Talk:Classified Information

From Wikipedia, the free encyclopedia

Contents

[edit] Corporate classifications

Rather than jump in and edit again, I'll talk about the change I'm tempted to make: edit the term "uncleared" from the phrase about the Macintosh project, since Apple did not require background checks before letting people participate in the project. I was going to change it to say you had to be on the project to have access to the information, and that didn't involve "clearance" so much as an attribute of the group you worked with.

On the other hand, there was perhaps a tiny group of people outside the project who were granted access to information about it - this is "need to know" rather than "clearance" since access depended on a job's requirements (or Jobs' requirements, pardon the pun) and not on background checks. user:Cryptosmith Sept 19, '05

It's not unusual for the person in charge (perhaps Mr. Jobs) to hand pick the people who will have access, sometimes after a personal interview and a review of their personnel folder. So in that sense the person is pre-cleared. It's not like any engineer on the project who needs support from someone outside is allowed on their own say to let others in on the secret. But I agree with your original point that corporate systems are generally a pale shadow of government classification systems. --agr 04:15, 19 September 2005 (UTC)

[edit] tcsec

This page seems really incomplete without any reference to computing and the TCSEC (Trusted Computing System Evaluation Criteria) --- the old "Orange Book" and "Rainbow Series" standards.

However, I'm wont to add those myself (User:JimD The canonical site for TCSEC is: http://www.radium.ncsc.mil/tpep/process/faq-sect4.html (currently down? --- use Google cache?


[edit] request for info

How likely is it for a U.S. citizen to be rejected? What are the top reasons for rejection?

A: Likelihood or "probability" of being able to obtain a clearance is directly inversely proportional to behaviors that are discovered by the investigation that lead the organization investigating your clearance to believe you may be compromised or intimidated into breaching your clearance. For example, if you have affairs and cheat on your spouse, that would negatively influence the investigators... howevever, what would be worse would be to LIE about it and then get caught lying.

Security investigators understand that no one is perfect. The decision to grant a clearance below the Top-Secret level is essentially routine - a check of your credit history to ensure you are not delinquent/bankrupt and a check of employment and a few references. Top-Secret and/or access to highly specialized or sensitive information requires extensive investigations. They will talk with essentially everyone you know to attempt to get a picture of you. This information is used to get a sense of the loyalty you will demonstrate in keeping sensitive national security information secret.

In terms of the "top reasons" - I'd suggest that in looking at cases of denial, this seems to be the order:

a) Way too much debt. 99% of spies sell secrets for money. If you are in debt up to your eyeballs, and cannot manage the load, it is unlikely you can obtain a high-level clearance.

b) You're into kinky stuff and you lie about it. Okay - so you like to have sex with hookers in clubs - fine... but then you lied about it on your application. What this says to investigators is that "when push comes to shove - I'm going to cover my own ass - forget the government."

c) They cannot verify key information. I knew about a case of a guy who couldn't get a clearance because he essentially lived in a mud-hut in Africa for about five years. It was virtually impossible to confirm this - thus, no clearance. The reasoning I presume is that they couldn't know if he was telling the truth or a sleeper spy... thus, don't take the chance.

d) the "kinky" stuff you're into is waaaaaaay too kinky! Okay if you confess in your lifestyle polygraph that you like to have sex with cows and pigs while wearing your batman costume - the investigators may decide they'd rather not have you running around with the nuclear codes... Now if you're married and you and your wife like to play in leather - that's fine. I'd say after the Hansen case - where that guy was so over the top in terms of weirdo sexual stuff - that anyone who is getting a lifestyle poly is going to have to answer sex questions.

Active or inactive... what is the difference? When and how does one convert to the other?

A: Active means it is currently in effect. If you have a need for a clearance and your background check is successful - you get an active clearance. Inactive means you had a clearance but may no longer be in a position that required it - thus, your clearance was suspended. For example - you have a TS but no longer need it in your job - you might be TS inactive and just have a secret. Also, clearances must be reinvestigated to remain active - secret every 10, TS every 5. If you leave a job that required you to have a clearance - and it goes inactive - you have 5 years to "reactivate it" without having to go through the reclearance process. TS clearances I believe expire 2 years from date of inactivity.

