Department Of Defense MANUAL - DODIG
Department of DefenseMANUALNUMBER 5200.01, Volume 3February 24, 2012Incorporating Change 2, March 19, 2013USD(I)SUBJECT:DoD Information Security Program: Protection of Classified InformationReferences: See Enclosure 11. PURPOSEa. Manual. This Manual is composed of several volumes, each containing its own purpose.The purpose of the overall Manual, as authorized by DoD Directive (DoDD) 5143.01 (Reference(a)) and DoD Instruction (DoDI) 5200.01 (Reference (b)), is to reissue DoD 5200.1-R(Reference (c)) as a DoD Manual to implement policy, assign responsibilities, and provideprocedures for the designation, marking, protection, and dissemination of controlled unclassifiedinformation (CUI) and classified information, including information categorized as collateral,sensitive compartmented information (SCI), and Special Access Program (SAP). This guidanceis developed in accordance with Reference (b), Executive Order (E.O.) 13526, E.O. 13556, andpart 2001 of title 32, Code of Federal Regulations (CFR) (References (d), (e), and (f)). Thiscombined guidance is known as the DoD Information Security Program.b. Volume. This Volume:(1) Provides guidance for safeguarding, storage, destruction, transmission, andtransportation of classified information.(2) Identifies security education and training requirements and processes for handling ofsecurity violations and compromise of classified information.(3) Addresses information technology (IT) issues of which the security manager must beaware.(4) Incorporates and cancels Assistant Secretary of Defense for Command, Control,Communications, and Intelligence Memorandums (References (g) and (h)).2. APPLICABILITY. This Volume:
DoDM 5200.01-V3, February 24, 2012a. Applies to OSD, the Military Departments, the Office of the Chairman of the Joint Chiefsof Staff and the Joint Staff, the Combatant Commands, the Office of the Inspector General of theDepartment of Defense, the Defense Agencies, the DoD Field Activities, and all otherorganizational entities within the Department of Defense (hereinafter referred to collectively asthe “DoD Components”).b. Does not alter existing authorities and responsibilities of the Director of NationalIntelligence (DNI) or of the heads of elements of the Intelligence Community pursuant topolicies issued by the DNI. Consistent with Reference (b), SCI shall be safeguarded inaccordance with the policies and procedures issued by the DNI, as implemented by DoD5105.21-M-1 (Reference (i)) and other applicable guidance.3. DEFINITIONS. See Glossary.4. POLICY. It is DoD policy, in accordance with Reference (b), to:a. Identify and protect national security information and CUI in accordance with nationallevel policy issuances.b. Promote information sharing, facilitate judicious use of resources, and simplifymanagement through implementation of uniform and standardized processes.c. Employ, maintain and enforce standards for safeguarding, storing, destroying,transmitting, and transporting classified information.d. Actively promote and implement security education and training throughout theDepartment of Defense.e. Mitigate the adverse effects of unauthorized access to classified information byinvestigating and acting upon reports of security violations and compromises of classifiedinformation.5. RESPONSIBILITIES. See Enclosure 2 of Volume 1.6. PROCEDURES. See Enclosures 2 through 7.7. INFORMATION COLLECTION REQUIREMENTS. All inspections, investigations,notifications, and audits required by this Volume are exempt from licensing according toparagraphs C4.4.1, C4.4.2, C4.4.7 and C4.4.8 of DoD 8910.1-M (Reference (j)).Change 2, 03/19/20132
