Security Objectives. 2.1. To achieve adequate security protection of NATO classified information handled in CIS, a balanced set of security measures (physical, personnel, information and CIS) shall be identified and implemented to create a secure environment in which a CIS operates, and to meet the following security objectives: (a) to ensure the confidentiality of information by controlling the disclosure of, and access to, NATO classified information, and supporting system services and resources; (b) to ensure the integrity of NATO classified information, and supporting system services and resources; (c) to ensure the availability of NATO classified information, and supporting system services and resources; (d) to ensure the reliable identification and authentication of persons, devices and services accessing CIS handling NATO classified information; and (e) to ensure appropriate non-repudiation for individuals and entities having processed the information. 2.2. NATO classified information and supporting system services and resources, shall be protected by a minimum set of measures aimed at ensuring general protection against commonly encountered problems (whether accidental or intentional) known to affect all systems and supporting system services and resources. Additional measures shall be taken, appropriate to the circumstances, where a security risk assessment has established that NATO classified information and/or supporting system services and resources are subject to increased risks from specific threats and vulnerabilities.
Appears in 4 contracts
Samples: Agreement for the Security of Information, Agreement for the Security of Information, Agreement for the Security of Information
