS INFO Address
k. If no DSSCS Message Address, please provide
passing instructions
l. Location of Compartments
2. Complete Mailing Address
Street Address
Building Name
Floor(s)
Suite(s)
Room(s) #
City
Base/Post
State/Country
Zip Code
4. Responsible Security Personnel
PRIMARY
ALTERNATE
Name
Commercial Phone
DSN Phone
Secure Phone
STE Other Phone
Other Telephone
Home (optional)
Facsimile Numbers:
Classified
Unclassified
Command or Regional Special Security Office/Name (SSO) (if applicable)
Commercial Phone
Other Phone
Information System Security Officer Name
Commercial Telephone
Secure Telephone
CLASSIFICATION
ST
CLASSIFICATION
Page 3 of 13
5. E-Mail Address of Responsible Security Personnel
Classified
Network/System Name & Level
Unclassified
Network/System Name
Other
Network/System Name
6. Accreditation Data (Ref Chapter: 12E)
a. Category/Compartments of SCI Requested:
1) Indicate storage requirement:
Open
Closed
Continuous Operation
None
2) Indicate the facility type
Permanent
Temporary
Secure Working Area
TSWA
b. Existing Accreditation Information (if applicable)
1) SCIF accesses required
Accreditation granted by:
On:
3) Waivers:
3) Co-Use Agreements
Yes
No
If yes, provide sponsor:
c. SAP(s) co-located within SCIF
Yes
No
If yes, identify SAP Classification level (check all that apply)
SCI
Top Secret
Secret
Confidential
c. SCIF Duty Hours
Hours to Hours:
Days Per Week:
d. Total square footage that the SCIF occupies:
e. Has or will CSA requested any waivers?
Yes
No
N/A
If yes, attach a copy of approved waiver
7. Construction/Modification (Ref: Chapter 3B)
a. Is construction or modification complete?
Yes
No
N/A
If no, enter the expected date of completion:
8. Inspections (Ref: Chapter 12G) (ALL INSPECTION REPORTS MUST BE ATTACHED)
a. TSCM Service completed by:
On
Were deficiencies corrected?
Yes
No
N/A
If NO, explain:
b. Last physical security inspection by:
On
Were deficiencies corrected?
Yes
No
N/A
CLASSIFICATION
CLASSIFICATION
Page 4 of 13
If NO, explain:
c. Last Staff Assistance Visit by:
On
9. REMARKS:
Section B: Physical Security
1. Decks, bulkheads and overhead construction
Are the decks, bulkheads and overhead constructed of aluminum plate or standards shipboard
material true floor to ceiling?
Yes
No
2. Security In-Depth
What external security attributes and/or features should the CSA consider before determining whether or not this
facility has Security In-Depth? Please identify/explain all factors:
3. How is access to the SCIF controlled (Ref: Chapter 8)
a. By Guard Force
Yes
No
If yes, what is their minimum security clearance level?
SCI Top Secret Secret
b. Is Guard Force Armed?
Yes
No
N/A
c. By assigned personnel?
Yes
No
If yes, do personnel have visual control of SCIF entrance door?
Yes
No
CLASSIFICATION
CLASSIFICATION
Page 5 of 13
d. By access control device?
Yes
No
If yes, what kind?
Automated access control system
Non-Automated
If Non-Automated
1. Is there a by-pass key?
Yes
No
N/A
If yes, how is the by-pass key protected?
2. Manufacturer:
Model:
(Explain in Remarks if more space is required)
If Automated
1. Is there a by-pass key?
Yes
No
N/A
If yes, how is the by-pass key protected?
2. Manufacturer:
Model:
(Explain in Remarks if more space is required)
3. Are access control transmission lines protected by 128-bit encryption/FIBS 140?
Yes
No
If no, explain the physical protection provide
4. Is automated access control system located within a SCIF or an alarmed area
controlled at the SECRET level?
Yes
No
5. Is the access control system encoded and is ID data and PINs restricted to SCI-
indoctrinated personnel?
Yes
No
6. Does external access control outside SCIF have tamper protection?
Yes
No
7. Is the access control device integrated with IDS
Yes
No
N/A
8. Is the access control device integrated with a LAN/WAN System?
Yes
No
N/A
4. Primary Entrance Door
a. Is routine ingress and egress to the space through one door?
Yes
No
b. Is the shipboard type door constructed IAW ICS 705-1,?
Yes
No
c. Is door constructed of aluminum/steel plate or standard shipboard materials?
Yes
No
d. Is door equipped with a combination lock that meets requirements of a Pedestrian Deadbolt
Federal Specifications FF-L-2890?
Yes
No
Include lock manufacturer, model and group
Manufacturer
Model
Group Rating
e. Is door equipped with an access control device
Yes
No
f. Is door constructed in a manner which will preclude unauthorized removal of hinge pins and
anchor bolts, as well as obstruct access to lock-in bolts between door and frame?
Yes
No
CLASSIFICATION
CLASSIFICATION
Page 6 of 13
g. Remarks:
5. Emergency Exit
a. Is space equipped with an emergency exit?
Yes
No
b. Has the emergency exit been fabricated of aluminum/steel plate or standard shipboard
materials?
Yes
No
c. Has door(s) been mounted in a frame braced and welded in place in a manner commensurate
with structural characteristics of the bulkhead, deck or overhead in which it is located?
Yes
No
d. Has the emergency exit been constructed in a manner which will preclude unauthorized
removal of hinge pins and anchor bolts, as well as obstructs access to lock-in bolts between
door and frame?
Yes
No
e. Remarks
6. Restrictions on Damage Control Fittings and Cable
a. Are any essential damage control fittings or cables located within or pass through the SCIF?
Yes
No
b. Remarks
7. Removable Hatches and Deck Plates
a. Are hatches and deck plates less than 10 square feet that are secured by exposed nuts and
bolts (external to SCIF) secured with high security padlocks?
Yes
No
b. If key padlocks are used, are the keys stored in a security container located with a space under
appropriate security control?
Yes
No
c. Remarks:
8. Vent and Duct Barriers
a. Are vents, ducts, louvers, or other physical perimeter barrier openings with a cross sectional
dimension greater than 96 square inches protected at the perimeter with a fixed barrier or
security grill?
Yes
No
b. If gratings or bars are used, are they welded in place?
Yes
No
c. Remarks:
CLASSIFICATION
CLASSIFICATION
Page 7 of 13
9. Acoustical Isolation
a. Is the physical perimeter of the SCIF sealed or insulated with non-hardening caulking material
so as to prevent inadvertent disclosure of SCI discussions or briefings from within the SCIF?
Yes
No
b. In instances where the physical perimeter barrier is not sufficient to control voices or sounds, is
the use of sound deadening material installed?
Yes
No
c. Do air handling units have continuous duty blowers or provide an effective level of sound
masking in each air path?
Yes
No
d. Remarks:
10. Visual Isolation
a. Are doors or other openings in the physical perimeter barrier through which the interior may
be viewed screened or curtailed?
Yes
No
b. Remarks:
11. Passing Windows and Scuttles
a. Have passing windows and scuttles been eliminated from the SCIF?
Yes
No
b. Remarks:
12. Secure Storage Equipment
a. Is the SCIF equipped with a sufficient number of GSA approved security containers?
Yes
No
b. Have they been welded in place or otherwise secured to a foundation for safety?
Yes
No
c. Remarks:
Section C: Intrusion Detection Systems (IDS)
1. Are SCIF access door(s) and emergency exit(s) protected by a visual and audible alarm system:
Yes
No
a. Does alarm installation consist of sensors at each door and alerting indicators located within
the SCIF?
Yes
No
b. Does the emergency exit door(s) alarm have a different feature?
Yes
No
c. Does the system have an alarm monitor station which is continuously manned by personnel
capable of responding to or directing a response to an alarm violation of the SCIF when it is
unmanned?
Yes
No
d. Remarks:
CLASSIFICATION
CLASSIFICATION
Page 8 of 13
Section D: Telecommunication Systems and Equipment Baseline
1. Is the facility declared a “No Classified Discussion Area”? (Ref: Chapter 11A)
Yes
No
If yes, then the audio protection questions within this section may be identified as N/A
If the facility is declared a “No Classified Discussion Area”, are warning
notices posted prominently within the facility?
Yes
No
N/A
2. Does the facility have any unclassified telephones that are connected to the commercial
public switch telephone network (PSTN)?