DoDM 5200.01-V3, February 24, 20128. RELEASABILITY. UNLIMITED. This Volume is approved for public release and isavailable on the Internet from the DoD Issuances Website at http://www.dtic.mil/whs/directives.9. EFFECTIVE DATE. This Volume:a. Is effective February 24, 2012.b. Must be reissued, cancelled, or certified current within 5 years of its publication inaccordance with DoD Instruction 5025.01 (Reference (ck)). If not, it will expire effectiveFebruary 24, 2022 and be removed from the DoD Issuances Website.Enclosures1. References2. Safeguarding3. Storage and Destruction4. Transmission and Transportation5. Security Education and Training6. Security Incidents Involving Classified Information7. IT Issues for the Security ManagerGlossaryChange 2, 03/19/20133
DoDM 5200.01-V3, February 24, 2012TABLE OF CONTENTSENCLOSURE 1: REFERENCES .9ENCLOSURE 2: SAFEGUARDING .14CONTROL MEASURES .14PERSONAL RESPONSIBILITY FOR SAFEGUARDING .14ACCESS TO CLASSIFIED INFORMATION .14DETERMINING NEED FOR ACCESS .14EMERGENCY AUTHORITY .14ACCESS BY INDIVIDUALS OUTSIDE THE EXECUTIVE BRANCH .15Congress.16Government Printing Office (GPO) .16Representatives of the Government Accountability Office (GAO) .16Historical Researchers .16Presidential or Vice Presidential Appointees and Designees .18Use of Classified Information in Litigation .18Special Cases .18VISITS .18PROTECTION WHEN REMOVED FROM STORAGE .19END OF DAY SECURITY CHECKS .19EMERGENCY PLANS .19USE OF SECURE COMMUNICATIONS .20REMOVAL OF CLASSIFIED INFORMATION FOR WORK AT HOME .20Top Secret .20Secret and Confidential .20Residential Storage Equipment .20Classified IT Systems .20Foreign Country Restriction .20WORKING PAPERS.21EQUIPMENT USED FOR PROCESSING CLASSIFIED INFORMATION .21REPRODUCTION OF CLASSIFIED MATERIAL .22CLASSIFIED MEETINGS AND CONFERENCES.23SAFEGUARDING FGI .26North Atlantic Treaty Organization (NATO) Information .26Other FGI .26ALTERNATIVE COMPENSATORY CONTROL MEASURES (ACCM) .29DoD Proponents for ACCM .29ACCM Approval.29Guidance on ACCM Use .29Prohibited Security Measures .30Prohibited Uses of ACCM .30Documentation .31Annual Reports of ACCM Use .31Change 2, 03/19/20134CONTENT
DoDM 5200.01-V3, February 24, 2012Sharing ACCM-Protected Information .31Contractor Access to ACCM .32Program Maintenance .32Safeguarding ACCM Information .32Security Incidents.33ACCM Termination .34Transitioning an ACCM to a SAP .34ENCLOSURE 3: STORAGE AND DESTRUCTION .35GENERAL REQUIREMENTS .35LOCK SPECIFICATIONS .35STORAGE OF CLASSIFIED INFORMATION BY LEVEL OF CLASSIFICATION.35Top Secret .35Secret.36Confidential.37RISK ASSESSMENT .37U.S. CLASSIFIED INFORMATION LOCATED IN FOREIGN COUNTRIES .37SPECIALIZED STORAGE .38Military Platforms .38IT Equipment .38Map and Plan File Cabinets .38Modular Vaults .38Bulky Material .38PROCURING NEW STORAGE EQUIPMENT .39SECURITY CONTAINER LABELS .39EXTERNAL MARKINGS ON CONTAINERS .39SECURITY CONTAINER INFORMATION .39COMBINATIONS TO CONTAINERS, VAULTS AND SECURE ROOMS .40Protecting and Storing Combinations .40Changing Combinations.40ENTRANCES TO OPEN STORAGE AREAS FOR CLASSIFIED INFORMATION .41INSPECTION OF STORAGE CONTAINERS PRIOR TO REMOVAL, REPAIR, ETC. .41NEUTRALIZATION AND REPAIR PROCEDURES .41STORAGE OF FGI.41RETENTION OF CLASSIFIED INFORMATION .42DESTRUCTION OF CLASSIFIED INFORMATION .42TECHNICAL GUIDANCE ON DESTRUCTION METHODS .43Crosscut Shredders.43Pulverizers and Disintegrators .44Pulping .44DESTRUCTION PROCEDURES .44APPENDIX:PHYSICAL SECURITY STANDARDS .45Change 2, 03/19/20135CONTENT
DoDM 5200.01-V3, February 24, 2012ENCLOSURE 4: TRANSMISSION AND TRANSPORTATION .53TRANSMISSION AND TRANSPORTATION PROCEDURES.53DISSEMINATION OUTSIDE THE DEPARTMENT OF DEFENSE .53TRANSMISSION OF TOP SECRET INFORMATION .54TRANSMISSION OF SECRET INFORMATION .55TRANSMISSION OF CONFIDENTIAL INFORMATION.57TRANSMISSION OF CLASSIFIED INFORMATION AND MATERIAL TO FOREIGNGOVERNMENTS .57SECURITY REQUIREMENTS FOR TRANSFERS OF DEFENSE ARTICLES TOAUSTRALIA AND THE UNITED KINGDOM WITHOUT AN EXPORT LICENSEOR OTHER WRITTEN AUTHORIZATION .58Background .58Applicability .58Marking .59Transfer .60USE OF SECURE COMMUNICATIONS FOR TRANSMISSION OF CLASSIFIEDINFORMATION .60Computer-To-Computer Transmission .60Facsimile (Fax) Transmission .61Telephone.61SHIPMENT OF BULK CLASSIFIED MATERIAL AS FREIGHT .61PREPARATION OF MATERIAL FOR SHIPMENT .61USE OF BRIEFCASES OR ZIPPERED POUCHES FOR HAND-CARRYINGCLASSIFIED MATERIAL .62ESCORT, COURIER, OR HAND-CARRY OF CLASSIFIED MATERIAL .63Authority .63Packaging Requirements .64Responsibilities .64Customs, Police and Immigration .64Disclosure Authorization .65ESCORT, COURIER, OR HAND-CARRY AUTHORIZATION.65HAND-CARRYING OR ESCORTING CLASSIFIED INFORMATION ONCOMMERCIAL AIRCRAFT .66APPENDIX:TRANSFER OF CLASSIFIED INFORMATION OR MATERIAL TOFOREIGN GOVERNMENTS .68ENCLOSURE 5: SECURITY EDUCATION AND TRAINING .75REQUIREMENT .75SECURITY EDUCATION AND TRAINING RESOURCES.75INITIAL ORIENTATION .75SPECIAL TRAINING REQUIREMENTS .78OCA TRAINING .79Change 2, 03/19/20136CONTENT
