Vocab 2 - Intro to Info Security (Glossary)

Question 1

Access

Answer 1

The ability and opportunity to gain knowledge of
classified information.
Access = eligibility +
need-to-know + a signed SF-312.

Question 2

Automatic Declassification

Answer 2

Declassification of information that is more than 25 years
old and is not otherwise prevented from being declassified
by an approved exemption. Such information shall be
declassified on the 31st of December, 25 years from the
date of original classification.

Question 3

Banner marking

Answer 3

Indicate the highest level of classification of the overall
document, as determined by the highest level of any one
portion within the document. They are placed on the top
and bottom of every page of the document.

Question 4

Center of Development of Security Excellence (CDSE)

Answer 4

Provides security education and training to Department of
Defense and other U.S. Government personnel, DoD
contractors, and sponsored representatives of foreign
governments.

Question 5

Classification

Answer 5

The act or process by which information is determined to
require protection against unauthorized disclosure and is
marked to indicate its classified status.

Question 6

Classification Authority Block

Answer 6

Indicates who the document was classified by, where it
was derived from, downgrade instructions, and when it
should be declassified. The CAB is placed on the face of
each classified document near the bottom.

Question 7

Classified Information

Answer 7

Information that has been determined, pursuant to
Executive Order 12958 or any predecessor order, or
pursuant to the Atomic Energy Act of 1954, to require
protection against unauthorized disclosure and is marked
to indicate its classified status when in documentary form.

Question 8

Classified Information Nondisclosure Agreement

Answer 8

SF 312, a contractual agreement between the U.S.
Government and a cleared employee that must be
executed as a condition of access to classified information.

Question 9

Compilation

Answer 9

Items of information that are individually unclassified or
classified at a lower level, may be classified, or classified
at a higher level, only if the compiled information reveals
an additional association or relationship.

Question 10

Compromise

Answer 10

An unauthorized disclosure of classified information.

Question 11

Confidential (C)

Answer 11

Information or material of which unauthorized disclosure
could reasonably be expected to cause damage to national security that the Original Classification Authority is able
to identify or describe.

Question 12

Contained in

Answer 12

Applies when derivative classifiers incorporate classified
information, word for word, from an authorized source
into a new document, and no additional interpretation or
analysis is needed to determine the classification of that
information.

Question 13

Custodian

Answer 13

An individual who has possession of, or is otherwise
charged with, the responsibility for safeguarding classified
information.

Question 14

Cybersecurity

Answer 14

Measures that protect and defend information and

information systems.

Question 15

Declassification

Answer 15

An authorized change in status of information from

classified to unclassified.

Question 16

Defense Office of Prepublication and Security Review

DOPSR

Answer 16

Responsible for managing the DoD security review
program and reviewing written materials for public and
controlled release.

Question 17

Department of Defense (DoD)

Answer 17

Department of Defense – Provides the military forces
needed to deter war and protect national security. Under
the President, the Secretary of Defense directs and
exercise authority and control over the separately
organized Departments of the Air Force, the Army, and
the Navy; over the Joint Chiefs of Staff; over the
combatant commands; and over defense agencies and field
activities.

Question 18

Department of Defense Directive (DoDD)

Answer 18

Department of Defense Directive

Question 19

Department of Defense Instruction (DoDI)

Answer 19

Department of Defense Instruction

Question 20

Department of Defense Manual (DoDM)

Answer 20

Department of Defense Manual

Question 21

Derivative Classification

Answer 21

Incorporating, paraphrasing, restating, or generating in
new form information that is already classified, and
marking the newly developed material consistent with the
classification markings that apply to the source
information.

Question 22

Derivative Classifiers

Answer 22

All cleared DoD and authorized contractor personnel who
generate or create new material from sources which are
already classified.

Question 23

Destruction

Answer 23

Destroying classified information so that it can’t be

recognized or reconstructed.

Question 24

Dissemination

Answer 24

The sharing or transmitting of classified information to

others who have authorized access to that information.

Question 25

Document

Answer 25

Any physical medium in or on which information is recorded or stored, to include written or printed matter, audiovisual materials, and electromagnetic storage material.

