Two-Person Integrity

Custom Search

Emergency Destruction

Information Technician Administration and Security

Transmission Security

TWO-PERSON INTEGRITY

Two-person integrity (TPI) is the security measure taken to prevent single-person access to COMSEC keying material and cryptographic maintenance manuals. TPI is accomplished as follows:

The constant presence of two authorized persons when COMSEC material is being handled;

The use of two combination locks on security containers used to store COMSEC material; and

The use of two locking devices and a physical barrier for the equipment.

At no time can one person have in his or her possession the combinations or keys to gain lone access to a security container or cryptographic equipment containing COMSEC material. Neither can one person have sole possession of COMSEC material that requires TPI security.

CRYPTOGRAPHIC OPERATIONS AND OPERATOR REQUIREMENTS

As a Radioman, you will be required to learn and understand the more detailed procedures and processes involving cryptographic operations. Cryptographic procedures and associated equipments are governed by many strict rules and standards. To understand cryptographic operations and their importance, you must understand the following terminology:

CRYPTO- The marking "CRYPTO" is not a security classification. This marking is used on all keying material and associated equipment to protect or authenticate national security-related information. All material and equipment marked "CRYPTO" require special consideration with respect to access, storage, and handling.

CRYPTOMATERIAL- The term "cryptomaterial" refers to all material, such as documents, devices, or apparatus, that contain cryptoinformation. Furthermore, the material must be essential to the encryption, decryption, or authentication of telecommunications. Cryptomaterial is always classified and is normally marked "CRYPTO."

Cryptomaterial that supplies equipment settings and arrangements or that is used directly in the encryption and decryption process is called keying material. Keying material is afforded the highest protection and handling precautions of all information and material within a cryptosystem. Keying material is always given priority when an emergency plan is implemented.

CRYPTOINFORMATION- The category of cryptoinformation is always classified. This type of information normally concerns the encryption or decryption process of a cryptosystem. It is normally identified by the marking "CRYPTO" and is subject to all the special safeguards required by that marking.

CRYPTO-RELATED INFORMATION-

Crypto-related information may be classified or unclassified. It is normally associated with cryptomaterial but is not significantly descriptive of it. In other words, it does not describe a technique or process, a system, or equipment functions and capabilities. Crypto-related information is not marked "CRYPTO" and is not subject to the special safeguards normally associated with cryptoinformation.

CRYPTOSYSTEM- The term "cryptosystern" encompasses all the associated items of cryptomaterial that are used together to provide a single means of encryption and decryption.

All items of a related nature that combine to form a system must be given the strictest security. Any failure, equipment, or operator that adversely affects the security of a cryptosystem is called cryptoinsecurity.

GENERAL AND SPECIFIC CRYPTOSYSTEMS- During your cryptographic duties, you will sometimes hear the terms "general" and "specific" applied to some cryptosystems. A general cryptosystem consists of a basic principle and method of operation, regardless of the cryptomaterials used. In other words, regardless of the types of materials or elements used, the method of operation will always be the same, whether encrypting, decrypting, or authenticating.

A specific cryptosystem is one within a general system that is necessary and confined to actual encryption, decryption, or authentication. These systems are identified by the short and long titles of their variables.

CRYPTOVARIABLES- A cryptovariable is an element of a cryptosystem that directly affects the encryption and decryption process. These variables are divided into two types: primary and secondary.

A primary cryptovariable is the most readily and frequently changed element of a cryptosystem. A secondary cryptovariable is one that permits change of circuit operation without altering the basic equipment. A secondary cryptovariable must also be used in conjunction with appropriate primary variables.

The commanding officer is responsible for ensuring that personnel are thoroughly trained and certified for cryptographic duties. This training may be formal or

on-the-job training. The CMS custodian is responsible for ensuring that cryptographic operators receive the training necessary to perform these duties and that they meet the following minimum qualifications:

Be properly cleared for access to the material with which they will be working;

Be authorized by the commanding officer to perform crypto duties; and

Be familiar with local crypto procedures.