Yes
No
Identify the method of on-hook protection by completing items below
NOTE: TSG 6 approved phones can be found at the following link:
https://www.dni.gov/files/NCSC/documents/products/TSG-Approved-Equipment-List-May-2017.pdf
a. CNSSI 5006 (TSG-6) approved telephone or instrument
Yes
No
N/A
(Please identify all telephone equipment/stations and/or instruments being used either below or as an attachment)
Manufacturer
Model Number
TSG Number (if applicable)
b. CNSSI 5006 (TSG-6) approved disconnect device?
Yes
No
N/A
1) Line disconnect?
Yes
No
N/A
2) Ringer protection?
Yes
No
N/A
Manufacturer
Model Number
TSG Number (if applicable)
c. CNSSI 5002 (TSG-2) configured computerized telephone system (CTS)?
Yes
No
N/A
1) If yes, please provide the following information about the CTS
Manufacturer
Model Number
2) If yes, please provide specific location of the CTS
3) Is the facility protecting the CTS physically controlled?
If yes, what is the clearance level (if any) of facility or area
where the switch is located.
SCI
Top Secret
Secret
If no facility clearance level how is the facility or area where the switch is located controlled?
4) How are all cables, signal lines and intermediate writing frames between the SCIF telephones and the
CTS physically protected within a physically controlled space?
Yes No
N/A
CLASSIFICATION
CLASSIFICATION
Page 9 of 13
5) Are all program media, such as tapes and/or disks, from the CTS afforded physical
protection from unauthorized alterations?
Yes
No
6) Is an up-to-date master copy of the CTS software program maintained for
confirmation and/or reloading of the operating system?
Yes
No
7) Does the CTS have the capability to force or hold a telephone station off-hook?
Yes
No
8) Does the CTS use remote maintenance and diagnostic procedures or other remote
access features?
Yes
No
If yes, explain maintenance procedures
9) Do the CTS installers and programmers have security clearances?
Yes
No
If yes, at what access level (minimum established by AO)
SCI
Top Secret
Secret
If no, are escorts provided?
Yes
No
d. Is it a Voice over Internet Protocol (VOIP) phone system (IPS) (Ref CNSSI
5000)?
Yes
No
N/A
1) If yes, please provide the following information about the IPS
Manufacturer
Model Number
IPS Location
2) Do all unclassified telephones within the facility have a hold, mute and/or
push-to-talk [handset] capability, (for off-hook audio protection)?
Yes
No
N/A
If no, please explain?
3) Is access to the facility housing the IPS physically controlled?
Yes
No
If yes, what is the clearance level (if any) of facility or area
where the switch is located and how is the area controlled?
SCI
Top Secret
Secret
If no facility clearance level how is the facility or area where the IPS is physically located controlled
4) Are all cables, signal lines and intermediate wiring frames between the SCIF
telephones and the IPS physically protected or contained within a physically controlled
space?
Yes
No
If no, please explain?
CLASSIFICATION
CLASSIFICATION
Page 10 of 13
5) Are all program media, such as tapes and/or disks, from the IPS afforded physical
protection from unauthorized alterations?
Yes
No
6) Is an up-to-date master copy of the IPS software program maintained for confirmation
and/or reloading of the operating system?
Yes
No
7) Does the IPS have the capability to force or hold a telephone station off-hook?
Yes
No
8) Does the IPS use remote maintenance and diagnostic procedures or other remote
access features?
Yes
No
9) Do the IPS installers and programmers have security clearances?
Yes
No
If yes, at what access level (minimum established by AO)?
SCI
Top Secret
Secret
If no, are escorts provided?
Yes
No
3. Automatic telephone call answering
a. Are there any automatic call answering devices for the telephones in the SCIF?
Yes
No
1) If yes, please identify the type
Voicemail/unified message service?
Yes
No
Standalone telephone answering device (TAD)?
Yes
No
2) Provide manufacturer and model number of the equipment
Manufacturer
Model
b. Are speakerphones/microphones enabled?
Yes
No
If yes, has the remote room monitoring capability been disabled?
Yes
No
Has this been approved for use by the AO?
Yes
No
N/A
Provide detailed configuration procedures
If applicable, is the voice mail or unified messaging services configured to prevent
unauthorized access from remote diagnostic ports or internal dial tone?
Yes
No
4. Are any multi-function office machines (M-FOMs) used within the SCIF (M-FOMs are
electronic equipment that can be used at network or standalone printers, facsimiles, and
copiers)?
Yes
No
a. If yes, please identify the device to include (Please identify all M-FOM devices in use, either below or as
an attachment) Include a manufacture Volatile statement for each M-FOM.
Make
Model
Serial Number
b. If yes, please identify all features and information processing level of each M-FOM
1) Copier?
Yes
No
N/A
If yes, level(s) of information
SCI
Top Secret
Secret
Unclassified
2) Facsimile?
Yes
No
N/A
If yes, level(s) of information
SCI
Top Secret
Secret
Unclassified
CLASSIFICATION
CLASSIFICATION
Page 11 of 13
3) Printer? (connected to a standalone computer or
network)
Yes
No
N/A
If yes, please explain and identify the system(s) and the level(s) of information
System:
SCI
Top Secret
Secret
Unclassified
System:
SCI
Top Secret
Secret
Unclassified
System:
SCI
Top Secret
Secret
Unclassified
System:
SCI
Top Secret
Secret
Unclassified
System:
SCI
Top Secret
Secret
Unclassified
c. Does the M-FOM have memory storage capability?
Yes
No
N/A
If yes, what kind?
Volatile (information in memory
clears/erases when powered off)
Non-volatile (information in memory
that remains when powered off)
d. Does the M-FOM have a digital hard drive?
Yes
No
N/A
e. Have maintenance and disposition procedures been established?
Yes
No
N/A
f. Does the M-FOM have voice transmission capability and/or a telephone
handset?
Yes
No
N/A
If yes, how is this feature protected? Please describe
5. Are there any video teleconference (VTC) systems installed?
Yes
No
If yes, what level(s) of information is the
VTC system processing?
SCI
Top Secret
Secret
Unclassified
6. Are all telecommunications systems, devices, features, and software documented?
(Attached telecommunication baseline)
Yes
No
7. Sound Powered Telephones
Have all sound powered telephones been eliminated from the SCIF?
Yes
No
If no, answer the following questions
a. Are there sound powered or other telephone systems in the facility which cannot connect to
locations outside the SCIF?
Yes
No
How Many?
b. Are they installed and protected IAW ICS 705-1, Section E?
Yes
No
Remarks
8. General Announcing System
CLASSIFICATION
CLASSIFICATION
Page 12 of 13
Do general announcing system loudspeakers have an audio amplifier and are the output signal
line installed within the SCIF?
Yes
No
Remarks
9. SCI Intercommunications Announcing Systems
Do any intercommunication type announcing systems that process SCI pass through areas outside
the SCIF?
Yes
No
If yes, list type, manufacturer and model
Type
Manufacturer
Model
Remarks
10. Commercial Interconnection Equipment
Are any commercial intercommunications equipment installed within the SCIF?
Yes
No
Remarks
11. Pneumatic Tube Systems
a. Are there any pneumatic tube systems installed in the SCIF?
Yes
No
b. Are they installed IAWICS 705-1, Section E??
Yes
No
c. Remarks
Section E: Classified Destruction Methods
1. Destruction methods
a. Describe the method and equipment used for destruction of classified/sensitive material (if more than one
method or device, use Remarks to describe. (If more than one device, use remarks to list all manufacturer and
model)
Method
Device Manufacturer
Model
b. Is a secondary method of destruction available?
Yes
No
c. Describe the location of destruction site(s) in relation to the secure facility:
CLASSIFICATION
CLASSIFICATION
Page 13 of 13
d. Describe method or procedure used for handling non-soluble classified/sensitive material at this facility:
e. Do you have a written Emergency Action Plan (EAP) approved by CSA (if
required)?
Yes
No
N/A
Remarks
Section F: TEMPEST/Technical Security
1. Does the facility electronically process classified information?
Yes
No
If yes, what is the highest level of information processed?
SCI
Top Secret
Secret
2. For the last TEMPEST Accreditation (if applicable), provide the following information
Accreditation granted by:
On
3. Has the CSA’s Certified TEMPEST Technical Authority (CTTA) required any
TEMPEST countermeasures?
