What is Decree No. 454 / 2011 Coll.?

Decree No. 454 / 2011 Coll., amending Decree No. 528 / 2005 Coll., on Physical Safety and Certification of Technical Devices, as amended by Decree No. 19 / 2008 Coll. — Decree amending Decree No 528 / 2005 Coll., on Physical Safety and Certification of Technical Means, as amended by Decree No 19 / 2008 Coll..

When it became Decree No. 454 / 2011 Coll. effectiveness?

Decree No. 454 / 2011 Coll. became effective 01.01.2012.

Is Decree No. 454 / 2011 Coll. still valid?

Yes, Decree No. 454 / 2011 Coll. is still valid and effective.

How many times was it Decree No. 454 / 2011 Coll. amended?

Decree No. 454 / 2011 Coll. has 3 time versions of the text.

Decree No. 454 / 2011 Coll. - Decree amending Decree No 528 / 2005 Col...

454

DECLARATION

of 21 December 2011

amending Decree No 528 / 2005 Coll., on physical safety and certification of technical means, as amended by Decree No 19 / 2008 Coll.

According to Articles 33 and 53 (a), (c), (d), (e), (f) and (j) of Act No. 412 / 2005 Coll., on the protection of classified information and on security competence, as amended by Act No. 255 / 2011 Coll.:

Čl. I

Decree No 528 / 2005 Coll., on physical safety and certification of technical means, as amended by Decree No 19 / 2008 Coll., is amended as follows:

1. in Paragraph 2 (a), the word "normally" shall be inserted after the word "in which" is inserted. "

2. Paragraph 2 (f), including footnote 4, is deleted.

Points (g) to (m) shall be renumbered as points (f) to (l).

3. In Article 2 (i), the words "difficult or 'are replaced by the words" difficult,' and the words "security 'are inserted after the words" notice'.

4. In Article 2 (j), the words ", lockable cabinet 'are deleted and the words" lockable' are inserted after the words "other '.

5. In Paragraph 2, at the end of point (k), the comma is replaced by a dot and point (l) is deleted.

6. Paragraph 3, including the title and footnote 6, reads:

„§ 3

Security of the building and secured area

(1) The boundaries of an object or a secured area, the classification of an object or a secured area in the relevant category6) and the classification of the secured area in the relevant class shall be determined by the responsible person or by the authorised person.

(2) Security of an object or a secured area shall be ensured by a combination of physical security measures pursuant to paragraphs 3 to 10 and Sections 6 to 9.

(3) The object is secured according to the object category, taking into account the nature of the object boundary and depending on the risk assessment by these technical means

(a) for category Reserved - mechanical defence devices,

(b) for the category Confidential and Secret - mechanical means and devices of electrical signalling,

(c) for the category Top Secret - mechanical means of defence, electrical signalling equipment and special television systems. Special television systems shall not interfere with the protection of classified information.

(4) The secured area is secured according to its category, class and risk assessment by these technical means

(a) for category Reserved - mechanical defence devices,

(b) for the category Confidential - mechanical means and devices of electrical signalling,

(c) for the category Secret and Top Secret - mechanical defence devices, input control systems, electrical signalling equipment, special television systems, electrical fire alarm equipment. Special television systems can be replaced by emergency systems. The use of special television systems shall not interfere with the protection of classified information.

(5) Point values for the lowest security level of the secured area are set out in Annex 1 to this Decree.

(6) Objects and secured areas of the category Confidential and higher, in which permanent presence of workers is ensured, are secured by mechanical means.

(7) Certified or non-certified technical means are used to ensure secure areas. Uncertified technical means may only be used under the conditions laid down in Annex 1 to this Decree.

(8) The classified information shall be stored in a secure area of the relevant category or higher, or in a storage facility where its point value is applied in a physical security project for the relevant secure area.

(9) The facility shall include the physical destruction of information media according to Annex 1 to this Decree.

(10) If the boundary of the object is identical to the boundary of the secured area, the scope of application of physical security measures is determined by the requirements for the category of the secured area.