Question 26

Downgrading

Answer 26

A determination by an OCA or declassification authority that information classified and safeguarded at a specified level shall be classified and safeguarded at a lower level.

Question 27

Duration

Answer 27

A determination made regarding how long information is to be protected (i.e., when the information will lose its sensitivity and no longer merit or qualify for classification).

Question 28

Executive Order (E.O.) 13526

Answer 28

Establishes the legal authority for certain officials within the Executive Branch of the Federal government to designate classified national security information.

Question 29

Eligibility

Answer 29

A DoD Consolidated Adjudication Facility (DoD CAF) has made an adjudicative determination of a member’s Personnel Security Investigation (PSI) and that member may have access to classified information equal to the level of their adjudicated investigation.

Question 30

Evaluated Products List (EPL)

Answer 30

A list of destruction products that have been tested and | meet performance requirements.

Question 31

Exceptions

Answer 31

Permanent exclusions or deviations put in place when classified information cannot be safeguarded to the standards or requirements specified in DoDM 5200.01.

Question 32

Executive Order (E.O.)

Answer 32

An order issued by the President to create a policy and | regulate its administration within the Executive Branch.

Question 33

General Services Administration (GSA)

Answer 33

Federal agency which establishes and publishes uniform standards, specification, and supply schedules for units and key-operated and combination padlocks suitable for the storage and protection of classified information.

Question 34

Government Information (Official)

Answer 34

A step in the original classification process; for information to be identified as official, it must be owned by, produced by or for, or under the control of the U.S. Government.

Question 35

Impact

Answer 35

A step in the original classification process that assesses the probable operational, technological, and resources of classification.

Question 36

Information

Answer 36

Knowledge that can be communicated, and documentary material, regardless of its physical form or characteristics, that is owned by, produced by or for, or is under the control of the U.S. Government.

Question 37

Information Security

Answer 37

The system of policies, procedures, and requirements established in accordance with EO 13526 to protect information that, if subjected to unauthorized disclosure, could reasonably be expected to cause damage to national security. The term also applies to policies, procedures and requirements established to protect controlled unclassified information, which may be withheld from release to the public in accordance with statue, regulation, or policy.

Question 38

Information Security Oversight Office (ISOO)

Answer 38

Oversees programs for classified national security information and controlled unclassified information in both Government and industry and reports on their status annually to the President.

Question 39

Information Security Program (ISP)

Answer 39

Implements policy, assign responsibilities, and provide procedures for the designation, marking, protection, and dissemination of controlled unclassified information (CUI) and classified information, including information categorized as collateral, sensitive compartmented information (SCI), and Special Access Program (SAP).

Question 40

Information System (IS)

Answer 40

An assembly of computer hardware, software, and firmware configured for the purpose of automating the functions of calculating, computing, sequencing, storing, retrieving, displaying, communicating, or otherwise manipulating data, information and textual material.

Question 41

Loss

Answer 41

The inability to physically locate or account for classified information.

Question 42

Mandatory Declassification Review

Answer 42

A way for members of the public to request the review of | specific classified information.

Question 43

Markings

Answer 43

Serve to alert holders to the presence of classified information and technical information with restriction on its dissemination; identify, as specifically as possible, the exact information that needs protection; indicate the level of classification assigned to the information; provide guidance on downgrading and declassification; give information on the source or sources and reason or reasons for classification or other restrictions; and warn holders of special access, control, or safeguarding requirements.

Question 44

National Security

Answer 44

Information relating to the national defense or foreign | relations of the United States.

Question 45

National Security Administration (NSA)

Answer 45

Agency of the Federal Government that maintains listings of evaluated destruction products that have been tested and meet performance requirements and provides information assurance services and information and signals intelligence.

Question 46

Original Classification

Answer 46

An initial determination that information requires, in the interests of national security, protection against unauthorized disclosure

Question 47

Original Classification Authority (OCA)

Answer 47

An individual authorized in writing, either by the President, the Vice President, or by agency heads or other officials designated by the President, to originally classify information.

Question 48

Portion Marking

Answer 48

Indicates the highest level of classification in every portion of the document and must be placed at the beginning of the respective portion.