Yes
No
N/A
If yes, please identify the countermeasures that have been installed (i.e. non-conductive sections, Radio Frequency
(RF) shielding, power/signal line filters, window film, etc.)
4. Are there any other systems installed within or in close proximity to the SCIF that have RF
capability (e.g., fire alarm, ground-to-air-radio, cellular tower, RF networks, etc)?
Yes
No
If yes, please explain
CLASSIFICATION
CLASSIFICATION
Page 1 of 8
SUBMARINE
SCIF Fixed Facility Checklist
Organization Name:
FFC Date:
CLASSIFY ACCORDING TO CLASSIFICATION AUTHORITY
CHECK Applicable blocks
Initial Accreditation
Re- Accreditation
Modified Submarine
Pre-construction
New Submarine
Page Change
Checklist Contents
Section A: General information
Section B: Physical Security
Section C: Telecommunication Systems and Equipment Baseline
Section D: Classified Destruction Methods
Section E:
TEMPEST/Technical Security
List of Attachments
(Diagrams must be submitted)
CLASSIFICATION
CLASSIFICATION
Page 2 of 8
1. SCIF Data
a. Organization/Company Name
b. Name of Submarine and Hull number
c. Home Port
d. SCIF ID Number
e. Contract Number and Expiration
f. Date (if applicable)
g. Concept Approval Date
h. Cognizant Security Authority (CSA)
Defense Special Security Communication System Information (if applicable)
i. DSSCS Message Address
j. DSSCS INFO Address
k. If no DSSCS Message Address, please provide
passing instructions
l. GENSER Address
2. Complete Mailing Address
Street Address Building Name
Floor(s) Suite(s) Room(s) #
City Base/Post
State/Country Zip Code
4. Responsible Security Personnel
PRIMARY ALTERNATE
Name
Commercial Phone
DSN Phone
Secure Phone
STE Other Phone
Other Telephone
Home (optional)
Facsimile Numbers: Classified Unclassified
Command or Regional Special Security Office/Name (SSO) (if applicable)
Commercial Phone
Other Phone
Information System Security Officer Name
Commercial Telephone
Secure Telephone
Section A: General Information
Rank/Rate/Title
Commercial Telephone
CLASSIFICATION
CLASSIFICATION
Page 3 of 8
E-Mail Address of Responsible Security Personnel
Classified
Network/System Name & Level
Unclassified
Network/System Name
Other
Network/System Name
Accreditation Data (Ref Chapter: 12E)
a. Category/Compartments of SCI Requested:
1) Indicate storage requirement:
Open
Closed
Continuous Operation
None
2) Indicate the facility type
Permanent
Temporary
Secure Working Area
TSWA
b. Existing Accreditation Information (if applicable)
1) SCIF accesses required
Accreditation granted by:
On:
3) Waivers:
c. SCIF Duty Hours Hours to Hours: Days Per Week:
d. Total square footage that the SCIF occupies:
e. Last physical security inspection by: On
Were deficiencies corrected?
Yes No N/A
T-SCIF
5.
Remarks
6.
If NO, explain:
CLASSIFICATION
CLASSIFICATION
Page 4 of 8
Section B: Physical Security
1. Decks, bulkheads and overhead construction
Are the decks, bulkheads and overhead constructed of aluminum plate or standards shipboard
material true floor to ceiling?
Yes No
2. Security In-Depth
What external security attributes and/or features should the CSA consider before determining whether or not this
facility has Security In-Depth? Please identify/explain all factors:
3. Access Controls: How is access to the SCIF controlled (Ref: Chapter 8)
a. By Guard Force Yes No
If yes, what is their minimum security clearance level?
SCI Top Secret Secret
b. Is Guard Force Armed? Yes No
N/A
c. By assigned personnel? Yes No
If yes, do personnel have visual control of SCIF entrance door? Yes No
N/A
d. By access control device? Yes No
If yes, what kind? Automated access control system Non-Automated
If non-automated
1. Is there a by-pass key? Yes No
N/A
If yes, how is the by-pass key protected?
2. Manufacturer: Model:
(Explain in Remarks if more space is required)
4. Primary Entrance Door
a. Is routine ingress and egress to the space through one door?
Yes No
b. Is the submarine type door constructed IAW ICS 705-1,?
Yes
No
c. Is door constructed of aluminum/steel plate or standard submarine materials?
Yes No
d. Is door equipped with a combination lock that meets requirements of a Pedestrian Deadbolt
Federal Specifications FF-L-2890?
Yes No
Include lock manufacturer, model and group
Manufacturer Model Group Rating
e. Is door equipped with an access control device
Yes No
f. Is door constructed in a manner which will preclude unauthorized removal of hinge pins and
anchor bolts, as well as obstruct access to lock-in bolts between door and frame?
Yes No
CLASSIFICATION
CLASSIFICATION
Page 5 of 8
g. Remarks:
5. Emergency Exit
a. Is space equipped with an emergency exit?
Yes No
b.
Has the emergency exit been fabricated of aluminum/steel plate or standard submarine
materials?
Yes No
c. Has door(s) been mounted in a frame braced and welded in place in a manner commensurate
with structural characteristics of the bulkhead, deck or overhead in which it is located?
Yes No
d. Has the emergency exit been constructed in a manner which will preclude unauthorized
removal of hinge pins and anchor bolts, as well as obstructs access to lock-in bolts between
door and frame?
Yes No
e. Remarks
6. Restrictions on Damage Control Fittings and Cable
a. Are any essential damage control fittings or cables located within or pass through the SCIF?
Yes No
b. Remarks
7. Vent and Duct Barriers
a. Are vents, ducts, louvers, or other physical perimeter barrier openings with a cross sectional
dimension greater than 96 square inches protected at the perimeter with a fixed barrier or
security grill?
Yes No
b. If gratings or bars are used, are they welded in place?
Yes No
c. Remarks:
8. Acoustical Isolation
a. Is the physical perimeter of the SCIF sealed or insulated with non-hardening caulking material
so as to prevent inadvertent disclosure of SCI discussions or briefings from within the SCIF?
Yes No
b. In instances where the physical perimeter barrier is not sufficient to control voices or sounds, is
the use of sound deadening material installed?
Yes No
c. Do air handling units have continuous duty blowers or provide an effective level of sound
masking in each air path?
Yes No
CLASSIFICATION
CLASSIFICATION
Page 7 of 13
d. Remarks:
9. Visual Isolation
a. Are doors or other openings in the physical perimeter barrier through which the interior may
be viewed screened or curtailed?
Yes No
b. Remarks:
10. Secure Storage Equipment
a. Is the SCIF equipped with a sufficient number of GSA approved security containers?
Yes No
b. Have they been welded in place or otherwise secured to a foundation for safety?
Yes No
c. Remarks:
Section C: Telecommunication Systems and Equipment Baseline
1. Is the Submarine declared a “No Classified Discussion Area”? (Ref: Chapter 11A)
Yes No
If yes, then the audio protection questions within this section may be identified as N/A
If the submarine is declared a “No Classified Discussion Area”, are
warning notices posted prominently within the submarine?
Yes No
N/A
2. Does the submarine have any unclassified telephones that are connected to the
commercial public switch telephone network (PSTN)?
Yes No
Identify the method of on-hook protection by completing items below
NOTE: TSG 6 approved phones can be found at the following link:
https://www.dni.gov/files/NCSC/documents/products/TSG-Approved-Equipment-List-May-2017.pdf
Page 6 of 8
a. CNSSI 5006 (TSG-6) approved telephone or instrument Yes No
N/A
(Please identify all telephone equipment/stations and/or instruments being used either below or as an attachment)
Manufacturer Model Number TSG Number (if applicable)
b.
If No, Please explain
3. Automatic telephone call answering
a. Are there any automatic call answering devices for the telephones in the SCIF? Yes No
1) If yes, please identify the type
Voicemail/unified message service?
Yes No
Standalone telephone answering device (TAD)?
Yes No
2) Provide manufacturer and model number of the equipment
Manufacturer Model
CLASSIFICATION
CLASSIFICATION
Page 7 of 8
b. Are speakerphones/microphones enabled? Yes No
If yes, has the remote room monitoring capability been disabled?
Yes No
General Announcing System 1MC/7MC/27MC ETC
Remarks
Yes No
N/A
8.
Do general announcing system loud speakers have an audio amplifier and are the
output signal lines installed within the SCIF?
