Supports the processes associated with ensuring employees, contractors, and others have been approved to enter organizational buildings, utilize organizational services, and access sensitive information. The overall accountability rating for this information classification is Low.
Confidentiality level = Low
The confidentiality impact level is the effect of unauthorized disclosure of security clearance information on the abilities of responsible entities to manage access eligibility determination, badge issuance, clearance tracking, and security verification services for organizational information and facilities. The consequences of unauthorized disclosure of the majority of security clearance management information can facilitate attempts by criminals and other unauthorized individuals to enter organizational buildings, utilize organizational services, and access sensitive information. The consequences can range from limited loss of public confidence in an organization to serious or catastrophic adverse effects on organizational operations, organizational assets, or individuals. For most organizational systems, only limited harm is expected to result from unauthorized disclosure of security clearance management information. Consequently, the confidentiality impact level recommended for security clearance management information is low.
Known mitigating factors toward changing the confidentiality level
Where criminal acts are enabled, the confidentiality impact must be high. In cases of critical infrastructure facilities, key organizational assets, law enforcement facilities, and homeland security facilities, the confidentiality impact must be high.
Integrity level = Moderate
The integrity impact level is based on the specific mission and the data supporting that mission, not on the time required to detect the modification or destruction of information. The consequences of unauthorized modification or destruction of security clearance information depends primarily on the criticality of the information with respect to organizational mission capability, protection of organizational assets, and safety of individuals. Modified security clearance management information can be used to facilitate attempts by criminals and other unauthorized individuals to enter organizational buildings, utilize organizational services, and access sensitive information. The consequences can range from limited loss of public confidence in an organization to serious or catastrophic adverse effects on organizational operations, organizational assets, or individuals.
Known mitigating factors toward changing the integrity level
The consequences of modifications or deletion of security clearance management information may be significant with respect to organizational mission capabilities or assets. Where terrorist acts are enabled, the integrity impact must be high. In cases of critical infrastructure facilities, key organizational assets, law enforcement facilities, and homeland security facilities, the integrity impact must be high.
Availability level = Low
The availability impact level is based on the specific mission and the data supporting that mission, not on the time required to reestablish access to the security clearance information. Loss of availability of security clearance management information may result in denial of access to organizational facilities and information. The security clearance processes are generally tolerant of reasonable delays. For most organizational systems, only limited harm is expected to result from temporary loss of use of security clearance management information. Consequently, the provisional availability impact level recommended for security clearance management information is low.