In a job description, what do "SAR clearance will be required" and "Ability to obtain secret/SAR clearance required" mean?

A: SAR? Never heard of that. Lots of people use different words to describe essentially the same things - if I had to guess, its probably a TS/SCI or SAPS type clearance - special access program... so you get the clearance procto... everything you ever thought was private will be known to the government.

SAR means "special access required", i.e. a special access program clearance

Does "confidential/SCI" or "secret/SCI" exist? Maybe in theory but not in practice? If it does not exist (either way), then shouldn't "top secret/SCI" be listed above "top secret"?

A: First of all - SCI is not a caveat. SCI stands for sensitive compartmentalized information and it describes the type of information that is being classified. SCI is essentially intelligence or highly specialized program information. You are also confusing sensitivity (confidential, secret, TS) with caveats (NOFORN, LES, etc.) Does information at the confidential and secret levels of sensitivity that is SCI information exist? Yes.

TS/SCI clearances are not "Above" TS. TS clearances allow you access to collateral TS information. TS/SCI usually refers to intelligence or other sensitive special programs. SCI background investigations determine if you can have access to that information.

If you have clearance, to what degree can you discuss that fact? It can go on a resume, right?

A: The fact you have a clearance is not classified in an of itself. You can usually state (and you find yourself routinely stating) your highest clearance level and date of adjudication. For example, if you have a TS you can say - TS/SSBI Adjudicated 01/01/2001.

What you cannot and should not dois discuss WHY you have a clearance and what you work on. Your projects and their status are usually highly sensitive - discussing it is generally not a good idea in about 99.9% of cases. In general, most employers are just interested in that the ink on your clearance is dry - they will verify that with the security service who did the background check.

Where can topics requiring clearance be discussed? If a pair of engineers wanted to discuss work while swimming far out in the ocean, would that be fine? How about at a sleazy hotel?

A: Having a security clearance is having a license to handle sensitive information. You cannot discuss classified information in unclassified channels or areas. Classified information must be handled or discussed in classified settings. The most common situation is to be in what is known as a "SCIF" - secure compartmentalized information facility or a security compartment. In addition, you can't talk classified-shop over unclassified media - cellphones, etc. Classified phones, faxes, video, etc. is required to handle classified information. So unless the ocean is scif'ed or the sleazy hotel has a "tank" to have classified discussions - I'd say you're breaching your security agreement.


65.34.186.143 23:02, 19 Jun 2005 (UTC)

Why not give declassified documents in examples, such as NSArchiv : the secrecy level is written (Secret), the Special Access Program (OPTIMIZE TALENT), the "Special Access Required", and caveats (Not Releasable to Foreign Nationals). Here all is in full text.
I think that a list of caveats may be helpful.
  • WNINTEL (Warning Note : INTELligence source/methode involved) : contain information that might compromise the source
  • PROPIN (PROPrietary INformation involved ) : contain "private" information that might compromise the source
  • NOFOR (NOt releasable to FOReign nationals) : non-U.S. people can't have access to that document, whatsover their nationality and their clearance in the U.S..
  • NOCONTRACT (NOt releasable to CONTRACTors/consultants) : private contractors with U.S. gov. can't have access to that document, whatsover their clearance in the U.S.
  • ORCON (ORiginator CONtrolled) : the "emitter" of the document controls the doc's distribution
  • LIMDIS (LIMited DIStribution)
  • NODIS (NO DIStribution)
  • Eyes only : distribution is stricly limited to the addressee specified on the document

Other type of classified information :

    • CNWDI (Critical Nuclear Weapons Design Information) : DoD's data about nuclear weapons
    • L : DoE's data about nuclear projects
    • M et N : US Navy Special operations
    • SI (Special Intelligence) : ELINT
    • TK (Talent Keyhole) : Satellite intelligence
    • BYEMAN : Technical intelligence programs such as (IDEALIST - U-2, OXCART - A-12, KENNAN - KH-11, etc.)