Section D: Classified Destruction Methods
1. Destruction methods
a. Describe the method and equipment used for destruction of classified/sensitive material (if more than one
method or device, use Remarks to describe. (If more than one device, use remarks to list all manufacturer and
model)
Method Device Manufacturer Model
b. Is a secondary method of destruction available?
Yes No
c. Describe the location of destruction site(s) in relation to the secure submarine:
d. Describe method or procedure used for handling non-soluble classified/sensitive material on the submarine:
e. Do you have a written Emergency Action Plan (EAP) approved by CSA (if
required)?
Yes No N/A
Remarks
CLASSIFICATION
CLASSIFICATION
Page 8 of 8
Section E: TEMPEST/Technical Security
1. Does the submarine electronically process classified information?
Yes No
If yes, what is the highest level of information processed?
SCI Top Secret Secret
2. For the last TEMPEST Accreditation (if applicable), provide the following information
Accreditation granted by: On
3. Has the CSA’s Certified TEMPEST Technical Authority (CTTA) required any
TEMPEST countermeasures?
Yes No N/A
If yes, please identify the countermeasures that have been installed (i.e. non-conductive sections, Radio Frequency
(RF) shielding, power/signal line filters, window film, etc.)
4. Are there any other systems installed within or in close proximity to the SCIF that have RF
capability (e.g., fire alarm, ground-to-air-radio, cellular tower, RF networks, etc)?
Yes No
If yes, please explain
CLASSIFICATION
CLASSIFICATION
CLASSIFY ACCORDING TO FACILITY SPONSOR
CLASSIFICATION GUIDANCE
Aircraft/UAV Checklist
[Insert Org Name]
[Date]
[Address]
This page intentionally left blank.
CHECK Applicable blocks
Initial Accreditation
Re- Accreditation
Modified Facility
Pre-construction
New Facility
Page Change
Checklist Contents
Section A: General information
Section B: Physical Security
Section C: Intrusion Detection Systems (IDS)
Section D: Classified Destruction Methods
Section E: TEMPEST/Technical Security
List of Attachments
(Diagrams must be submitted on 8 ½’’ x 11’ or 11’’ x 17’’ format)
Section A: General Information
1. SCIF Data
a. Organization/ Company Name
b. Type of Aircraft and Tail Number
c. Home Station
d. SCIF ID Number
e. Contract Number and Expiration
Date
(if applicable)
f. Concept Approval Date
g. Cognizant Security Authority (CSA)
h. Defense Special Security Communication System Information
(if applicable)
DSSCS Message Address
DSSCS INFO Address
If no DSSCS Message Address, please
provide passing instructions
2. Complete Mailing Address
3. E-Mail Address
Classified
(Network/ System Name & Level)
Unclassified
(Network/ System Name)
Additional
(Network/ System Name)
4. Responsible Security Personnel
PRIMARY ALTERNATE
Name
Commercial
Telephone
DSN
Telephone
Secure
Telephone
STE Telephone
Other
Telephone
Home
Telephone
(Optional)
FAX # Classified
Unclassified
Command or Regional Special Security Office/Name (SSO):
(if applicable)
Commercial
Other
Telephone
PRIMARY
ALTERNATE
Information System Security Officer Name:
Commercial
Secure
5. Accreditation Data
a. Category/Compartments of SCI Requested:
b. Existing Accreditation Information (if applicable)
(1) Category/ Compartments of SCI:
(2) Accreditation granted by:
On:
(3) Co-Use Agreements
Yes
No
If yes, provide sponsor/ compartment:
c. Is there a SAP(s) co-located within the aircraft?
Yes
No
SAP Classification Level (check all that apply)
SCI
Top Secret
Secret
Confidential
d. Has CSA requested
any waivers?
Yes
No
N/ A
If yes, attach a copy of the approved
waiver
Construction/Modification
Is construction or
modification complete?
Yes
No
N/ A
If no, enter the expected date of
completion
6. Inspections
a. Last physical security
inspection performed by
On
(Attach a copy of report)
Were deficiencies
corrected?
Yes
No
N/ A
If no, explain
REMARKS:
Section B: Physical Security
1. Stationary Aircraft/UAV
a. Is the aircraft located within a controlled area?
Yes
No
N/ A
If no, explain:
b. When not performing a SCI mission is all SCI
removed from the aircraft and stored in an accredited
SCIF?
Yes
No
N/ A
If yes, SCIF ID: If no, explain how SCI is protected when the aircraft is
unoccupied:
2.
Access Control: How is access to the aircraft controlled?
a. By Guard Force
Yes
No
If yes, what is their security clearance level?
b. Is Guard Force Armed?
Yes
No
c. By Assigned Personnel:
Yes
No
If Yes, do personnel have visual control of the entrance
door?
Yes
No
N/ A
d. When processing SCI, are all personnel aboard the aircraft cleared
for all the SCI compartments that the aircraft is accredited for?
Yes
No
If not, what are the procedures for segregating/ protecting SCI compartments from
unauthorized disclosure?
3. Hatches and Doors Leading Inside the Aircraft:
a. Are doors equipped with GSA approved locks?
Yes
No
Manufacturer Model Group
b. Are tamper serialized seals used when aircraft is unoccupied?
Yes
No
If yes, are seals installed and a log book maintained by SCI cleared
personnel?
Yes
No
c. Remarks
4.
Acoustical Isolation
a. Is a physical perimeter established around the aircraft at a
distance so as to prevent inadvertent disclosure of SCI discussions or
briefings from within the aircraft
Yes
No
b. In instances where the physical perimeter barrier is not sufficient to
control voices or sounds, are sound countermeasure devices or sound
generating devices used?
Yes
No
c. Remarks
5.
Visual Isolation
a. Are doors or other openings in the aircraft through which the
interior may be viewed screened or curtained?
Yes
Yes
b. Remarks
6.
Procedures For Protecting SCI When The Aircraft Is Parked In Friendly/Unfriendly
Territories
Section C: Intrusion Detection Systems (IDS)
1. Is the aircraft equipped or located within a structure or area that
has an IDS?
Yes
No
If yes, please provide the following:
a. IDS Company provider name
(if applicable)
b. Premise Control Unit (PCU)
Manufacturer Model Number Tamper
Protection
Yes
No
c. Where is the PCU located?
d. Location of interior motion detection protection: Accessible
points of entry/ perimeter?
Yes
No
e. Has the IDS Alarm Monitor Station been installed to
Underwriters Laboratories certified standards?
Yes
No
If yes, please provide certification number and expiration date of UL certification
Certification Number
Expiration Date
f. Has the IDS passed CSA or UL 2050 installation and acceptance
tests?
Yes
No
If yes, please attach a copy of certificate and skip to question 2 below. (Non -commercial
proprietary system must answer all questions)
g. Motion Sensors (Indicate sensor placement on a legible floor plan; 8.5’’ x 11’’ or 11’’ x 17’
paper
Manufacturer Model Number Tamper
Protection
Yes
No
h. Are motion sensors installed above the false ceiling?
Yes
No
N/ A
i. Are motion sensors installed below the false floors?
Yes
No
N/ A
j. Are there any other intrusion detection equipment
sensors/ detectors in use?
Yes
No
If yes, please identify make, model, and manufacturer and function (indicate on floor plan)
Make
Model
Manufacturer
Function
k. Does the IDS extend beyond the SCIF perimeter?
Yes
No
Can the status of PCU be changed from outside IDS protection?
Yes
No
If yes, is an audit conducted daily?
Yes
No
Has the IDS configuration been approved by the CSA?
Yes
No
l. Do any intrusion detection equipment components have audio or video
capabilities?
Yes
No
If yes, please explain:
Has the CSA mitigated this capability?
Yes
No
m. IDS Administrator SCI indoctrinated?
Yes
No
n. External Transmission Line Security: What is the method of line
security? Meets NIST; FIPS AES Encryption?
Yes
No
If yes, has the encryption been certified by National Institute of
Standards and Technology (NIST) or another independent testing
laboratory?
Yes
No
If not NIST FIPS AES, is there an alternate?
Yes
No
If yes, please explain:
Does the alternate line utilize any cellular or other Radio Frequency (RF)
capability?
Yes
No
If yes, provide manufacturer and model
Manufacturer Model
o. Does any part of the IDS use a local or Wide Area
Network?
Yes
No
N/ A
(1) Is the Network Intrusion Detection Software (NIDS)
administrator at least Top Secret (collateral) cleared?
Yes
No
N/ A
(2) Is the host computer dedicated solely for security
purposes?
