SFPC Flashcards: Classification Terms

Questions and Answers

What is Derivative Classification?

Incorporating, paraphrasing, restating, or generating in new form any information that is already classified.

What does Extracting refer to?

Information taken directly from an existing classified source and stated verbatim in a new or different document.

What is a Security Classification Guide (SCG)?

A collection of precise, comprehensive guidance about specific program, system, operation, or weapon system elements of information to be classified.

What does Generating mean in information classification?

Information taken from an existing classified source and generated into another form or medium, such as a video, DVD, or CD.

What does 'Contained in' mean?

When derivative classifiers incorporate classified information from existing content into a new document, and no additional interpretation or analysis is needed to deduce the classification of that information.

What is Classification by compilation?

New material may aggregate, or bring together, pieces of information that are not individually classified, but when presented together they render new material classified.

What are Threats in the context of information security?

Compromise the confidentiality, integrity, or availability of information processed, stored, or transmitted by DOD systems.

What is Original Classification?

Initial decision about what information needs to be classified and protected because its disclosure could cause harm to national security.

What does 'Revealed by' mean?

A properly marked source document contains some Secret information. A new document does not contain the same information. However, the information in the new document will allow a reader to deduce the classified information.

What does Paraphrasing or restating involve?

Information taken from an existing classified document and re-worded in a new or different document.

What is a Spill or negligent discharge of Classified information?

When someone opens classified information on the NIPRNET.

What is DCII?

Houses records of DOD investigations into criminal, fraud & CI activity.

What does SII stand for?

Database used to record PSIs conducted by OPM & other authorization investigative agencies.

What is JPAS?

Used to record adjudicative actions and determinations.

What does JCAVS refer to?

Designed for DOD security managers and security officers used to update other users.

What is the definition of Risk in security?

A measure of peril, hazard or loss, which is incurred from a capable aggressor or the environment.

What does Threat mean?

The perceived imminence of intended aggression by a capable entity to harm a nation, a government or its instrumentalists such as Intel programs, operations, people, installations or facilities.

What is Vulnerability in security terms?

Situation or circumstance which left unchanged may result in the degradation of resources.

What does Capability mean?

Facilitating method to implement a course of action.

What is SF-703?

Cover sheet for top secret documents.

What does SF-704 refer to?

Cover sheet for secret documents.

What is SF-705?

Cover sheet for confidential documents.

What does SF-701 represent?

Activity security checklist.

What is SF-702?

Security container check sheet.

What does Violation mean?

Occurs when any knowing, willful, or negligent action that could reasonably be expected to result in an unauthorized disclosure of classified information.

What is an Infraction?

Security incident involving failure to comply with E.O. 13526.

What is Unauthorized Disclosure?

A communication or physical transfer of classified information to an unauthorized recipient.

What does Actual compromise refer to?

Unauthorized disclosure of classified information.

What is meant by Potential compromise?

The possibility of compromise could exist but it is not known with certainty.

What is an Initial orientation briefing?

Before any personnel are allowed access to any classified information, they must be briefed on various aspects of the information security program.

What are Indoctrination briefings?

Briefings provided to individuals who are authorized access to special types of classified information.

What are Debriefs?

When a cleared person no longer needs access to classified information, they will receive a debriefing.

What are Courier briefings?

Provided to cleared personnel who will be escorting, hand carrying, or serving as a courier for classified material.

What are NATO briefings?

Briefings are only provided to personnel who have a validated need to work with NATO classified information.

What are Foreign travel briefings?

Provided to personnel who will be traveling to foreign countries.

What are Attestation briefings?

For contractors who require indoctrination into SAP.

What is Physical Security?

Part of security concerned with active, as well as passive measures, designed to deter intruders, prevent unauthorized access and protect assets.

What does Security-in-depth entail?

Consists of layered security and complementary security controls sufficient to deter, detect, and document unauthorized entry and movement within the facility.

What is Point security?

Protecting a specific asset.

What does Area Security involve?

Protecting an entire area.

What is an Intrusion detection system (IDS)?

Purpose is to deter, detect, document, and deny or delay intrusion.

What does Access control system refer to?

Process to ensure that only authorized personnel are allowed into a designated area.

What is Glare Projection?

This method is intended to make the inside of a projected area difficult to see from outside the protected area.

