UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Vault/Secure Room Storage Standards - IDS Access/Secure Control Units Must be Located within the Secure Room Space


Overview

Finding ID Version Rule ID IA Controls Severity
V-31292 IS-02.01.12 SV-41563r2_rule PEPF-2 PESS-1 High
Description
Failure to ensure that IDS Access and Secure Control Units used to activate and deactivate alarms (primarily motion detectors) within vaults or secure rooms protecting SIPRNet assets are not located within the confines of the vault or secure room near the primary ingress/egress door could result in the observation of the access/secure code by an unauthorized person. Further the control units would be more exposed with a greater possibility of tampering outside the more highly protected space of a secure room/collateral classified open storage area. This could result in the undetected breach of secure room space and the loss or compromise of classified information or materials.
STIG Date
Traditional Security 2013-07-11

Details

Check Text ( C-40054r7_chk )
Requirement Explanation:

Alarm sensor control units must be located inside the secure area and should be located near the primary entrance for ease of accessing and securing alarm sensors in the space.

Only assigned personnel with proper security clearances and need-to-know should initiate changes in access and secure status.

Check:

Check to ensure that no capability exists to allow changing the access/secure status of the IDS from a location outside the protected area (secure room or vault).

TACTICAL ENVIRONMENT: This check is applicable where Vaults/Secure Rooms are used to protect classified materials or systems in a tactical environment. The only exception will be for urgent (short term) tactical operations or other contingency situations where fixed facilities and equipment are not yet present or incapable of being used.
Fix Text (F-35211r4_fix)
No capability must exist to allow for changing the access/secure status of the IDS from a location outside the protected area (secure room or vault). Alarm sensor control units must be located inside the secure area and should be located near the primary entrance for ease of accessing and securing alarm sensors in the space. Only assigned personnel with proper security clearances and need-to-know should initiate changes in access and secure status.