Rob1bureau 12:24, 10 December 2006 (UTC)

[edit] doesn't match what www.clearedconnections.com uses

The www.clearedconnections.com job site uses:

  • Confidential
  • Secret
  • Top Secret
  • Top Secret/EBI
  • Top Secret/SBI
  • Top Secret/SSBI
  • Top Secret/SCI
  • Top Secret/SCI with CI Polygraph
  • Top Secret/SCI with Full Scope Polygraph

So that would be 9 levels, at least in practice. (plus "unclassified" of course) Are they just being messed up, or have they summed things up pretty well?

A: No there are only three levels of clearances - confidential, secret, and top-secret. The information after the "/" tells you what type of background check was required. TS/SCI with Counter-intel polygraphs require a different type of investigation from the TS/Single Scope Background Investigation. The different investigations are usually because you need to have access to different types of information or have special intelligence risks involved that need to be examined for conflicts.

I have not seen EBI lately - but it means extended background check.

TS/SBI = TS + Full lifestyle (full scope) poly (the super procto of intel clearances)

TS/SSBI - Single Scope Background Investigation - standard TS clearance

SCI - Sensitive Compartmented Information - additional checking done after the TS/SSBI is completed.

TS/SCI/CI - Counter intelligence poly - should be obvious what's the issue here...

Finally - unclassified isn't a sensitivity... that is the default for information.

65.34.186.143 1 July 2005 23:08 (UTC)

[edit] Classification versus Clearance

Someday when I have time I want to edit this article so that it makes a clearer distinction between classifications and clearances.

This is one of the problems you run into when talking "poly" as being a sort of security marking. It's a property of a clearance investigation and does not indicate a classification (sensitivity) level.

The difference is subtle but makes a lot of things easier to understand. Cryptosmith

[edit] COSMIC

User 84.54.166.36 has twice added to the intro of this article: "COSMIC TOP SECRET is the top NATO secret. COSMIC TOP SECRET is a set of topics related to predictions for the future and related to the corresponding contacts leading to such predictions. (See also below)."

I don't want to get into a revert war, but this does not belong in the intro section (there are many code words discussed in the article, COSMIC is no more important than the others) and I am not sure what "topics related to predictions for the future and related to the corresponding contacts leading to such predictions" is supposed to mean (intelligence and intelligence sources perhaps?) or why that should be considered particularly significant. I also question whether COSMIC TOP SECRET is limited to such information. Some reference would be helpful. --agr 10:02, 9 August 2005 (UTC)

I work for NATO and have a COSMIC TOP SECRET ATOMAL clearance. Although I've never needed to see such material, as far as I am aware the COSMIC word has no particular significance - it basically means NATO TOP SECRET. It certainly isn't restricted to certain types of information - if it were, NATO would presumably have other TS material without the COSMIC designation, which it doesn't. -- ph. 18 Sep '05.

I had access to COSMIC material at one time. I can confirm it simply means "NATO" and is only applied to Top Secret information. Whether that is NATO crypto or NATO publications at the TS level.

[edit] Fixing spellings

Is it OK to fix misspelled non-English words in the "foreign equivalents" section, if they appear misspelled in the original US military document? I think it's more important for them to reflect the terms various governments actually use, than to reflect the way Merkins spell them, but I'm not fully certain. JIP | Talk 07:12, 27 September 2005 (UTC)

Several people have done so already. The authors of the U.S. Government document did not have non-English characters at their disposal, while we have Unicode. The original entry for Greece had this creative attempt to approximate Greek in Roman characters (with the corrected Wikipedia entry below):
AKPNE AIIOPPHTON - AIIOPPHTON - EMIIIETEYTIKO -  IIEPIPIEMENHE XIIHEEDE
Άκρως Απόρρητον - Απόρρητον - Εμπιστευτικόν - Περιορισμένης Χρήσης
But plain errors apparently have been fixed and there are additions as well. So perhaps this is another example of Wikipedia, through the power of cooperative editing, becoming more authoritative than traditional sources. --agr 11:29, 27 September 2005 (UTC)