Yes
No
N/ A
(3) Is the host computer secured within an alarmed area
controlled at the Secret or higher level?
Yes
No
N/ A
(4) Is the host computer protected through firewalls or
similar devices?
Yes
No
N/ A
Are the firewalls/ devices configured to only allow data
transfers between IDS components?
Yes
No
N/ A
(5) Is the password for the host computer unique for each
user and at least 8 characters long?
Yes
No
N/ A
(6) Is the password changed semi-annually?
Yes
No
(7) Are remote security terminals protected the same of the
host computer?
Yes
No
N/ A
If no, please explain:
p. Was the IDS installed by U.S. citizens:
Yes
No
N/ A
If no, please explain:
q. Is emergency power available for the IDS?
Yes
No
N/ A
What type? Generator
Yes
No
If yes, how many hours?
What type? Battery
Yes
No
If yes, how many hours?
r. If applicable, describe the method of ventilation and duct work protection:
s. Where is the IDS Alarm Monitor Station located?
t. Does the Monitor Station have any remote
capabilities (i.e., resetting alarms, issuing PINs,
accessing/ securing alarms, etc.)?
Yes
No
N/ A
If yes, please explain:
u. Does the IDS have any automatic features (i.e., timed
auto-secure, auto-access capabilities)?
Yes
No
N/ A
v. Does the PCU/ keypad have dial out capabilities?
Yes
No
w. IDS Response Personnel
(1) Who provides initial alarm response?
(2) Does the response force have a security clearance?
Yes
No
If yes, what is the clearance level:
(3) Do you have a written agreement for external response force?
Yes
No
(4) Emergency procedures documented?
Yes
No
(5) Reserve security force available?
Yes
No
(6) Response to an alarm condition
minutes
x. Are response procedures tested and records maintained?
Yes
No
If no, please explain:
y. If required, has a Catastrophic Failure Plan been approved by the CSA?
Yes
No
z. Does the IDS undergo semiannual testing?
Yes
No
aa. Have IDS records been maintained:
Yes
No
bb. Remarks
Section D: Classified Destruction Methods
1.
For home station, describe the method and equipment used for destruction of
classified/ sensitive material (if more than one method or device, use Remarks section to
describe (if more than one, use Remarks section to list all manufacturer and model)
Method Device Manufacturer Model
2.
Is a secondary method of destruction available
Yes
□ No
3.
Describe the location of destruction site(s) in relation to the aircraft?
4.
Describe the method or procedure used for handling non -soluble classified/ sensitive
material at your facility?
5.
Do you have a written Emergency Action Plan (EAP) approved by
CSA?
□ Yes
□ No
6.
Describe procedures for in-flight emergency destruction:
7.
Remarks
Section E: TEMPEST/Technical Security
1.
Does the aircraft electronically process classified information?
□ Yes
□ No
If yes, what is the highest level of information processed?
2.
Has it received TEMPEST accreditation?
□ Yes
□ No
□ N/ A
Date Accreditation granted by:
This form is UNCLASSIFIED until filled in
CLASSIFICATION
CUWG: Co-Utilization/Joint Utilization form Version 5
SCIF CO-UTILIZATION or JOINT-UTILIZATION Request
1. To: Host Government CSA:
2. From: Tenant Government CSA:
Tenant POC:
Name/Title/Telephone
and Email:
Tenant POC:
Name/Title/Telephone
and Email:
3. Facility Location where CUA Desired:
Date:
Company/Department Name:
Complete SCIF Address:
SCIF ID:
Room
Numbers:
Host Site Security POC:
Name/Title/Telephone
Email Address
4. Does Facility have Waivers? No Yes (If yes, list waivers in item 9)
5. Classification: (Provide classification level, SCI compartments, and storage requirements for Co-Use)
Highest Classification: Confidential Secret Top Secret
SCI Compartments:
Storage Requirements: Open Closed
6. Information Systems POC:
Tenant IS POC:
Name/Email/Telephone:
(Provide POC for IS coordination if Co-Utilization or Joint-Utilization)
Co-Utilization:
Use a system that will not be connected to system(s) for which the agency with cognizance for the SCIF is the
accreditor or,
Use for period processing only an existing system for which the agency with cognizance for the SCIF is
the accreditor
Information System Processing Not required storage and /or discussion only
Classified By:
Derived From:
Declassify on:
This form is UNCLASSIFIED until filled in
CLASSIFICATION
This form is UNCLASSIFIED until filled in
CLASSIFICATION
CUWG: Co-Utilization/Joint Utilization form Version 5
Joint-utilization:
Use an existing system for which the agency with cognizance for the SCIF is the accreditor
Such use will consist of: Logical separation of data (via software) or
Co-mingle data, no separation. (Detailed justification required in item 9.)
7. Duration:
A. Contractor Facility:
RFP Date: (if applicable):
Expiration Date of Contract:
Contract Number:
B. Government Facility:
Expiration Date: (enter date or "Indefinite")
8. Type of Effort:
Intel Related Other (describe)
9. Comments/Justification/MOA:
TENANT; CUA
Coordinator:
Digital Signature
HOST; CUA
Coordinator:
Digital Signature
This form is UNCLASSIFIED until filled in
CLASSIFICATION
This form is UNCLASSIFIED until filled in
CLASSIFICATION
Cancellation of SCIF Co-Utilization or Joint-Utilization
1. To: Host Government CSA:
2. From: Tenant Government CSA:
Date:
Tenant POC:
Name/Title/Telephone
and Email:
3. Facility Location of CUA/JUA:
4. SCIF ID:
5. Room Numbers:
6. Comments:
Tenant; CUA
Coordinator:
Digital Signature
Classified By:
Derived From:
Declassify on:
This form is UNCLASSIFIED until filled in
CLASSIFICATION
CUWG: Cancellation of CUA/JUA form Version 1
Page 1 of 20
SCIF Pre-Construction Checklist
This checklist is intended to provide th
e CSA/AO with the information required to determine the
minimum security requirements for final SCIF accreditation and to assist the project personnel with
planning and designing the SCIF appropriately and cost efficiently. When completing this checklist,
provide as much detail as possible based upon what is known at the time it is being filled out. If any
information is not known, mark the question/section as unknown and provide a description in section 5
or on additional pages that are attached to the checklist when it is sent to the AO.
Notes:
1. This checklist is not intended to contain any classified information. Completing the checklist
should not make it classified, however, consult with your AO or security office before sending a
completed checklist across unclassified lines of communication.
2. The digital/soft copy of this checklist has a ‘mouse over’ feature where the user can place the
mouse over a section and additional information will appear to assist in filling out the checklist.
Checklist Contents
Section 1: GENERAL
Section 2: CONSTRUCTION
Section 3: PERSONNEL SITE SECURITY
Section 4: PHYSICAL SITE SECURITY
Section 5: ADDITIONAL COMMENTS
SCIF Pre-Construction Checklist
Page 2 of 20
1. GENERAL
1.1 Organization/SCIF Owner
Name
1.2 Date Checklist Submitted
1.3 SCIF Identification Number
(if applicable)
1.4 Organization Subordinate to
(if applicable)
1.5 Construction Project
Name/Title
1.6 Construction Project Address
Notes:
1. If classifi
ed, write N/A.
1.7 Name(s), Position Title(s),
and Contact Information of
Individual(s) Completing this
Checklist.
Name(s):
Position Title(s):
Email Address(s):
Phone Number(s):
1.8 Expected Start Date of
Construction
1.9 Expected End Date of
Construction
1.10 Who is currently the
primary security point of
contact for the construction
project (i.e. who will the AO
interface with directly
throughout planning and
design). This is typically the
SSM, however, if an SSM has
not yet been identified there
needs to be a primary security
POC until an SSM is
assigned. Notes:
1. If this person
changes the
AO m
ust be notified.
Name:
Position Title:
Organization:
Email Address:
Phone Number:
Comments:
SCIF Pre-Construction Checklist
Page 3 of 20
1.11 Will the person identified in number 1.10 attend
all: Design Reviews, Construction Project Planning
Meetings, and Other Project Related Meetings prior to
the release of the construction contract bid package?
Notes:
1. A security representative sh
all be included
throug
hout the construction project plan
ning
process to ensure all construction accreditation
requirem
ents (STC, ATFP, TEMPEST,
etc.) are
included in the construction project requirements.
