NAP-14.2B, Baseline Cyber Security Requirements
Establish requirements and responsibilities for cyber security incident preparation, prevention, warnings, reporting, and recovering from cyber security incidents involving National Nuclear Security Administration (NNSA) information systems. Establish requirements for the use of personally owned or Government owned Personal Electronic Devices (PEDs) and portable computers, hereafter-called portable computing devices, in the NNSA and all organizations under its cognizance. Establish requirements for the generation, protection, and use of passwords to support authentication when accessing classified and unclassified NNSA information systems, applications, and resources. Establish requirements and guidance for standardized procedures and responsibilities for authorizing and communicating Information Conditions (INFOCONs) throughout the NNSA. Establish minimum security controls that are to be enforced by NNSA sites using wireless technologies Establish minimum requirements for remote access to NNSA information systems, applications, and resources.
NAP 14.2B.pdf -- PDF Document, 354 KB
ID: | NAP-14.2B |
Type: | NNSA Policy (NAP) |
SLM Office: | Office of Chief Information Officer |
OPI: | Office of Chief Information Officer |
Status: | Archive |
Issue Date: | Sep 27, 2006 |
CRD: | No |
DNFSB: | No |
CTA: | No |
Misc. Comments: |
- NAP-14.1C, NNSA Baseline Cyber Security Program on May 02, 2008
- NAP-14.2C, NNSA Certification and Accreditation (C&A) Process for Information Systems on May 05, 2008