6) Paragraph 25 (1) of Act No. 412 / 2005 Coll., as amended by Act No. 255 / 2011 Coll. '.

7. In Paragraph 4 (1), the words "and the object border 'are deleted.

8. in Article 4 (1) and Article 8 (3), the words "operator of the premises" shall be replaced by the words "responsible person or authorised person."

9. In Article 4 (2), the words "and the boundaries of the object 'are deleted.

10. in Paragraph 4 (2), "11" is replaced by "8" and "10" is replaced by "9."

11. in Article 4 (3), the words "pursuant to Article 10 (3)" shall be deleted;

12. In Article 4, at the end of paragraph 5, the sentence "Special television systems shall not interfere with the protection of classified information."

13. in Article 4 (7), the words "the Order" shall be inserted after the words "Annex 1."

14. in Paragraph 4 (8):

"(8) Certified or non-certified technical means are used to secure the negotiating areas. Uncertified technical means may only be used under the conditions laid down in Annex 1 to this Decree. ';

15. in Article 4, paragraphs 9 and 10 are deleted;

Paragraph 11 shall become paragraph 9.

16.

„§ 5

Security of technical equipment

(1) The technical equipment is provided by physical security measures pursuant to Sections 3, 6 to 10 or paragraphs 2 to 4.

(2) The scope of the use of the arrangements and technical means for securing the technical equipment shall be determined by the responsible person or by the authorised person, depending on the risk assessment.

(3) Security of stored technical equipment containing classified information

(a) Top secret is provided by type 5 in accordance with Annex 1 to this Decree;

(b) The secret shall be provided by at least type 4 according to Annex 1 to this Decree;

(c) Confidential treatment shall be provided at least by type 3 in accordance with Annex 1 to this Decree;

(d) Reserved shall be provided to the extent specified by or by the responsible person.

(4) The scope of the application of physical safety measures to ensure technical equipment is laid down in the physical safety project. The content and form of the physical security project shall apply mutatis mutandis. ';

17. in Article 6 (1) (d), the word "data" shall be replaced by "means, in particular the way in which they are labelled, allocated, stored and recorded."

18. In Article 6, at the end of paragraph 1, the dot is replaced by a comma and the following point (f) is added:

"(f) the regime for the movement of classified information in an object, a secure area and a negotiating area.";

19.

„§ 7

Movements of persons and means of transport

(1) Authorisations to enter an object, a secure area or a negotiating area shall be issued by the responsible person or by the authorised person. An authorisation to enter a secure area or a restricted area may be issued to a person who is instructed and is the holder of a notice of compliance with the conditions for access to classified information of a classified level Reserved or a certificate of a natural person for an appropriate or higher classification level. The list of persons authorised to enter the category Confidential, Secret or Top Secret, to the secure area and to the negotiating area and means of transport authorised to enter the category Confidential, Secret or Top Secret, to the secure area and to the negotiating area shall be deposited with the responsible person or the authorised person.

(2) Persons not authorised to enter an object of the category Confidential, Secret or Top Secret, Secured Area or negotiating area may enter only with the accompanying person authorised to enter the relevant building, secure area or negotiating area, provided that the entry is necessary and does not interfere with the protection of classified information.

(3) An entry check shall be carried out at the entrance to the confidential, secret or top secret category of the building and data records shall be kept for persons not authorised to enter the building and the accompanying visiting arrangements shall be mandatory. An entry check is carried out at the entrance to the secure category area Reserved, which is located in the category Object Reserved.

(4) Upon entry of persons without authorisation to enter a category of Top Secret Object, they shall be inspected by equipment used to search for dangerous substances or articles. ';

20. In Section 8, the word "data 'is replaced by the word" means'.

21. in Article 8 (1), (3) and (4), the word "data" shall be replaced by "funds."

22. in Paragraph 8 (2), the word "data" shall be replaced by the word "funds" and the words "classification level Reserved which requires special loading and classified information" shall be deleted;

23. in Articles 8 (2) and (4) and 10 (1) and (4), the words "operator of the premises" shall be replaced by the words "responsible person."

