secret - (SPAWAR) is - The US Navy
secret - (SPAWAR) is - The US Navy secret - (SPAWAR) is - The US Navy
SBCtJAVIMS!l5510.36 17MMl 1999 have temper resistant enclosure and be securely fastened to the wall or other permanent etmcture. Control panels located within a controlled area shall reguire only a minimal degree of physical security protection sufficient to preclude unauthorized access to the mechanism. (3) Keypad devices ehall be designed or installed in such a manner that an unauthorized person in the immediate vicinity camot observe the selection of input numbers. (4) Systems that use transmission linee to carry access authorizations, pereonal identification data, or verification data between devices or eguipment located outeide the controlled area shall have line supervision. (5) Electric etrikeo used In access control eystems shall be haavy duty, industrial grade. e. Access to records and information concerning encoded identification data and PIN8 shall be restricted. Access to identification or authorizing data, operating syateni software or any identifying data associated with the entry control system shall be limited to the fewest number of personnel as possible. Such data or software ehall be kept eecure when unattended. f. Records shall be maintained reflecting active assignment of identification badge/card, PIN, level of access, and similar syetem-related recorde. Records concerning pereonnel removed from the syetem shall be retained for 90 days. Records of entries shall be retained for at least 90 days or until investigation of system violations and incidents have been investigated, resolved, and recorded. 9. Personnel entering or leaving an area ehall be required to secure the entrance or exit point. Authorized personnel who permit another individual to enter the area are responsible for confirmation of need-to-know and access. The Heads of DoD components may approve the use of standardized ASCS which meet the following criteria: (1) For a Lavel 1 key card eystem, the AECS must provide a .95 probability of granting accese to an authorized user providing the proper identifying information within three attempts. In addition, the system must ensure an unauthorized user is granted accase with lese than 0.05 probability after three attempts to gain entry. SECNAVINST 5510.36 1OD-7
EECMAVIMBT 5510.36 17 MAR199! (2) For a Level 2 key card and PIN system, the AECS must provids a 0.97 probability of granting accese to an authorized user providing the proper identifying information within three attempts. In addition, the system must eneurs an unauthorized user is granted access with less than 0.010 probability after three attampte to gain entry have been made. (3) For a Level 3 key card and PIN and biometrics identifier eysten, the AECS must provide a 0.97 probability of granting access to an unauthorized user providing the proper identifying information within three attempts. In addition, the system mat eneure an unauthorized user is granted accees vith less than 0.005 probability after three attempts to gain entry have been made. ~ectrio. ?IechanicaX. or Eleatrameohaniaal ~cceso control. &: Electric, mechanical, or electromechanical devicee vhich meet the criteria stated below may be used to control admittance to secure areas during duty hours if the entrance is under visual control. These devices are also acceptable to control access to compartmented areas within a secure area. Accese control devicee must be installed in the folloving manner: (1) The electronic control panel containing the mechanical mechaniem by vhich the combination ie set ie to be located ineide the area. The control panel (located within the area) vill reguire only minimal degree of physical eecurity designed to preclude unauthorized access to the mechanism. (2) The control panel shall be installed in such a manner, or have a shielding device mounted, so that an unauthorized person in the immediate vicinity cannot observe the setting or changing of the combination. (3) The selection and setting of the combination shall be accomplished by an individual cleared at the same level as the highest level of classified information controlled vithin. (4) Electrical components, wiring included, or mechanical linke (cables, rods, etc.) should be accessible only from inside the area, or, if they traveree an uncontrolled area they should be secured vithin protecting covering to preclude surreptitious manipulation of components. 1OD-O SECNAVIllST 5510.36
- Page 157 and 158: BECNAVIMST 5510.36 17 MA!l1!99 (f)
- Page 159 and 160: . Used in whole or in part by the U
- Page 161 and 162: 9-1 BASIC POLICY’ CHAPTER 9 TRANS
- Page 163 and 164: SEQIA~MT 5510.36 17 MNl19i9 of ship
- Page 165 and 166: SECMAVIHST 5510.36 ~7 MNl1999 2. NA
- Page 167 and 168: 8EC!NAVIH8T 5510.36 19 M41 1999 2.
- Page 169 and 170: 9-11 GKMERAL PROVISIONS FOR E8CORT1
- Page 171 and 172: i. The courier shall carry a copy o
- Page 173 and 174: SECNAVINST 5510.36 17 MMl1999 (4) T
- Page 175 and 176: E13CMAV12JBTSS10.36 19MAn 1999 (m)
- Page 177 and 178: S13CNAV13iST5510.36 17MNl 1999 U.S.
