Example: air traffic controller

NSTISSAM TEMPEST/2-95 - DPPS LLC

NSTISSAM TEMPEST/2-95 12 December 1995 NSTISS NATIONAL SECURITY TELECOMMUNICATIONS AND INFORMATION SYSTEMS SECURITY RED/BLACK INSTALLATION GUIDANCE FOR OFFICIAL USE ONLY [All pages marked FOR OFFICIAL USE ONLY] NSTISS NATIONAL SECURITY TELECOMMUNICATIONS AND INFORMATION SYSTEMS SECURITY NATIONAL MANAGERFOREWORD 1. National Security Telecommunications and Information Systems Security Advisory Memorandum ( NSTISSAM ) TEMPEST/2-95 , RED/BLACK Installation Guidance specifies RED/BLACK equipment/system installation guidance, provides an explanation of the tempest policy concept, and addresses RED/BLACK considerations for facilities wherein national security information is processed.

nstissam tempest/2-95 12 december 1995 € € € € nstiss national security telecommunications and information systems security € € € € red/black

Tags:

  Tempest, Nstissam tempest 2 95, Nstissam

Information

Domain:

Source:

Link to this page:

Please notify us if you found a problem with this document:

Other abuse

Transcription of NSTISSAM TEMPEST/2-95 - DPPS LLC

1 NSTISSAM TEMPEST/2-95 12 December 1995 NSTISS NATIONAL SECURITY TELECOMMUNICATIONS AND INFORMATION SYSTEMS SECURITY RED/BLACK INSTALLATION GUIDANCE FOR OFFICIAL USE ONLY [All pages marked FOR OFFICIAL USE ONLY] NSTISS NATIONAL SECURITY TELECOMMUNICATIONS AND INFORMATION SYSTEMS SECURITY NATIONAL MANAGERFOREWORD 1. National Security Telecommunications and Information Systems Security Advisory Memorandum ( NSTISSAM ) TEMPEST/2-95 , RED/BLACK Installation Guidance specifies RED/BLACK equipment/system installation guidance, provides an explanation of the tempest policy concept, and addresses RED/BLACK considerations for facilities wherein national security information is processed.

2 This publication supersedes National COMSEC Information Memorandum (NACSIM) 5203, dated 30 June 1982. However, Appendix K of NACSIM 5203 will remain in effect until NACSI 4009, Protected Distribution Systems, dated 30 December 1981, is superseded. NACSI 4009 is currently under revision. 2. tempest security is a function of the tempest characteristics of the processing equipment, the way the equipment is installed, the electromagnetic and physical characteristics of the facility, and the geographical environment where the facility is located. 3. The guidance identified herein will be considered by a Certified tempest Technical Authority (CTTA) as part of the potential solution for facilities, system, and equipment that have been identified as requiring tempest countermeasures.

3 Only those specific criteria identified by the CTTA will be implemented. 4. Representatives of the National Security Telecommunications and Information Systems Security Committee may obtain additional copies of this instruction from: Executive Secretariat National Security Telecommunications and Information Systems Security Committee National Security Agency Fort George G. Meade, MD 20755-6000 5. Government contractors are to contact their appropriate government agency or Contracting Officer Representative regarding distribution of this document. [Signature] J. M. McCONNELL Vice Admiral, Navy TABLE OF CONTENTS SECTION 1 - INTRODUCTION General Scope Content Revision Policy Application Comments and Recommendations References Government Documents and Publications Government Documents Non-Government Publications SECTION 2 - DEFINITIONS SECTION 3 - RED/BLACK INSTALLATION RECOMMENDATIONS General Installation Recommendations Use of Table 3-1 tempest Guidance RECOMMENDATION A RECOMMENDATION B RECOMMENDATION C RECOMMENDATION D RECOMMENDATION E RECOMMENDATION F RECOMMENDATION G RECOMMENDATION H RECOMMENDATION I SECTION 4 - GUIDANCE FOR tempest INTEGRITY General tempest Basics Generation of

4 CE CE Sources Functional Sources Incidental Sources RED/BLACK Basics Facility Considerations Physical Security Considerations Signal Cables Shielded Metallic Cables Cable Characteristics Shield Termination Optical Fiber Cables Applications of Optical Fiber Cable Systems Multifiber Cables Cable Strength Members or Shielding Signal Distribution Wireways Patching Equipment Distribution Equipment (Wire Closets) Protected Distribution Systems Signal Line Isolators and Filters Signal Isolation Assessing the Need for Signal Isolation Passive Signal Line Filters Lowpass Filters Analog Signal Line Filters Inductive-Capacitive (LC)