Same Person Different Person
1.11.1 If a Different Person than
identified in question
1.10, identify who will
represent the security
requirements during these
meetings. Include Name,
Position, Organization,
and contact information.
Name:
Position Title:
Organization:
Email Address:
Phone Number:
Comments:
1.12 Security In-Depth
Starting Point (Mandatory
Outside the US) – Will the
construction project be
located (check all that apply):
On a military installation, embassy compound, USG compound
or contractor compound with a dedicated U.S. person response
force.
Within a controlled building with separate access controls,
alarms, elevator controls, stairwell control, etc. required to gain
access to building or elevator.
Controlled office areas adjacent to or surrounding SCIFs that
are protected by alarm equipment installed in accordance with
manufacturer’s instructions.
Fenced compounds with access-controlled vehicle gate and/or
pedestrian gate.
None of the above (only optional within the US)
Comments:
SCIF Pre-Construction Checklist
Page 4 of 20
2. CONSTRUCTION
2.1 Construction project general
description and scope of
work. (Provide general
description of the reason for
the construction and the
details of work to be
performed.). Use additional
pages if necessary.
Description:
2.2 Building Type – Is the construction project a New
Building or Modifying/Renovating an Existing
Building? If it is a New Building, skip to question 2.3.
New Building Existing
Building
2.2.1 For existing buildings,
what is being modified?
Check all that apply.
Walls (drywall, steel/wood studs, blocks/CMU, etc.)
Doors (STC rated? RFI rated? ATFP rated? etc.)
Electrical (lights, power, UPS, generators, cable trays, fire
alarm, mass notification system (MNS), building management
system (BMS), etc.)
HVAC (air duct, fan coils, chillers, thermostats, CRAC units,
AHUs, VAVs, BMS, etc.)
Ceiling (acoustic ceiling tiles, drywall, other, etc.)
Windows (STC rated? RFI rated? ATFP rated? etc.)
Floors (Raised Access Floor, carpet, tiles, hardwood, etc.)
Plumbing (pipes, bathroom fixtures, fire suppression, etc.)
Structural (anything load bearing, blast walls/zones, etc.)
Technical Security (IDS, CCTV, Access Control, etc.) and/or
TEMPEST countermeasures (RF shielding, dielectric breaks,
filters, wave guides, grounding, etc.)
Other (anything else to be modified not covered above)
SCIF Pre-Construction Checklist
Page 5 of 20
2.2.2 Describe what is being
modified in the building.
Is it being removed?
Added? Both? Use
additional pages if
necessary.
Description:
2.3 At the end of construction, will the SCIF be the entire
building or will the SCIF be an area within a larger
building?
The entire
building will be
a SCIF
The SCIF will
be an area
within a larger
b
uilding
2.3.1 If the SCIF is an area
within a larger building,
what are the classification
levels of the rest of the
building? Check all that
apply.
SCI
TS
Secret
Confidential
Unclassified
2.3.2 If the SCIF is an area
within a larger building,
will foreign nationals
occupy any area of the
building? If the answer is
no, skip to 2.4. Notes:
1.
Foreign Nationals
include anyone that is
not a US citizen (to
include US p
e
rsons).
Yes, foreign
nationals will
work in this
buildi
ng.
No, foreign
nationals will
not work in this
building.
Unknown –
Provide
description of
why it is
unknown in
section 5 of this
document.
SCIF Pre-Construction Checklist
Page 6 of 20
2.3.2.1 If yes to 2.3.2, describe
the nationalities of all
foreign nationalities
expected to work in the
building, if known. Use
additional pages if
necessary.
Description:
2.3.2.2 If yes to 2.3.2, can a
foreign national access
any area(s) immediately
adjacent to the SCIF (i.e.
can a foreign national
touch the SCIF
perimeter)? This
includes all SCIF walls,
floors, and ceilings. If
yes, please describe. Use
additional pages if
necessary.
Description:
2.3.2.3 If yes to 2.3.2, does the US government or SCIF
owner (i.e. US Contractor) have control over the
entire building, to include space occupied by
foreign nationals?
Yes, the US
government/SCIF
owner has control
over the building
and all space
within.
No, the US
government/
SCIF owner
does not have
control over the
building and all
space within.
2.4 What is the square footage
of the SCIF?
Description:
2.5 Will the SCIF have Compartmented Areas (CA)? If
no, skip to 2.6.
Yes, the SCIF
will have CA.
No, the SCIF
will not have
CA.
2.5.1 If yes to 2.5, has the CA Checklist (Chapter 13 of
the ICD/ICS Tech. Spec.) been completed? If yes,
attach a copy to this checklist when sending to the
AO. If no, complete 2.5.1.1.
Yes No
2.5.1.1 If no to 2.6.1, when will
the CA checklist(s) be
completed for
submission to the AO?
Date:
2.6 Will the SCIF contain equipment that will be
processing National Security Information (NSI)?
Yes No
SCIF Pre-Construction Checklist
Page 7 of 20
2.7 Has the supported command/SCIF owner provided the
CTTA, through the AO, with a completed TEMPEST
Checklist (Chapter 13 of the ICD/ICS Tech. Spec.) for
review? If yes, complete 2.7.1 If no, complete 2.7.2.
Yes No
2.7.1 If yes to 2.7, will there be a TEMPEST
requirement?
Yes No
2.7.2 If no to 2.7, when will
the TEMPEST Checklist
be completed for
submission to the AO?
Notes:
1. Based on CTTA
recommendations,
the AO may require
TEMPEST
countermeasures for
any SCIF.
Date:
2.8 Construction General
Contractor (GC) – Will the
GC be US owned, Non-US
owned (Foreign), or
multiple/both?
US Owned
Non-US Owned (Foreign) (must have AO approval) Complete
2.8.1
Multiple/Both (if planning to use a different GC for different
phases of construction). Complete 2.8.1
Unknown Complete 2.8.1
2.8.1 Describe the situation
for why the GC will not
be US owned and/or
why it is unknown what
the GC will be. Notes:
1. The AO must
approve the GC
being Non-US
owned. Use
additional pages if
necessary.
Description:
SCIF Pre-Construction Checklist
Page 8 of 20
2.9 Construction Subcontractors
– Will the construction
subcontractor(s) be US
owned, Non-US owned
(Foreign), or
mu
ltiple/both?
US Owned
Non-US Owned (Foreign)
(must have AO approval) Complete
2.9.1
Multiple/Both (if planning to use a different GC for different
phases of construction). Complete 2.9.1
Unknown Complete 2.9.1
2.9.1 Describe the situation for
why the subcontractor(s)
will not be US owned
and/or why it is unknown
what the subcontractor(s)
will be. Notes:
1. The AO must
approve
subcontractors being
Non-US owned. Use
additional pages if
necess
ary.
Description:
2.10 Construction Labor (who
will do the construction
work) – Will the construction
labor be Uncleared or
Cleared? Identify specifically
the categories of construction
labor. Check all that apply. If
using multiple categories
and/or if additional
information is available,
complete 2.10.1.
Uncleared (no US security clearance)
US Citizens
US Persons
Non-US citizens/persons (must have AO approval)
Local (Host) Nationals (LN)
Third Country Nationals (TCN)
Cleared American Worker (has US issued security clearance)
Secret Cleared
Top Secret Cleared
Top Secret/SCI Cleared
Unknown – Provide description of why it is unknown in section
5 of this document.
2.10.1 Describe the expectations
of the construction labor.
Notes:
1. The AO must
approve non-
US
citizens and/or non-
US persons being
used. Use additional
pages if nece
ssary.
Description:
SCIF Pre-Construction Checklist
Page 9 of 20
2.11 Are there special requirements for procurement,
shipping, and storing of SCIF construction materials?
If yes, complete 2.11.1, 2.11.2, and 2.11.3. Notes:
1. Projects Outside of the US must mark yes.
Yes No
2.11.1 Describe the
requirements for Material
Procurement. Use
additional pages if
necessary.
Description:
2.11.2 Describe the
requirements for Material
Shipping. Use additional
pages if necessary.
Description:
SCIF Pre-Construction Checklist
Page 10 of 20
2.11.3 Describe the
requirements for Material
Storage. Use additional
pages if necessary.
Description:
2.12 What are the expected
hours of operation for the
construction site (the hours
the construction site will be
open for construction work to
progress)?
24 hours a day
Less than 24 hours a day
List the hours of operation here ________________________
Unknown
When will the hours be identified?