24. in Article 8 (2), (4) and (5) and in Article 10 (1) and (4), the word "him" shall be replaced by "her."

25. in Article 8 (4), the word "classified" shall be replaced by "classified"; the words "keys and identification data" shall be inserted after the words "storage objects"; the words "keys and identification data" shall be deleted; and the words "where secure or negotiated areas are located" shall be deleted;

26. in Article 8 (5), the word "data" shall be replaced by "means" and the words "operator of an object" shall be replaced by "responsible person."

27. in Article 9, the words "of individual types" shall be inserted after the words "values."

28. In Paragraph 11 (2) (c), the words "or a declaration of the same composition and implementation of a technical device containing a declaration by the manufacturer that the technical device will be manufactured in the same composition and execution as specified in the opinion provided for in Paragraph 46 (14) of the Act" shall be replaced by the words "- for a single technical device not required."

29. In Section 12, the word "Time 'is replaced by" Time' and the words "derived from time 'are replaced by" provided for by the Office for a maximum period'.

30.

"Annex No 1 to Decree No 528 / 2005 Coll.

1. SAFE OBJECTS AND THEIR LOCKS

1.1. SAFEGUARD OBJECTS

1.1.1. Type 4 storage object:

SS1 = 4 points

The Type 4 storage facility is certified by the National Security Authority ("the Office ') and meets the requirements of safety class II or higher according to ČSN EN 1143-1 + A1 Safety storage facilities - Requirements, classification and methods of testing for resistance to burglary - Part 1: Lockers, safe doors and chamber vaults.

In accordance with ČSN EN 1143-1 + A1, the type 4 storage object shall be fitted with a minimum class A lock according to EN 1300 + A1 Safety storage devices - Classification of locks with high safety due to their resistance to unauthorised opening (type 2 lock, Annex 1.2.3).

In case a cryptographic material is stored in the Type 4 storage facility, this storage facility shall be equipped with a combination mechanical lock, at least three positions.

1.1.2. Type 3 storage object:

SS1 = 3 points

The Type 3 storage facility is certified by the Office and meets the requirements of safety class I according to ČSN EN 1143-1 + A1.

In accordance with ČSN EN 1143-1 + A1, the type 3 storage object shall be fitted with a minimum class A lock according to EN 1300 + A1 (type 2 lock, paragraph 1.2.3. of the Annex).

In case a cryptographic material is stored in the Type 3 storage facility, this storage facility shall be equipped with a combination mechanical lock, at least three positions.

1.1.3. Type 2 storage object:

SS1 = 2 points

Type 2 storage facility is certified by the Office and meets the requirements of safety class 0 according to ČSN EN 1143-1 + A1.

In accordance with ČSN EN 1143-1 + A1, the type 2 storage object shall be fitted with a minimum class A lock according to EN 1300 + A1 (type 2 lock, paragraph 1.2.3. of the Annex).

1.1.4. Type 1 storage object:

S1 = 1 point

The type 1 storage object is an inseparable steel housing of a solid structure, its door cap is equipped with a three-sided distribution mechanism and a lock. The door cap is self-locking in a closed state.

The Type 1 storage object is not certified by the Office. The conformity of these storage facilities with the above requirements shall be assessed by the responsible person or by the authorised person. The conformity assessment report shall become part of the physical security project.

1.1.5. Storage type 1A:

S1 = 1 point

The Type 1A storage facility is certified by the Office and meets, including the locking system, the requirements of the security class Z1 according to ČSN 91 6012 Safety storage facilities - Requirements, classification and methods of testing for resistance to break-in - Safety safes with basic safety.

1.1.6. Storage object type 1B:

S1 = 2 points

The 1B storage object is certified by the Office and meets the requirements of the Z2 security class according to ČSN 91 6012, including the locking system.

1.1.7. Storage type 1C:

S1 = 3 points

The 1C storage object is certified by the Office and meets the requirements of the Z3 security class according to ČSN 91 6012, including the locking system.

