Prohibit the use of mobile communications devices with camera capability near classified data, unless expressly authorized.

UCF ID: 04598

Control Type: Process or Activity

Status: Live

Supporting and supported controls

This control directly supports:

Establish and maintain physical security of distributed IT assets. [UCF Control ID 00718]

There are no supporting controls.

Authority documents complied with:

DISA Wireless STIG Apriva Sensa Secure Wireless Email System Security Checklist, V5R2.2, Version 5 Release 2.2, § 2.1 (WIR0372), § 2.2 (WIR0371); DISA WIRELESS STIG BLACKBERRY SECURITY CHECKLIST, Version 5, Release 2.4, Version 5 Release 2.4, § 2.1, § 2.2 (WIR0372, WIR0371); DISA Wireless STIG Windows Mobile Messaging Wireless EChecklist Version 5, Release 2.4, Version 5 Release 2.4, § 2.2 (WIR0371), § 2.2 (WIR0372); DISA WIRELESS SECURITY CHECKLIST, Version 5, Release 2.2, Version 5, Release 2.2, § 5 (WIR0371), § 5 (WIR0372); DISA Wireless STIG Motorola Good Mobile Wireless Email System Security Checklist, Version 5 Release 2.3, § 2.2 (WIR0371), § 2.2 (WIR0372)

Other Configuration Guidance

§ 2.1 (WIR0372) PEDs with digital cameras (still or video) are not allowed in any SCIF (Sensitive Compartmented Information Facility) or other area where classified documents or information is stored, transmitted, or processed.
§ 2.2 (WIR0371) PEDs with digital cameras (still and video) are not allowed in a DoD facility, unless specifically approved by site physical security policies. [§ 2.1 (WIR0372), § 2.2 (WIR0371), DISA Wireless STIG Apriva Sensa Secure Wireless Email System Security Checklist, V5R2.2, Version 5 Release 2.2]

Any type of mobile phone containing either a still or video camera should not be permitted anywhere classified material is stored, processed, or transmitted. Wireless devices with cameras should not be allowed on site, unless approved in the physical security policies. [§ 2.1, § 2.2 (WIR0372, WIR0371), DISA WIRELESS STIG BLACKBERRY SECURITY CHECKLIST, Version 5, Release 2.4, Version 5 Release 2.4]

§ 2.2 (WIR0371) PDAs (Portable Electronic Devices) and Smart phones with digital still and/or video cameras should not be allowed in a Department of Defense (DoD) facility, unless specifically approved in the site physical security policies.
§ 2.2 (WIR0372) PDAs (Portable Electronic Devices) and Smart phones with digital still and/or video cameras should be prohibited in a SCIF (Sensitive Compartmented Information Facility) or areas where classified information or documents are stored, processed, or transmitted. [§ 2.2 (WIR0371), § 2.2 (WIR0372), DISA Wireless STIG Windows Mobile Messaging Wireless EChecklist Version 5, Release 2.4, Version 5 Release 2.4]

Personal digital assistants (PDAs) and Smart phones with still and/or video cameras should not be allowed in the facility, unless specifically approved in the physical security policies, and should be prohibited in a SCIF or areas where classified information is stored, processed, or transmitted.
Examine the organization's physical security policy to verify it addresses PDA devices, Smart phones, and other devices that contain cameras. Verify users are aware of these requirements through the use of posted signs, user agreements, and/or training. [§ 5 (WIR0371), § 5 (WIR0372), DISA WIRELESS SECURITY CHECKLIST, Version 5, Release 2.2, Version 5, Release 2.2]

§ 2.2 (WIR0371) The IAO will ensure PDAs and smartphones with digital cameras (still and video) are allowed in a DoD facility only if specifically approved by site physical security policies.
§ 2.2 (WIR0372) The IAO will ensure PDAs or smartphones with digital cameras (still and video) are not allowed in any SCIF or other area where classified documents or information is stored, transmitted, or processed. [§ 2.2 (WIR0371), § 2.2 (WIR0372), DISA Wireless STIG Motorola Good Mobile Wireless Email System Security Checklist, Version 5 Release 2.3]