UFC 4-021-02NF
27 September 2006
change 1, 23 October 2006
9-6.7
unprotected communication lines that are in close proximity to electrical power wiring,
radio frequency sources, large electric motors, generators, induction heaters, power
transformers, welding equipment, and electronic ballasts. Protection from EMI includes
avoiding the sources of the interference by physical separation or shielding wire lines by
means of specialty wiring (coaxial, twisted shielded (foil) pairs, and metal sheathed
cables), and metallic conduit systems.
9-6.8
Tamper Protection. Tamper protection for ESS can be physical protection,
line supervision, encryption, and/or tamper alarming of enclosures and components. All
intrusion detection, access control, assessment systems, and their associated data
transmission media must be protected commensurate with the classification of the asset
being protected. All intrusion detection sensors and access control readers must have
tamper resistant enclosures, and integral tamper protection switches. All enclosures,
cabinets, housings, and boxes, having hinged doors or removable covers that contain
processors or connections must have tamper protection switches. All tamper alarm
signals must be monitored continuously whether the system is in the access or secure
mode of operation.
9-6.8.1 Signal and DTM Supervision. Line supervision is a term used to describe
the various techniques that are designed to detect or inhibit manipulation of
communication networks. All signal and DTM lines must incorporate some level of line
supervision. Line supervision for ESS must detect and annunciate communication
interruptions or compromised communications between field devices and the associated
CPU (or PCU). Field device signals must be supervised by monitoring the circuit and
initiate an alarm in response to opening, closing, shorting, or grounding of the signal. All
DTM must be supervised by the appropriate level of encryption and must initiate an
alarm upon any manipulation or disruption of the signal.
9-6.8.2 Encryption. Encryption is where the transmission of the signal is supervised
by employing a data-encryption standard that applies a specific algorithm to alter the
appearance of the data. For high security areas (Level Two and Three Restricted
Areas), AA&E and controlled access areas that process Secret or above classified
material, the encryption must be a 128-bit format, which complies with the National
Institute for Standards and Technology (NIST), Federal Information Processing
Standards (FIPS) Publication 140-2. Systems protecting all other assets must meet UL
1076 Class AA line security standards.
9-6.8.3 Physical Protection of ESS Raceway and Enclosures. Interior and exterior
ESS should be physically protected as described below.
9-6.8.4 Physical Protection of Exterior ESS. Physically protect exterior ESS. All
exterior intrusion detection sensors and access control readers must have tamper
resistant enclosures and integral tamper protection switches. All enclosures, cabinets,
housings, boxes, and fittings having hinged doors or removable covers that are
protected by employed sensors must be locked, welded, brazed, or secured with tamper
resistant security fasteners and be tamper-alarmed. Route exterior ESS sensor
123
Previous Page
