0
Which of the following would be classified as spillage and would have to be reported to the Security Manager?
According to CNSSI No. 4009, Spillage is a:
"Security incident that results in the transfer of classified or CUI information onto an information system not accredited (i.e., authorized) for the appropriate security level."
Examples include, but are not limited to:
- Cross connecting an unclassified system with a classified system.
- Taking classified information outside a classified room without proper authority an protection
- Plugging an external drive that has been connected to a classified system into an unclassified system
- Plugging a flash drive that has been connected to a classified system into an unclassified system
- Sending a classified file to an unclassified email account (e.g. former Secretary of State Hillary Clinton)
- Burning a CD with classified data from a SIPRNet machine and inserting it into a NIPRNet machine (it is not necessary for any files to actually be transferred for it to be classified as "spillage"
- Losing control of classified information whether hard copy or soft copy
"When there is evidence of a possible spillage of classified national security information, hereinafter "classified information," an immediate notification shall be made to the information owner, the information assurance manager, the activity security manager, and the responsible Incident Response Center (IRC) Responsible personnel shall conduct an immediate preliminary inquiry to determine whether the classified information was subjected to loss, possible compromise, or unauthorized disclosure. "
What else can I help you with?
What should you do if spillage of classified information occurs?
Report the spillage to your security POC.
What should you do if a spillage of classified info occurs what should you do?
B. Report the spillage to your security POC.
What is classified data that is sent to an unclassified network called?
The classified data, sent over an unclassified network, must be securely encrypted.
Spillage happens when?
Classified information is entered onto an unclassified network
What is computer spillage?
Spillage is when information classified at a higher level is introduced to a computer classified at a lower level. In practice it includes any instance where such information MAY have been introduced. As an example: a laptop computer that is normally connected to a lower classification level network is connected to a higher level network in an attempt to check email. It is unknown if any higher classification data was transferred during the connection. The incident is treated as potential spillage and the hard drive of the computer is now considered classified.
What is spillage for niprnet and siprnet?
Classified information is entered onto an unclassified network
Spillage happens when classified information is entered onto an unclassified network?
Classified information is entered onto an unclassified network.
Agnes wants to make sure that she knows which steps to take to avoid spillage yopu do the following except?
To avoid spillage of sensitive information Agnes should have protection controls in place. For example, have a file-based encryption and perform integrity checks.
When does Computer Spillage happen?
classified information is entered unto unclassified information "V" classified information is entered unto unclassified information "V"
coworker inserted a classified flash media drive in their unclassified system What is the resulting data compromise called?
Spillage
Agnes wants to make sure she knows which steps to take to avoid spillage. You advise Agnes to do all of the following except?
Without knowing the alternatives we cannot answer
How does spillage occur?
Spillage can occur when a substance is accidentally released from its container due to mishandling, improper storage, or equipment failure. This can happen during transportation, storage, or handling of liquids, powders, or other materials. Spillage poses risks to the environment, human health, and safety.