I'm from Egypt, and I can say that the word 'Jirri Lilghaxeh' makes no sense. You probably want 'Sirri Lilghaya'. I have no idea what a 'Mehoud' is, probably a misspelling of 'Mahdood', and 'Jidden' (It's actually pronounced with an 'a' not e) means 'very' which doesn't sound right just by itself. ~M.M~

[edit] World view

While it is true that a large proportion of this article deals with U.S. practice, there is quite a bit on other countries, including a log table of equivalent classification markings in different countries and a East German classified cover page. More would certainly be welcome. I suspect there is much more publicly available information from the U.S. Most countries are fairly tight mouthed about their handling of official secrets. Note that the only interwiki link at the moment is to the German Wikipedia, and that article is quite short. Specific suggestions of where to find information from other countries would be more helpful. --agr 19:51, 31 October 2005 (UTC)

For someone interested in (writing about) European Union classifications - the relevant legislation is (CELEX numbers) 32001D0264, 32004D0194, 32005D0078, 32005D0094, 32005D0571. It is all publicly and freely available at http://europa.eu.int/eur-lex/lex/ - select your language, choose Simple Search (or the equivalent in your language), CELEX number.

[edit] Higher classifications

I removed 'Higher classification levels may include Secret Restricted Data French [1] or Eyes Only.' "Secret Restricted Data" is a U.S. marking for nuclear information and is discused in the U.S. article. I am not aware "Eyes only" has any legal significance; in any case my understanding is that it's not a classification, just a handling instruction. --agr 20:52, 12 January 2006 (UTC)

Thank you for this (I'm the author). Eyes only, I know it by two sources: James Bond title (never watched the movie) and ⅩⅠII. Reply to David Latapie 19:06, 19 January 2006 (UTC)

[edit] Edit war on punctuation

There seems to be an edit war in process over the right way to cite some place names. Perhaps the participants could discuss their concerns here and try to reach a consensus. --agr 21:14, 13 January 2006 (UTC)

OK, let me try. The table originally comes from the U.S. Gov's NISPOM manual and I would guess that the Hong Kong entry dates from when it was a British colony. It would help if someone knew if Hong Kong uses markings different from what the People's Republic of China uses. Perhaps Hong Kong should go altogether to be replace by the PRC. As for the spelling of country names, I would propose we spell country names exactly the way Wikipedia spells them in the primary article about the country,(e.g Egypt) and then make them links. Finally, for situations where there are two different versions of the marking, I would suggest we use a "
" tag to put them on separate lines. This would eliminate unnecessary horizontal spacing in the table.--agr 23:31, 14 January 2006 (UTC)

Hong Kong is still governing on its own except for matters related to diplomatic relations and national defence. It has its own court of final resort, and common law remains in force. The information, no matter if it was taken from an old source, still applies. It's not necessary, and is incorrect to be replaced by that of the PRC.

The dispute with the article was around how Hong Kong should be presented, so as to acknowledge the fact that the PRC holds its sovereignty, while at the same time not to confuse readers to have a wrong impression that it's like other ordinary subnational entities. — Instantnood 23:47, 14 January 2006 (UTC)

Wouldn't a footnote to the table be more effective? Perhaps something like: "Hong Kong is a Special Administrative Region of the People's Republic of China. See main article for details.--agr 18:25, 15 January 2006 (UTC)

I believe having its listing follows by People's Republic of China in brackets is already adequate. The same can be done to those that are not sovereign state, for example, "Greenland (Denmark)", "Isle of Man (UK)" or "Puerto Rico (US)". — Instantnood 18:57, 15 January 2006 (UTC)

Right, but your examples do not, as far as I know, have a system for marking classified documents separate from their sovereign. If, in fact, that is true of Hong Kong it might deserve a more explicit note. On the other hand, the fact that Hong Kong is no longer self-governing in regard to diplomatic relations and national defence calls this into question, since these are the usual subjects for classified documents.--agr 20:33, 15 January 2006 (UTC)

Before the transfer of sovereignty the UK handles the diplomatic affairs and national defence of Hong Kong. There are subjects outside of these areas for classified documents. — Instantnood 21:22, 15 January 2006 (UTC)

[edit] Top Secret Ultra?