- Page 179 and 180: SECNAV13JST S51O.36 I7 Mm 1999 Othe
- Page 181 and 182: SE.CMAVIMST S51O.S6 17M1R 1999 (4)
- Page 183 and 184: 10-1 EASIC POLICY CEAPTlm 10 STORAG
- Page 185 and 186: SECNAV2NST 5510.36 fV MIR !999 (b)
- Page 187 and 188: BECHAVINBT 5510.36 I? Mill!999 2. T
- Page 189 and 190: BEC2ZAV2NST 5510.36 !7Mh8 1000 when
- Page 191 and 192: SECNAVIMST 5510.36 !7 Mflfl 1999 ma
- Page 193 and 194: SEQ0iV23U3T 5510.36 17MNl 1999 4. C
- Page 195 and 196: SE~VIM8T 5510.36 19Mm 1999 2. Destr
- Page 197 and 198: EXHIBIT 10A 0ECNAV123BT S51O.36 t 7
- Page 199 and 200: EXEIBIT 10B PRIORITY rollREPLAmMENT
- Page 201 and 202: SECNAVINST 5510.36 17 MMl1999 NAINT
- Page 203 and 204: SECMAV131ST 5510.36 17 MM 19!0 sign
- Page 205 and 206: SBC!Z?AVIMST 5510.36 17 MllRI!W9 (2
- Page 207: SFK!NAVIMST 5510.36 17 Mlfl1999 (2)
- Page 211 and 212: SECNAVINST 5510.36 I7MAR1999 beyond
- Page 213 and 214: 8ECNAV21i8T 5510.36 17MAII1999 d. C
- Page 215 and 216: SECMJ!VIIJST5S10.36 I7MAR1999 k. Re
- Page 217 and 218: SECNAV2NST 5510.36 I1MAR1999 3. The
- Page 219 and 220: SECNAV1tJST 5510.36 17MAR 1999 docu
- Page 221 and 222: BECNAVIX?BT 5S10.36 I1MAR1998 (a) (
- Page 223 and 224: sECNAVINST 5510.36 J7M! 1999 1. Puu
- Page 225 and 226: SECNAV137ST 5S10.36 I?w 1999 12-3 P
- Page 227 and 228: SBCXAVIMST 5510.36 I1MM 1999 4. Rep
- Page 229 and 230: SIWNAVIIWT 5510.36 17 MAR1999 12-1%
- Page 231 and 232: BKNAVIHBT 5510.36 IIMfl 1999 b. The
- Page 233 and 234: SECNAVINST 5510.36 I?W 1999 4. The
- Page 235 and 236: BXRIBIT 12A SAMPLE PI LETTER VORMAT
- Page 237 and 238: Subj : PRELIMINARY INQUIRY (PI) SEC
- Page 239 and 240: BECNAVIZJBT 5510.36 11m 1999 SW: PR
- Page 241 and 242: E~IBIT 12D SAKPLB JAGMAN INVBSTIQAT
- Page 243 and 244: Subj : JAGMAN INVESTIGATION FORMAT
- Page 245 and 246: APPENDIX A DSPIM2TIONS AND ASBABV2A
- Page 247 and 248: 6ECNAV12?8T 5510.36 I?U199E CogIIiS
- Page 249 and 250: SEC2?AV2NST 5510.36 17MIIR[999 Cont
- Page 251 and 252: BECNAV2MT 5510.36 17MM 199$ Downgra
- Page 253 and 254: 8ECNAVIN8T 5510.36 I1 MM 1999 Infor
- Page 255 and 256: S8CWAV31iST 5510.36 11~ [ggg Elaval
- Page 257 and 258: —— SBCNAVIliST 5510.36 Ilm 1999
SBCtJAVIMS!l5510.36<br />
17MMl 1999<br />
have temper res<strong>is</strong>tant enclosure and be securely fastened to the<br />
wall or other permanent etmcture. Control panels located within<br />
a controlled area shall reguire only a minimal degree of physical<br />
security protection sufficient to preclude unauthorized access to<br />
the mechan<strong>is</strong>m.<br />
(3) Keypad devices ehall be designed or installed in such<br />
a manner that an unauthorized person in the immediate vicinity<br />
camot observe the selection of input numbers.<br />
(4) Systems that use transm<strong>is</strong>sion linee to carry access<br />
authorizations, pereonal identification data, or verification<br />
data between devices or eguipment located outeide the controlled<br />
area shall have line superv<strong>is</strong>ion.<br />
(5) Electric etrikeo used In access control eystems shall<br />
be haavy duty, industrial grade.<br />
e. Access to records and information concerning encoded<br />
identification data and PIN8 shall be restricted. Access to<br />
identification or authorizing data, operating syateni software or<br />
any identifying data associated with the entry control system<br />
shall be limited to the fewest number of personnel as possible.<br />
Such data or software ehall be kept eecure when unattended.<br />
f. Records shall be maintained reflecting active assignment<br />
of identification badge/card, PIN, level of access, and similar<br />
syetem-related recorde. Records concerning pereonnel removed<br />
from the syetem shall be retained for 90 days. Records of<br />
entries shall be retained for at least 90 days or until<br />
investigation of system violations and incidents have been<br />
investigated, resolved, and recorded.<br />
9. Personnel entering or leaving an area ehall be required<br />
to secure the entrance or exit point. Authorized personnel who<br />
permit another individual to enter the area are responsible for<br />
confirmation of need-to-know and access. <strong>The</strong> Heads of DoD<br />
components may approve the use of standardized ASCS which meet<br />
the following criteria:<br />
(1) For a Lavel 1 key card eystem, the AECS must provide<br />
a .95 probability of granting accese to an authorized user<br />
providing the proper identifying information within three<br />
attempts. In addition, the system must ensure an unauthorized<br />
user <strong>is</strong> granted accase with lese than 0.05 probability after<br />
three attempts to gain entry.<br />
SECNAVINST 5510.36 1OD-7