Classification Path |
The path for classification. You can click the hyperlinks to
open the security library, security class, or subclass. |
Name |
The automatically genearted name of the security
class. |
Type |
Type of security class: IP Control Class or Security Control
Class. |
Title |
The title of the security class. You can edit the title to
identify the security class. |
Description |
The detailed description of the security class. |
State |
The current lifecycle state of the security class: Inactive or
Active. |
Restrict Locations for
Exceptions |
TRUE=Yes FALSE=No. If TRUE, the restrictions of any
location security rules associated to the class will be applicable above the
authorization by any exceptions for that class. However, if the exception
granting access to a user already contains any location-specific restriction,
the location security rules associated to the class are not considered.
If FALSE, then authorization is directly by the exception with no check
of any location security rules on the class. In this case, any location-specific
restriction should be defined directly on the exception. For more
information, see Countries/Locations of the exceptions. |
Classification Indicator |
Displays for the Security Control Class.TRUE or FALSE to
indicate if items in the class are consided CLASSIFIED by the Government according
to EIA 836. |
IP Control Class or Security Control
Class Attributes |
Destruction Notice |
For Security Control Class. Destruction Notice typically
stamped on Documents according to the contracting Program Office. Default text is
"DESTRUCTION NOTICE - For classified documents, follow the procedures in DoD
5220.22-M, Industrial Security Manual, Section 11-19 or DoD 5200.I-R, Information
Security Program Regulation, Chapter IX. For unclassified, limited documents,
destroy by any method that will prevent disclosure of contents or reconstruction
of the document." |
US Data Rights Code |
For IP Control Class. Code for data rights assignment
according to EIA 836. |
Data Rights Expiration Date |
For IP Control Class. The date when the assigned data rights
expire. |
Data Rights Statement Text |
For IP Control Class. Statement to correspond with data
rights code. |
Process Access Classification |
TRUE = Yes, FALSE = No. If TRUE, then the authorization check
executes for the classified items according to the active security rules and
exceptions for the class. If FALSE, then the authorization check is not performed
for the related item with that value. This value will be FALSE on an item only if
all related classes for the item have the value set to FALSE. In practice, set the
value to FALSE only for a class where no rules are expected like NLR (No License
Required) in which business logic requires that classification must exist on an
item even when no authorization checks are needed. This value is defined by the
class owner and can be modified only by an IP Security Manager. |
Owner |
The user currently responsible for the security class. |
Originator |
The user who originally created the security class. |
Originated |
The creation date the security class. |
Policy |
The IP Security Class policy governs the Security Control
Class and the IP Control Class lifecycle. |