Question 49

Properly Marked Source Document

Answer 49

An authorized source of classification guidance used by a derivative classifier, from which information is extracted, paraphrased, restated, and/or generated in a new form for inclusion in another document.

Question 50

Revealed by

Answer 50

Applies when classified information has been paraphrased or restated and not taken word for word from an authorized source document, but the classification is deduced from interpretation or analysis.

Question 51

Safeguarding

Answer 51

Refers to using prescribed measures and controls to | protect classified information.

Question 52

Scheduled Declassification

Answer 52

``` A set date or event, determined by the Original Classification Authority (OCA), which will occur within 25 years from the date of original classification. ```

Question 53

Secret (S)

Answer 53

Information or material of which unauthorized disclosure could reasonably be expected to cause serious damage to national security that the Original Classification Authority is able to identify or describe.

Question 54

Security Classification Guidance

Answer 54

Any instruction or source that sets out the classification of a system, plan, program, mission, or project. Initially issued by an Original Classification Authority to document and disseminate classification decisions under their jurisdiction.

Question 55

Security Classification Guide (SCG)

Answer 55

Form of classification guidance issued by an OCA that identifies the elements of information regarding a specific subject that must be classified and establishes the level and duration of classification for each such element.

Question 56

Security Incidents

Answer 56

When someone fails to use proper security requirements for protecting classified information. There are four types, security violation, security infraction, spillage and unauthorized disclosure.

Question 57

Security Infraction

Answer 57

A failure to comply with security requirements which cannot reasonably be expected to, and does not result in the loss, suspected compromise or compromise of classified information.

Question 58

Security Manager

Answer 58

Manages and implements the DoD activity’s information security program on behalf of the activity head, to whom he or she shall have direct access.

Question 59

Security Violation

Answer 59

Occurs when there is a knowing, willful, or negligent action that could reasonably be expected to result in the loss, suspected compromise or compromise of classified information.

Question 60

Sensitive Compartmented Information (SCI)

Answer 60

Information that needs extra protection above a Top Secret security clearance level. SCI can come from various sources and has to have special handling, which involves controls to access.

Question 61

SF-312

Answer 61

Classified Information Nondisclosure Agreement

Question 62

SF-700

Answer 62

Security Container Information, used to maintain a record | for each container and to record the combination.

Question 63

SF-701

Answer 63

Activity Security Checklist, used to record checks of work | areas at the end of each working day.

Question 64

SF-702

Answer 64

Security Container Check Sheet, used to record the securing of vaults, rooms, and containers used for storing classified material.

Question 65

SF-703

Answer 65

Cover sheet for Top Secret material

Question 66

SF-704

Answer 66

Cover sheet for Secret material

Question 67

SF-705

Answer 67

Cover sheet for Confidential material

Question 68

Special Access Program (SAP)

Answer 68

A program established for a specific class of classified information that imposes safeguarding and access requirements that exceed those normally required for information at the same classification level.

Question 69

Spillage

Answer 69

Occurs when classified data is introduced on an information system not approved for that level of information.

Question 70

Systematic Declassification

Answer 70

Review of classified information that has been exempted | from automatic declassification.

Question 71

Top Secret (TS)

Answer 71

Information or material of which unauthorized disclosure could reasonably be expected to cause exceptionally grave damage to national security that the Original Classification Authority is able to identify or describe.

Question 72

Transmission

Answer 72

The sending of information from one place to another by audio, microwave, laser, or other non-connective methods, as well as by cable, wire, or other connective medium. Transmission also includes movement involving the actual transfer of custody and responsibility for a document or other classified material from one authorized addressee to another.

Question 73

Unauthorized Disclosure

Answer 73

A communication or physical transfer of classified | information to an unauthorized recipient.

Question 74

Under Secretary of Defense for Intelligence (USD(I)

Answer 74

Provides implementation guidance for the Information | Security Program within the DoD.

Question 75

Waivers

Answer 75

Temporary exclusions or deviations put in place when classified information cannot be safeguarded to the standards or requirements specified in DoDM 5200.01.