By electronic transmission. Electronic transmission of SBU information outside of the CBP firewall and network must use session (or, alternatively, file encryption). Sessions (or files) must be encrypted with an approved NIST algorithm, such as Advanced Encryption Standard (AES) or Triple Data Encryption Standard (3DES), in accordance with Federal Information Processing Standards Publication (FIPS PUB) 140-2, Security Requirements for Cryptographic Modules. Encryption tools that meet FIPS 140-2 are referenced on the NIST web page found at the following URL: xxxx://xxxx.xxxx.xxx/groups/STM/cmvp/documents/140-1/1401vend.htm. All encryption products used to satisfy the FIPS 140-2 requirement should have a validation certificate that can be verified at xxxx://xxxx.xxxx.xxx/groups/STM/cmvp/validation.html#02. (Not all vendors of security products that claim conformance with FIPS 140-2 have validation certificates.) Contractors must provide SBU Building information only to authorized representatives of state, Federal, and local government entities and firms currently registered as “active” in the XXX database at xxxxx://xxx.xxxxxxxxxxx.xxx that have a need to know such information. If a subcontractor is not registered in XXX and has a need to possess SBU Building information, the subcontractor shall provide to the contractor its DUNS number or its tax ID number and a copy of its business license.
Appears in 2 contracts
Samples: On Airport Lease, Lease Agreement
By electronic transmission. Electronic transmission of SBU information outside of the CBP DOE firewall and network must use session (or, alternatively, or alternatively file encryption). Sessions (or files) must be encrypted with an approved NIST algorithm, such as Advanced Encryption Standard (AES) or Triple Data Encryption Standard (3DES), in accordance with Federal Information Processing Standards Publication (FIPS PUB) 140-2, Security Requirements for Cryptographic Modules. Encryption tools that meet FIPS 140-2 are referenced on the NIST web page found at the following URL: xxxx://xxxx.xxxx.xxx/groups/STM/cmvp/documents/140-1/1401vend.htm. All encryption products used to satisfy the FIPS 140-2 requirement should have a validation certificate that can be verified at the xxxx://xxxx.xxxx.xxx/groups/STM/cmvp/validation.html#02. (Not all vendors of security products that claim conformance with FIPS 140-2 have validation certificates.) Contractors must provide SBU Building building information only to authorized representatives of stateState, Federal, and local government entities and firms currently registered as “active” in the XXX Central Contractor Registration (CCR) database at xxxxx://xxx.xxxxxxxxxxx.xxx xxx.xxx.xxx that have a need to know such information. If a subcontractor is not registered in XXX the CCR and has a need to possess SBU Building building information, the subcontractor shall provide to the contractor its DUNS number or its tax ID number and a copy of its business license.
Appears in 1 contract
Samples: Lease Agreement
By electronic transmission. Electronic transmission of SBU information outside of the CBP NOAA firewall and network must use session (or, alternatively, or alternatively file encryption). Sessions (or files) must be encrypted with an approved NIST algorithm, such as Advanced Encryption Standard (AES) or Triple Data Encryption Standard (3DES), in accordance with Federal Information Processing Standards Publication (FIPS PUB) 140-2, Security Requirements for Cryptographic Modules. Encryption tools that meet FIPS 140-2 are referenced on the NIST web page found at the following URL: xxxx://xxxx.xxxx.xxx/groups/STM/cmvp/documents/140-1/1401vend.htm. All encryption products used to satisfy the FIPS 140-2 requirement should have a validation certificate that can be verified at the xxxx://xxxx.xxxx.xxx/groups/STM/cmvp/validation.html#02. (Not all vendors of security products that claim conformance with FIPS 140-2 have validation certificates.) Contractors must provide SBU Building information only to authorized representatives of state, Federal, and local government entities and firms currently registered as “active” in the XXX database at xxxxx://xxx.xxxxxxxxxxx.xxx that have a need to know such information. If a subcontractor is not registered in XXX and has a need to possess SBU Building information, the subcontractor shall provide to the contractor its DUNS number or its tax ID number and a copy of its business license.
Appears in 1 contract
Samples: Lease Agreement
By electronic transmission. Electronic transmission of SBU information outside of the CBP GOVERNMENT firewall and network must use session (or, alternatively, or alternatively file encryption). Sessions (or files) must be encrypted with an approved NIST algorithm, such as Advanced Encryption Standard (AES) or Triple Data Encryption Standard (3DES), in accordance with Federal Information Processing Standards Publication (FIPS PUB) 140-2, Security Requirements for Cryptographic Modules. Encryption tools that meet FIPS 140-2 are referenced on the NIST web page found at the following URL: xxxx://xxxx.xxxx.xxx/groups/STM/cmvp/documents/140-1/1401vend.htm. All encryption products used to satisfy the FIPS 140-2 requirement should have a validation certificate that can be verified at the xxxx://xxxx.xxxx.xxx/groups/STM/cmvp/validation.html#02. (Not all vendors of security products that claim conformance with FIPS 140-2 have validation certificates.) Contractors must provide SBU Building information only to authorized representatives of stateState, Federal, and local government Government entities and firms currently registered as “active” in the XXX database at xxxxx://xxx.xxxxxxxxxxx.xxx System for Award Management (XXX) XXXXX://XXX.XXX.GOV/PORTAL/PUBLIC/XXX/ that have a need to know such information. If a subcontractor is not registered in the XXX and has a need to possess SBU Building information, the subcontractor shall provide to the contractor its DUNS number or its tax ID number and a copy of its business license.
Appears in 1 contract
Samples: Lease Agreement