ABOUT YOUR SECURITY BRIEFING

Willie Archie Facilities Security Officer (FSO) UC Laboratory Management	Robert Van Ness UC Associate VP Operations & Adm. UC Laboratory Management

WHAT IS THE ANNUAL SECURITY REFRESHER BRIEFING?

The University has agreed to conform to all security regulations and requirements of various Federal sponsors.  Individuals who possess UC-sponsored clearances must receive refresher briefings at 12-month intervals.  These briefings reinforce and update awareness of DOE safeguards and security policies and remind individuals of their security responsibilities.

Although most of the information in the briefing is aimed at DOE access authorization holders, pertinent information applies to DOD security holders also.

Your Responsibility

We encourage you to carefully review the material in this briefing to better understand various security policies to be carried out in the performance of your University duties.

Due Date

Please return your required briefing acknowledgment (see last page) by November 30, 2004.

1. Introduction
2. Threat Awareness and Defense Security
3. Overview of Security Classification System
4. Reporting Requirements
5. What is CREM?
6. References
7. Acknowledgment of Briefing

INTRODUCTION

As an individual holding a University of California-sponsored DOE and/or DOD security clearance, you have been entrusted with responsibilities to yourself, your fellow colleagues, the University, the Federal government, and the nation.

DOE Order 470.1, Chapter 4, “Safeguards and Security Awareness Program,” requires that all DOE contractor personnel with a clearance receive an annual security refresher briefing (ASR). The ASR is designed to highlight significant issues related to your clearance. Again this year, the ASR is being presented in two formats, electronically and in the familiar booklet format. Although more information is covered in the cross-linked electronic version (found at http://labs.ucop.edu/internet/security/brief04/), the information contained in this booklet covers most of the same material. After reading the booklet, simply print and sign your name and return the last page to the University Research Security Office using the self-addressed form. The electronic version requests E-mail confirmation of this briefing.

In summary, the topics presented in this refresher briefing include the following:

• Threat Awareness
• Overview of Security Classification System
• Reporting Requirements
• What is CREM?

There have been several recent instances where unclassified information systems networks at cleared defense contractor facilities were penetrated; including instances where it was determined the systems were penetrated by foreign interests. The Defense Security Service (DSS) advises the University and other contractors to be alert to possible penetrations to their information systems, whether by an identified foreign entity or not, and take proactive steps to mitigate potential risks to their unclassified network systems.

Should a contractor determine there has been an unauthorized intrusion into their unclassified network by a foreign entity, a Suspicious Contact report to DSS is warranted. If the contractor suspects that possible espionage, sabotage or subversive activity is underway by a domestic or foreign entity, written reports to both the FBI and DSS are warranted. The reporting requirements are stated in Paragraphs 1-301 and 1-302b of the National Industrial Security Program Operating Manual (NISPOM).  If the contractor determines a compromise or suspected compromise of classified information, they must conduct an administrative inquiry, properly sanitize the network and follow the reporting guidelines in NISPOM Paragraph 1-303.

A security clearance (access authorization) means that you are eligible to be granted access to national security information or material at the level of CONFIDENTIAL, SECRET, or TOP SECRET, based on the extent of your background investigation and based on your NEED TO KNOW, as related to your assigned contractual responsibilities.

DEFINITIONS OF CLASSIFIED INFORMATION

For a better understanding of your involvement with national security information when you visit the weapons laboratories, some helpful definitions follow:

Classified Information: Any information that requires protection against unauthorized disclosure in the interest of the national defense and security or foreign relations of the United States pursuant to applicable U.S. Statute or Executive Order. The term includes:

1. Restricted Data
2. Formerly Restricted Data
3. National Security Information

Included within each of the above designations are three categories indicating degrees of importance, denoted by Top Secret (TS), Secret (S) and Confidential (C).

Confidential -- the lowest level applied to information whose unauthorized disclosure could be expected to cause damage to the national security of the United States.

Top Secret -- the highest level applied to information whose unauthorized disclosure could be expected to cause exceptionally grave  damage to the national security of the United States.

Restricted Data—Data defined in Section II.y. of the Atomic Energy Act of 1954, as amended, 42 U.S.C. § 2014(y),  as “all data concerning (1) design, manufacture, or utilization of atomic weapons; (2) the production of special nuclear material; or (3) the use of special nuclear material in the production of energy, but shall not include data declassified or removed from the Restricted Data category pursuant to Section 142.”

Formerly Restricted Data—Classified information jointly determined by the Department of Energy (or its predecessors the Atomic Energy Commission and the Energy Research and Development Administration) and the Department of Defense to be related primarily to the military utilization of atomic weapons, and removed by DOE from the Restricted Data category pursuant to Section 142(d) of the Atomic Energy Act of 1954, as amended, 42 U.S.C. § 2162, and safeguarded as National Security Information, subject to the restrictions on transmission to other countries and regional defense organizations that apply to Restricted Data.

National Security Information — Information that requires protection in the interest of national defense or foreign relations of the United States, that does not fall within the definition of Restricted Data or Formerly Restricted Data, and that is classified in accordance with an Executive Order.

Sigma Categories —Restricted Data and/or Formerly Restricted Data detailed in 15 categories that concern the design, manufacture, or utilization of atomic weapons, or utilization of atomic weapons or nuclear explosive devices.

Maintaining Security Clearances

A subject who has become a cleared and briefed employee has certain responsibilities. These are spelled out in detail in the NISPOM and are summarized below.