5 Signal Line Filters Digital Signal Line Filters Active Signal Line Filters Linear Filters Saturated Amplifiers Isolators Magnetic-coupled Isolators Acoustic-coupled Isolators Photon-coupled Isolators Signal Line Isolators Advantages of Photon-coupled Isolators Power Distribution The Power Requirement Power Conditioning/ Isolation Powerline Filters Isolation Transformers Uninterruptible Power Supplies and Power Regulators Solid-state UPS (SSUPS) Rotating UPS Grounding System Equipotential Plane Single Point Ground Fault Protection Ground Isolated Ground Administrative Support Equipment Telephone Systems tempest Protective Measures On-hook Security Paging, Intercom.

6 And Public Address Systems Alarm Systems Miscellaneous Fortuitous Conductors Radio Transmission or Reception Devices Commercial Television System Installation Other Considerations tempest Zoning Inspectable Space Facility Shielding tempest Suppressed Equipment SECTION 5 - SECURE VOICE SYSTEMS General Basis for Minimum Installation Techniques Installation Guidance General Multiple Terminal Installations Location High-risk Areas Security Guidance Terminals with Multiple Handsets Location of Equipment High-risk Areas STU-III Guidance SECTION 6 - SENSITIVE COMPARTMENTED INFORMATION General Routing of SCI Cables Termination Boxes Distribution Frame Patch Panels Multiplexers, Video and Audio Switches, and Other Multiple Circuit Equipment Access Points Cables Low-level Signaling Power and Signal Line Filtering Standard Service Features Telephone Lines RED/BLACK Separation Additional Requirements SECTION 7 - TRANSPORTABLE SYSTEMS IN A TACTICAL ENVIRONMENT 7.

7 1. General Modes of Operation Fixed Operation RED Cables Separation CTTA Review Field Deployed Vehicular Mounted Deploying Equipment Away from Transportables Physical Security SECTION 8 - AIRCRAFT 8. 1. General Aircraft Installations . Airborne Operations RED Cables Separation Grounding Ramp Operations Physical Security SECTION 9 - SHIPS General Shipboard Installations Underway Operations RED Cables Separation Shielded Cables RED Ground Cryptographic Equipment Ground Cable Distribution In Port Operations Physical Security Comment Form for NSTISSAM TEMPEST2/95 THIS PAGE IS INTENTIONALLY LEFT BLANK SECTION 1 INTRODUCTION General.

8 This section contains introductory and administrative information associated with this document. Scope. This document defines the guidance to consider during the design of facilities and for subsequent installation of equipment and systems that receive, transmit, manipulate, graph, store, archive, calculate, generate, print. or in any other manner process national security information. This guidance is part of the potential solution for facilities, systems and equipment identified as requiring tempest countermeasures. Content. The text includes a brief overview of the tempest national policy and provides RED/BLACK installation guidance that may be identified by the Certified tempest Technical Authority (CTTA) as part of the solution for systems and facilities that require the application of tempest countermeasures.

9 Revision. This document correlates to the previous issue (NACSIM 5203) in concept only. The content has been extensively changed and reorganized to reflect current policy considerations and emerging technology. Policy. The National Policy on the Control of Compromising Emanations (NSTISSP 300) and its implementing instructions. tempest Countermeasures for Facilities (NSTISSI 7000), and NONSTOP Countermeasures (NSTISSI 7001) establish the policy that certain systems and facilities that process national security information (NSI) must be reviewed by a CTTA. If such a review is required and the review determines that tempest countermeasures are required.

10 The CTTA will consider a variety of methods that can be applied to the system/facility to achieve tempest security. The RED/BLACK guidance contained in this document will be considered by the CTTA along with other measures ( tempest Zoning, tempest suppressed equipment and shielding) to determine the most cost-effective countermeasures to achieve tempest security. Only those RED/BLACK criteria specifically identified by the CTTA will be implemented. Application. The guidance contained herein, when specified by a CTTA, is applicable to Government departments, agencies and contractors. Comments and Recommendations. Revisions to this publication will be made as appropriate.


Related search queries