DoDM 5200.01-V3, February 24, 2012DECLASSIFICATION AUTHORITY TRAINING .82ANNUAL REFRESHER TRAINING .82CONTINUING SECURITY EDUCATION AND TRAINING.83TERMINATION BRIEFINGS .84MANAGEMENT AND OVERSIGHT TRAINING .84PROGRAM OVERSIGHT .85ENCLOSURE 6: SECURITY INCIDENTS INVOLVING CLASSIFIED INFORMATION .86INTRODUCTION .86CONSEQUENCES OF COMPROMISE .87REPORTING AND NOTIFICATIONS .87CLASSIFICATION OF REPORTS .89SPECIAL CIRCUMSTANCES .89Security Incidents Involving Deliberate Compromise, a Foreign Intelligence Serviceor a Terrorist Organization.89Security Incidents Involving Apparent Violations of Criminal Law .90Security Incidents Involving COMSEC or Cryptologic Information .
Intelligence (DNI) or of the heads of elements of the Intelligence Community pursuant to policies issued by the DNI. Consistent with Reference (b), SCI shall be safeguarded in accordance with the policies and procedures issued by the DNI, as implemented by DoD 5105.21-M-1 (Reference (i
Defense Advanced Research Projects Agency. Defense Commissary Agency. Defense Contract Audit Agency. Defense Contract Management Agency * Defense Finance and Accounting Service. Defense Health Agency * Defense Information Systems Agency * Defense Intelligence Agency * Defense Legal Services Agency. Defense Logistics Agency * Defense POW/MIA .
Feb 26, 2018 · DODIG-2018-079 (Project No. D2016-D000XD-0201.000) i Results in Brief Followup Audit: Transfer of Service Treatment Records to the Department of Veterans Affairs Objective We determined whether the DoD had implemented recommendations in DoD OIG Report No. DODIG-2014-097
DODIG-2016-004 (D2015-D000RE-0101.000) i. Results in Brief. Army Needs to Improve Contract Oversight for the Logistics Civil Augmentation Program's Task Orders. Visit us at www.dodig.mil. Objective. Our objective was to determine whether . the Army was providing sufficient contract oversight for Logistics Civil Augmentation
AND MATERIEL READINESS DIRECTOR, DEFENSE LOGISTICS AGENCY SUBJECT: Management of Items in the Defense Logistics Agency’s Long-Term Storage Needs Improvement (Report No. DODIG-2016-036) We are providing this report for your information and use. The Defense Logistics Agency
(Report No. DODIG-2015-011) This final report is provided for information and use. We evaluated the Defense Criminal Investigative Organizations’ (DCIOs) process for reporting accurate criminal incident data to the Defense Incident-Based Reporting System (DIBRS) in accordance with DoD Directive 7730.47 and
Research, Development, Test and Evaluation, Defense-Wide Defense Advanced Research Projects Agency Volume 1 Missile Defense Agency Volume 2 . Defense Contract Management Agency Volume 5 Defense Threat Reduction Agency Volume 5 The Joint Staff Volume 5 Defense Information Systems Agency Volume 5 Defense Technical Information Center Volume 5 .
DEPARTMENT OF DEFENSE Defense Acquisition Regulations System 48 CFR Parts 204, 212, 213, and 252 [Docket DARS-2019-0063] RIN 0750-AJ84 Defense Federal Acquisition Regulation Supplement: Covered Defense Telecommunications Equipment or Services (DFARS Case 2018-D022) AGENCY: Defense Acquisition Regulati
SUBJECT: Audit of Physical Security Controls at Department of Defense Medical Treatment Facilities (Report No. DODIG-2020-078) This final report provides the results of the DoD Office of Inspector General’s audit. We previously provided copies of the draft report and requested written comments on the recommendations.