Reporting Requirements

Below, information is provided to assist cleared personnel in their responsibility to report certain occurrences. Contact the Facility Security Officer (FSO) immediately if any of the following occur:

Changes in Status

As a cleared employee at the University of California the FSO must be informed of any change in status including a change in name, marital status, or citizenship or termination of employment.  Also if the need for access to classified information in the future has been reasonably foreclosed, this must be reported to the FSO.

Representative of a Foreign Interest

Should any cleared personnel become a representative of a foreign interest this must be reported to the FSO.

Foreign Travel

If travel occurs outside the United States to a Sensitive Country, for either business or pleasure, this travel must be reported to the FSO in advance of making the trip.  A foreign travel briefing will be provided as necessary.  Upon returning, any suspicious contacts that may have occurred during travel should be reported to the FSO. See below for additional information regarding suspicious contacts.

Adverse Information

A cleared employee is required to report any adverse information that comes to his or her attention regarding another cleared person. These reports must be  based on fact. Reports based on rumor or innuendo should not be made. If any potentially adverse information should arise concerning yourself, contact the FSO to report circumstances. Self-reporting can go a long way toward mitigating the negative impact of adverse information.  All reports of this nature are kept in the strictest confidence and are reported only as required in accordance with the NISPOM. Reports of this nature may also be submitted via the Defense Hotline.

Suspicious Contacts

Cleared employees are also required to report efforts by any individual, regardless of nationality, to obtain illegal or unauthorized access to classified information or to compromise a cleared employee.  All contacts by cleared employees with known or suspected intelligence officers from any country, or any contact which suggest the employee concerned may be the target of an attempted exploitation by the intelligence services of another country, must be reported to the FSO.

Loss, Compromise, or Suspected Compromise

Any loss, compromise, or suspected compromise of classified information must be reported immediately to this office.  If unable to locate a classified document that is supposed to be in custody, do not delay in reporting this matter to the FSO.

Defense Hotline

While contractor personnel are encouraged to furnish information through established company channels, the Defense Hotline is provided as an unconstrained avenue to report, without fear or reprisal, known or suspected instances of serious security irregularities and infractions concerning contracts, programs, or projects. This alternate means of reporting is provided for use when considered prudent or necessary.

Defense Hotline
The Pentagon
Washington, DC 20301-1900
(800) 424-9098

Reports Submitted to the FBI 

A cleared employee must promptly report any information coming to his or her attention concerning actual, probable or possible espionage, sabotage, or subversive activities.  Reports of this nature will be immediately forwarded to the Federal Bureau of Investigation (FBI). This information may be reported directly to the FBI if desired.

 A more detailed listing of Reporting Requirements is listed below

What is CREM?

 “CREM” stands for classified removable electronic media. CREM is classified information stored on removable electronic media.

 “Removable” refers to media that are:

• Designed to be introduced to and removed from the computer without adverse impact on computer functions, or
• Separated from the computer for any reason, or
• Portable electronic devices.

 A classified laptop computer is another kind of CREM. It should be properly marked as classified.

• Accountable CREM must be tracked, and its whereabouts must be recorded.

 What does CREM look like?

 Examples of classified removable electronic media are listed below:

• Removable hard drives (including micro drives)
• External hard drives (for example, SCSI, USB, and FireWire)
• Portable computer (laptops, notebooks, and tablets) that contain non-removable hard drives and are accredited for classified processing
• Floppy diskettes (8”/5.25”/3.5”, magnetic, and magneto-optical)
• Computer disks (CSs) all types
• Digital video disks (DVDs), all types
• Jaz, Zip, and Pocket Zip disks; Bernoulli cartridges; LS-120 disks; and other high capacity removable disks.
  • USB “pen drives, flash drives, memory sticks, compact flash cards, and other solid state memory media.
  • AIT, DAT, DLT, QIC, or other magnetic or optical tape media used to store digital data.
• Digital cameras with any non-removable  memory

 An example of media that is not accountable CREM:

• Tape media containing classified audio and/or video data only are not CREM.
  • Audio Tapes
  • Video Tapes

 Remember:

• Not all media are CREM.
• Not all CREMS are accountable.
• Only what is stated as accountable is accountable –no more, no less.
• See UC Policy paragraph III.C.

 If you need more information or training regarding CREM, contact your Facilities Security Officer, who will put you in touch with the appropriate office.

 Note:

We have received permission to reprint the information regarding CREM courtesy of Los Alamos National Laboratory Security Department.

REFERENCES

U.S. Department of Energy (DOE) “Safeguards and Security Awareness Program,” Chapter 4, Directive 470.1

"National Industrial Security Program Operating Manual," paragraphs 3-107, Refresher Briefings, January 1995, U.S. Deputy Secretary of Defense.

Security Department, Los Alamos National Laboratory

University of California Policy on Accountable Classified Removable Electronic Media

Acknowledgment

Please email Willie Archie to acknowledge that you have read this version of the University of California 2004 Security Refresher Briefing. Include the following statement in the body of your message:


I acknowledge receipt of the University of California 2004 Security Refresher Briefing in compliance with U.S. Department of Energy and U.S. Department of Defense security requirements.

 
It is important to include your name after the above statement.
 
We will be contacting you if your email statement is not received by November 30, 2004.
 
Thank you.


willie.archie@lao.ucop.edu