What does Controlled Lighting aim to achieve?

This method is intended to limit the width of the lighted strip outside the perimeter of a protected area so as not to interfere with adjoining property, nearby highways, railroads, navigable waters, or airports.

What is Surface lighting?

This method is intended to display a silhouette of any person passing between the light source and the building or to show the contrast of a person inside the building.

What does Enclaving mean?

Designating islands of high security within a sea of moderate security.

Study Notes

Derivative Classification

• Defined as incorporating, paraphrasing, or generating classified information into a new form.

Extracting

• Involves taking information directly from a classified source and using it verbatim in a new document.

Security Classification Guide (SCG)

• A comprehensive guide outlining what specific information regarding programs or systems must be classified.

Generating

• Refers to transforming information from a classified source into a different medium, such as video or CD.

Contained In

• Derivative classifiers incorporate classified information into new documents without additional interpretation.

Classification by Compilation

• New material may combine unclassified pieces of information that, together, become classified.

Threats

• Factors that compromise the confidentiality, integrity, or availability of DOD information systems.

Original Classification

• The first decision made regarding information that must be classified due to potential harm to national security.

Revealed By

• A new document allows readers to infer classified information from its context, despite not containing it explicitly.

Paraphrasing or Restating

• Involves rewording classified information from an existing document in a new document.

Spill or Negligent Discharge of Classified Information

• Occurs when classified information is accessed on unsecure networks like NIPRNET.

DCII

• Database that maintains records of DOD investigations regarding criminal, fraud, and counterintelligence activities.

SII

• Database for recording personnel security investigations conducted by OPM and other agencies.

JPAS

• System used to document adjudicative actions and decisions related to security clearances.

JCAVS

• Tool for DOD security managers, facilitating updates for users about security statuses.

Risk

• Measure of potential loss or peril due to threats or environmental hazards.

Threat

• Perceived imminent intent from an entity to harm a nation or its security programs.

Vulnerability

• Situations that, if unchanged, may weaken resource security and effectiveness.

Capability

• Method or means to carry out a specific course of action.

SF-703

• Cover sheet designated for top secret documents.

SF-704

• Cover sheet assigned to secret documents.

SF-705

• Cover sheet used for confidential documents.

SF-701

• Checklist for ensuring activity security.

SF-702

• Security container check sheet for verifying secure storage measures.

Violation

• Occurs due to any willful or negligent act leading to unauthorized disclosure of classified information.

Infraction

• Security incident involving non-compliance with Executive Order 13526.

Unauthorized Disclosure

• Communication of classified information to individuals without appropriate clearance.

Actual Compromise

• Unauthorized release of classified information.

Potential Compromise

• Situations where unauthorized disclosure might occur but is uncertain.

Initial Orientation Briefing

• Required briefing for personnel before gaining access to classified information.

Indoctrination Briefings

• Briefings for individuals authorized to access specialized classified information.

Debriefs

• Process of officially informing personnel when they no longer need access to classified information.

Courier Briefings

• Information sessions for personnel tasked with transporting classified materials.

NATO Briefings

• Provided to personnel with verified needs to access NATO classified information.

Foreign Travel Briefings

• Counseling for personnel traveling to foreign countries on handling classified information.

Attestation Briefings

• Briefings required for contractors needing access to Sensitive Access Programs (SAP).

Physical Security

• Measures implemented to deter unauthorized access and protect classified assets.

Security-in-Depth

• Multi-tiered security strategy that aims to detect and document unauthorized access.

Point Security

• Protective measures focused on safeguarding specific assets.

Area Security

• Strategies aimed at securing an entire geographical area.

Intrusion Detection System (IDS)

• System designed to detect, document, and delay unauthorized entry.

Access Control System

• Process ensuring only authorized personnel can access designated areas.

Glare Projection

• Technique to obscure visibility of interior areas from outside by limiting visibility through projection.

Controlled Lighting

• Strategy to manage lighting outside a secured area to minimize interference with surrounding properties.

Surface Lighting

• Method to illuminate areas for visibility and detection of movement around effectively.

Enclaving

• Establishing high-security zones within broader areas of moderate security.

Description

Test your knowledge on key terms related to derivative classification, extracting information, and security classification guides. These flashcards are essential for anyone working in security and information classification. Perfect for students or professionals in the field.