2.13 What are the days of the
week the construction site
will be open (the days the
construction site will be open
for construction work to
progress)?
7 days a week
Less than days a week
List the days of operation here ________________________
Unknown
When will the days be identified?
SCIF Pre-Construction Checklist
Page 11 of 20
3. PERSONNEL SITE SECURITY
3.1 Has a Site Security Manager (SSM) been identified?
If yes, complete 3.1.1. If no, complete 3.1.2
Yes No
3.1.1 If yes to 3.1, identify the
SSM and provide contact
information.
Name:
Organization/Company:
Email Address:
Phone Number:
3.1.2 If no to 3.1, identify the
source that will provide
the SSM. Notes:
1. To avoid poten
tial
conflicts of interest,
the SSM shall not be
contracted under the
Construction General
Contractor (GC).
US Government
S
upplying Organization ______________________________
US Military
Supplying Organization ______________________________
US Contractor
Expected Contract Start Date__________________________
3.2 Will Construction Surveillance Technicians (CST) be
used? If yes, complete 3.2.1 and 3.2.2. Notes:
1. Outside of the US – The use of CSTs is required.
2. Within the U
S – The use of CSTs is required
when directe
d by the AO only.
Yes No
3.2.1 If yes to 3.2, identify the
source that will provide
the CSTs. Notes:
1. To avoid poten
tial
conflicts of interest,
CSTs shall not be
contracted under the
Construction General
Contractor (GC).
US Government
S
upplying Organization ______________________________
US Military
Supplying Organization ______________________________
US Contractor
Expected Contract Start Date__________________________
3.2.2 If yes to 3.2, what is the
approximated number of
CSTs needed at peak
requirements and what is
the minimum clearance
requirement for the
CSTs?
Approximated number of CSTs:_______________________
Clearance requirement for CSTs:______________________
SCIF Pre-Construction Checklist
Page 12 of 20
3.3 Will Cleared American Guards (CAG) be used? If
yes, complete 3.3.1 and 3.3.2.
Yes No
3.3.1 If yes to 3.3, identify the
source that will provide
the CAGs. Notes:
1. To avoid poten
tial
conflicts of interest,
the CAGs shall not
be contracted under
the Construction
General Contractor
(GC).
US Government
S
upplying Organization ______________________________
US Military
Supplying Organization ______________________________
US Contractor
Expected Contract Start Date__________________________
3.3.2 If yes to 3.3, what is the
approximated number of
CAGs needed at peak
requirements and what is
the minimum clearance
requirement for the
CAGs?
Approximated number of CAGs:______________________
Clearance requirement for CAGs:______________________
3.4 Outside of the US – Will non-cleared US guards or
non-US guards be used? If yes, complete 3.4.1. Notes:
1. The use of non-cleared US
guards or non-US
guards m
ust be approved by
the AO and these
guards m
ust be supervised by a CAG or secret-
cleared US
citizen.
Yes
No
3.4.1 If yes to 3.4, describe the
expected use of non-
cleared US guards or
non-US guards. Use
additional pages if
necessary.
Description:
3.5 Will Cleared Escorts (CE) be used? If yes, complete
3.5.1 and 3.5.2. Notes:
1.
A CE is not a CST and shall not replace a CST
without pr
oper training/certification, kno
wledge,
and experience required to
be a CST.
Yes No
SCIF Pre-Construction Checklist
Page 13 of 20
3.5.1 If yes to 3.5, identify the
source that will provide
the CEs.
US Government
Supplying Organization ______________________________
US Military
Supplying Organization ______________________________
US Contractor
Expected Contract Start Date__________________________
3.5.2 If yes to 3.5, what is the
approximated number of
CEs needed at peak
requirements and what is
the minimum clearance
requirement for the CEs?
Approximated number of CEs:________________________
Clearance requirement for CEs:_______________________
3.6 Has a cost estimate been
completed for Personnel
Security (SSM, CSTs, CAGs,
and/or CEs) requirements? If
no, complete 3.6.1. Notes:
1.
N/A is intended for
industr
y/comm
ercial
SCIF owners who may
not need to com
plete
a
cost estimate.
Yes
No N/A – Provide
description of
why it is
unknown in
section 5 of this
document.
3.6.1 If no to 3.6, when will the
cost estimate be
completed?
Date:
3.7 Has a funding source been
identified for Personnel
Security requirements? If no,
complete 3.7.1. Notes:
1.
N/A is intended for
industr
y/comm
ercial
SCIF owners who may
not need to identify a
fundin
g source.
Yes
No N/A – Provide
description of
why it is
unknown in
section 5 of this
document.
3.7.1 If no to 3.7, when will the
personnel security
funding source be
identified?
Date:
SCIF Pre-Construction Checklist
Page 14 of 20
4. PHYSICAL SITE SECURITY
4.1 Will the construction project have a perimeter fence?
If yes, complete 4.1.1.
Yes No
4.1.1 If yes to 4.1, describe
the fence type.
Permanent, temporary,
federally rated, etc. Use
additional pages if
necessary.
Description:
4.2 Will the construction project have a Secure Storage
Area (SSA)? If yes, complete 4.2.1, 4.2.2, and 4.2.3.
Notes:
1. Projec
t
s Outside of the US must mark yes.
Yes No
4.2.1 If yes to 4.2, describe
the SSA, to include type
of area/facility/container
and location. Use
additional pages if
necessary.
Description:
4.2.2 If yes to 4.2, describe
how the SSA will be
secured during hours of
non-operation. 24/7
CAGs, IDS, CCTV,
locks, fence, etc. Use
additional pages if
necessary.
Description:
SCIF Pre-Construction Checklist
Page 15 of 20
4.2.3 If yes to 4.2, will the
SSA serve additional
uses, i.e. material
inspections, and if so,
please describe the
secondary uses. Use
additional pages if
necessary.
Description:
4.3 Will the project have an Access Control Facility
(ACF)? i.e. Temporarily installed modular facility. If
yes, complete 4.3.1 and 4.3.2.
Yes No
4.3.1 If yes to 4.3, Describe
the expected square
footage of the ACF and
what rooms/offices are
required for operations.
i.e. inspection area, SSM
office, conference roo
m
,
CST break room, etc.
Description:
4.3.2 If yes to 4.3, describe
how the ACF will be
secured during hours of
non-operation. 24/7
CAGs, IDS, CCTV,
locks, fence, etc. Use
additional pages if
necessary.
Description:
SCIF Pre-Construction Checklist
Page 16 of 20
4.4 Will any of the listed
equipment will be used by the
SSM Staff to perform their
duties? Check all that apply.
Notes:
1. If unknown, the AO will
confirm required
equipment for the SSM
Staff to perform their
duties.
X-Ray Machine
Pallet size, typical in S
SA
Parcel/Airport size, typical in ACF
Hand Held Metal Detect
ors
Walk Through Metal Detector
Itemizer
Digital Documentation Devices
Computer(s)
Camera(s)
Other (anything else not covered above)
4.4.1 Provide any additional
information available
regarding SSM Staff
equipment.
Description:
4.5 Will the construction project have Intrusion Detection
System (IDS)? If yes, complete 4.5.1.
Yes No
4.5.1 If yes to 4.5, describe the
construction project IDS
and its functions on the
project.
-Where will the IDS be
installed (ACF / SSA /
etc.)?
-Who will monitor the
IDS during construction
hours of non-operation? -
Who will respond to
alarms during
construction hours of
non-operation?
-Who will install the
IDS? i.e. US government,
security contractor, GC,
etc.
Use additional pages if
necessary.
Description:
SCIF Pre-Construction Checklist
Page 17 of 20
4.6 Will the construction project have Closed Circuit
Television (CCTV)? If yes, complete 4.6.1.
Yes No
4.6.1 Describe the construction
project CCTV and its
functions on the project.
-Where will the video
feed go?
-Who will monitor the
CCTV during
construction hours of
operation and non-
operation?
-Who will install the
CCTV? i.e. US
government, security
contractor, GC, etc.
Use additional pages if
necessary.
Description:
4.7 Will the construction project have Biometric Identify
Verification? If yes, complete 4.7.1.
Yes No
4.7.1 If yes to 4.7, describe the
construction project
biometric verification
system and its functions
on the construction
project.
-What system will be
used? i.e. IRIS or
fingerprint.
-Who will install the
IDS? i.e. US
government, security
contractor, GC, etc.
Use additional pages if
necessary.