In the U.S., is there a "Top Secret Ultra"? That is in the text of Donald Howard Menzel, and in the discussion someone asks if there really is such a classification. Bubba73 (talk), 17:01, 28 February 2006 (UTC)

Code names are often used with highly classified material to further restrict their distribution. The sample page at the top of the article is stamped "Top Secret Umbra", for example. The "Ultra" code name was used by the British in World War II for certain cryptographic intelligence and is perhaps the most famous code name ever. It is certainly possible the U.S. has reused that name since, but I tend to doubt it. --agr 17:33, 28 February 2006 (UTC)
Thanks, so is that different from a clearance? The article Donald Howard Menzel says What is somewhat unusual about Menzel's case, is that he held the rarefied "Top Secret Ultra" clearance. Bubba73 (talk), 17:41, 28 February 2006 (UTC)
Having the clearance means you are on the list of people who can be given access to information at that level and with that code name. I looked at the Menzel article and they are talking about the late 1940's, shortly after the Ultra work took place, so it is certainly conceivable he had such a clearance. It is important to note that a major purpose of these code names is to compartmentalize information. Having access to one highly sensitive program does not mean you have access to others. Quite the contrary. The fact that he knew something about U.S. and British efforts to break Axis codes does not mean he would more likely to know about putative secret UFO research.--agr 18:06, 28 February 2006 (UTC)

[edit] RFC: Move/Merge with "Information Sensitivity"?

classified information is is a subset of sensitive information. having this in two separate articles creates redundancy while merging would increase the relevance. (could make it a monster article though). Iancarter 09:17, 3 June 2006 (UTC)

I would oppose such a move. Per Wikipedia policy: "Generally, article naming should give priority to what the majority of English speakers would most easily recognize, with a reasonable minimum of ambiguity, while at the same time making linking to those articles easy and second nature." (WP:NAME) I believe the term "classified information" is far more widely known than "information sensitivity." This is attested to by the hundreds of links to this article under "classified information" or just "classified." It might be useful to have a separate article covering the myriad of restrictions on information that are not considered state secrets e.g. FOUO, court seals, financial data (insider trading), trade secrets, professional privileged, privacy related, and so on, but as it stands right now, the Information sensitivity article is more of an outline than an article. --agr 12:59, 4 June 2006 (UTC)
I would also oppose such a move. As agr's comments: "classified information" is a far more common usage. And merging would likely create a "monster article" that would probably become too large and then need to be split. The information sensitivity article contains lots of great content on the non-government stuff (maybe the "Corporate classification" section of this article should be moved there). johnSLADE (talk) 19:41, 4 June 2006 (UTC)
I oppose moving or renaming the article. I agree with johnSLADE's suggestion that so-called "corporate classified information" get moved to the information sensitivity article. Cryptosmith (Rick Smith) 18:12, 11 August 2006 (UTC)

[edit] Colours

Where are the colours atop the table from? 86.128.188.73 16:56, 11 August 2006 (UTC)

It would be nice to see a source for those colors. I've seen a similar color code used in US defense circles to reflect the associated classification levels, but I've also seen the color coding vary from one environment to another. There is arguably a custom, and these colors seem to comply with it, but there isn't really a requirement that particular colors be used. Cryptosmith (Rick Smith) 19:09, 11 August 2006 (UTC)


[edit] MOST SECRET

I was under the impression that the UK did not use TOP SECRET, but MOST SECRET instead.