Description:
4.8 Will the construction project have additional physical
security components not already discussed? If yes,
complete 4.8.1.
Yes No
4.8.1 If yes to 4.8, describe the
additional physical
security components and
how they will be used to
protect the construction
project. Use additional
pages if necessary.
Description:
SCIF Pre-Construction Checklist
Page 18 of 20
4.9 Has a cost estimate been
completed for Physical
Security requirements? If no,
complete 4.9.1. Notes:
1.
N/A is intended for
industr
y/comm
ercial
SCIF owners who may
not need to com
plete a
cost esti
mate.
Yes
No N/A – Provide
description of
why it is
unknown in
section 5 of this
document.
4.9.1 If no to 4.9, when will the
cost estimate be
completed?
Date:
4.10 Has a funding source
been identified for Physical
Security requirements? If no,
complete 4.10.1. Notes:
1.
N/A is intended for
industr
y/comm
ercial
SCIF owners who may
not need to identify a
fundin
g source.
Yes
No N/A – Provide
description of
why it is
unknown in
section 5 of this
document.
4.10.1 If no to 4.10, when will
the physical security
funding source be
identified?
Date:
SCIF Pre-Construction Checklist
Page 19 of 20
5. ADDITIONAL COMMENTS
Provide additional comments and information about anything discussed in this checklist and/or other
areas of information that the AO should be aware of. Use additional pages if necessary.
Section 5, Additional Comments, page _1__ of ____.
SCIF Pre-Construction Checklist
Page 20 of 20
Section 5, Additional Comments, page ____ of ____.
(If additional pages are necessary, print this page multiple times and number them individually)
Construction Security Plan (CSP)
Definition: A plan outlining security protective measures that will be applied to each phase
of the construction project. The requirements set forth in this plan provide the baseline for
construction security activities and may be supplemented as required but may not be reduced
without coordination and approval from the Accrediting Official (AO).
The contents below are suggested topics. The plan format and content shall be
developed by the element accrediting official (AO) based upon the size, purpose and
location of the SCIF.
a.
Site Security Manager: (identify the SSM and contact information)
b.
Statement of Construction Project: (provide a description of the proposed work)
c.
Existing SCIF ID (if project is associated with currently accredited SCIF)
d.
Cognizant Security Authority/ Accrediting Official: (element)
e.
Location of Work: (address/ location)
f.
Estimated Start Date: (estimated date construction will begin)
g.
Estimated Completion Date: (estimated date construction will end)
h.
Has a Risk Assessment Been Completed: (if yes attach copy)
i.
Security in Depth (SID) Documentation: (Document the layers of
protection offered at the site, such as security fencing or walls, roving
guards, marine security guards, CCTV coverage, and controlled and/ or limited access
buffers to facility)
j.
Adjacencies to Consider: (include a description of adjacent facilities to include
other classified agencies, activities, and presence of foreign nationals operating
in adjacent spaces on all six sides of the proposed SCIF)
k.
Control of Construction Plans and Documents: (Describe how construction
plans and all related documents shall be handled and protected)
l.
Control of Operations if a Renovation Project (describe barriers that will
be installed to segregate construction workers from operational activities )
m.
Procurement, Shipping and Storage of Building/Finishing Material: (If
required by AO, describe security measures to ensure integrity of building
materials and/ or finishing materials.)
n.
Construction Workers (Depending upon the standards required (within U.S.,
outside U.S., etc.), for construction workers, provide information to verify worker
status, clearances if required, and/ or mitigations employed.)
o.
Site Security (Identify plans to secure construction site, to include any
proposed fences, guards, CSTs, escorts, etc.)
p.
Security Administration: (list security documentation and retention
requirements that shall be maintained by the SSM (i.e. visitor logs, names of construction
workers, security incident
Page 1 of 5
Inspectable Construction Materials Checklist
Organization Name:
Project Name:
Contents
A. Foundation Materials ........................................................................................................ 2
B. Masonry ............................................................................................................................... 2
C. Tools and Fasteners ........................................................................................................... 2
D. Metal Items .......................................................................................................................... 3
E. Carpentry and Furniture ................................................................................................... 3
F. Thermal Moisture Protection ........................................................................................... 3
G. Doors and Windows (excluding locks) .......................................................................... 4
H. Finishes ................................................................................................................................ 4
I. Plumbing and Mechanical Systems ................................................................................ 4
J. Electrical Items ................................................................................................................... 5
K. Other Miscellaneous .......................................................................................................... 5
All items listed as “inspectable” may be procured locally using allotted random
procurement percentages. All items that are “non-inspectable” must be procured in the
US and securely shipped to the construction site.
Page 2 of 5
A. Foundation Materials
* Note:
1. Aggregate cement, sand and gravel should be poured through an appropriate sized mesh, and a magnet
should be utilized to occasionally check for inappropriate metallic particles.
2. At least 10% of the rebar should be examined for internal voids using ultrasonic testing. If the ultrasonic
tester is unavailable, then destructive testing may be used.
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Water
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Sand
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Cement
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Aggregate
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Gravel
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Rebar
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Rebar ties & mesh
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
B. Masonry
*Note:
1. Precast is not acceptable if created off site unless constructed in the US and shipped secure. If a CST
inspects the precast as it is made, it is acceptable.
2. Stonework for the façade needs only visual inspection. Internal stone work must undergo a 3% random
destruction test.
3. Scaffolding should be inspected internally before allowed on site.
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Cement blocks &
brick
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Precast concrete
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Stone Work
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Forms
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Scaffolding/work
platforms
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
C. Tools and Fasteners
* Note:
Personal tool boxes will be examined when first brought on site, and randomly thereafter. They will be
locked on the site when not in use and workers will not be allowed to carry them on and off the site.
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Tool boxes
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Welding rod & solder
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Fasteners
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Hilti fasteners &
charges
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Page 3 of 5
D. Metal Items
*Note:
Visual inspection applies only to common, commercially available items. Items requiring special fabrication
are not inspectable unless CST is present during fabrication.
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Structural Steel
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Metal Decking
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Metal Fabrications
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Metal Stairs
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
E. Carpentry and Furniture
*Note:
1. Finished and rough carpentry items constructed on site will be monitored by CSTs.
2. Furniture having built in electrical devices or lamps must be disassembled and inspected separately
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Lumber
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Rough & finished
carpentry
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Furniture w/out
electrical raceway
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
F. Thermal Moisture Protection
*Note:
Metallic membranes preferred as they offer some degree of RF attenuation.
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Water-proof
membrane
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Water-proof
membrane (Metallic)
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Bituminous water
proofing
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Thermal Insulation
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Spray on Fire
Proofing
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Page 4 of 5
G. Doors and Windows (excluding locks)
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Metal Doors/Frames
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Wood Doors/Frames
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Metal
Windows/Frames
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Wood
Windows/Frames
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Vault Doors/Frames
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Glazing
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
H. Finishes
* Note:
Bundles of tiles will be unpacked and no more than two tiles at a time will be examined.
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Plaster Lath
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Plaster
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Gypsum Wallboard
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Raised Flooring
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Carpet and Curtains
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Paint Varnishes
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Adhesives
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Wall Coverings
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Ceramic Tile
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Acoustical Tile
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
I. Plumbing and Mechanical Systems
* Note:
Can be inspected if no tape, insulation and/or other finishes have been used.
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Plumbing (Metal)
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Plumbing (plastic)
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Plumbing fixtures
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Valves
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Fan Coil Units
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Site Fabricated
Ducts
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Prefabricated Ducts
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Page 5 of 5
J. Electrical Items
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Wire
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Conduit
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Junction boxes
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Outlets w/out built
ins
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Outlets w/built ins
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Switches, Breakers
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Incandescent light
fixtures
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Florescent light
fixtures
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Light bulbs (tubes)
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Circuit breaker
boards
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Electrical
component boards
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Transformers
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Transient
suppressor
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Voltage regulators
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Generators
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Power line
conditioners
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Switch gears
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Telephone systems
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
K. Other Miscellaneous
DESCRIPTION
INSPECTABLE
INSPECTION METHOD
Chalk & tack boards
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Fire extinguishers
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Fire alarm systems
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Fire alarm sensors
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Sprinkler/gas heads
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Kitchen appliances
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Electrical dark room
equipment
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Security alarm
systems
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Acoustical
insulation
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test
Locks
Yes No
X-Ray Ultrasonic Visual Metal Detector Destructive Test