1.1.8. Storage object type 0:

S1 = not evaluated (N)

The Type-0 storage object is a solid construction (e.g. box, office furniture) and is equipped with a lock that is locked. They shall not show signs of damage or wear which would make it impossible to identify attempts at unauthorised entry. The Type-0 storage object is not certified by the Office.

Compliance of the characteristics of these storage facilities with the above requirements by the responsible person or by the authorised person in the physical security project.

1.2. LOCATION OF SAFE OBJECTS

1.2.1. Type 4 lock:

SS2 = 4 points

The type 4 lock is certified by the Office as part of the certification of the storage facility and meets the requirements of safety class C according to EN 1300 + A1.

1.2.2. Type 3 lock:

SS2 = 3 points

Type 3 lock is certified by the Office as part of the certification of the storage facility and meets the requirements of safety class B according to EN 1300 + A1.

1.2.3. Type 2 lock:

SS2 = 2 points

Type 2 lock is certified by the Office as part of the certification of the storage facility and meets the requirements of safety class A according to EN 1300 + A1.

Note to paragraph 1:

Conversion table point assessment of the storage object

Typ úschovného objektu	Stupeň utajení pro který byla schválena způsobilost je vypsán slovy	Bodová hodnota SS1	Bodová hodnota SS2
Typ úschovného objektu	do 31.12. 1999	Bodová hodnota SS1	Bodová hodnota SS2
Typ 4	PŘÍSNĚ TAJNÉ	4 body	2 body
Typ 3	TAJNÉ	3 body	2 body
Typ 2	DŮVĚRNÉ	2 body	2 body

2. SECURITY AREAS AND THEIR cloaking SYSTEMS

For the purposes of this chapter, the following definitions apply:

The following dimensions shall be provided with mechanical means of defence:

Průlezný otvor	Rozměr
obdélník	400mm x 250mm
elipsa	400mm x 300mm
kruh	Průměr 350 mm

If the leakage hole is secured by a mechanical means with one or more openings (e.g. grate), these openings shall not allow the passage of a template in the shape of an ellipse of 250 mm x 150 mm and a thickness of 20 mm.

2.1. Secured Areas

The identification of the type of secured area is given by the least resistant element of its boundary.

2.1.1. Type 4 security area:

SS3 = 4 points

The walls, floors and ceilings shall have the following construction structure:

(a) brick or limestone blocks, poroconcrete blocks, thickness exceeding 300 mm; or

(b) of reinforced concrete thickness exceeding 150 mm.

The scoring of the other mechanical means shall meet the SS3 = 4. Mechanical devices shall not show signs of damage or wear which would make it impossible to identify attempts at unauthorised entry.

Windows, doors and other closures shall comply with the requirements of safety class RC 4 or class RC 5 according to EN 1627 Windows, doors, closures - Resistance to forced entry - Requirements and classification.

2.1.2. Type 3 security area:

SS3 = 3 points

The walls, floors and ceilings shall have the following construction structure:

(a) brick or limestone blocks, poroconcrete blocks, thickness exceeding 150 mm; or

(b) of reinforced concrete thickness exceeding 100 mm.

The scoring of other mechanical means of defence shall meet at least the value of SS3 = 3. Mechanical devices shall not show signs of damage or wear which would make it impossible to identify attempts at unauthorised entry.

Windows, doors and closures shall meet the requirements of the safety class RC 3 according to EN 1627.

2.1.3. Type 2 security area:

SS3 = 2 points

The walls, floors and ceilings shall have the following construction structure:

(a) brick or limestone blocks, poroconcrete blocks, thickness between 100 and 150 mm; or

(b) of reinforced concrete thickness up to 100 mm.

Floors and ceilings may also be of other thickness material of more than 150 mm (e.g. wooden sandwich beam construction).

The scoring of other mechanical means of defence shall meet at least the value of SS3 = 2.

The windows, doors and closures shall meet the requirements of the safety class RC 2 according to EN 1627.

The leakage holes need not be secured by certified mechanical means if the lower edge of the hole meets the following requirements:

(a) at least 5,5 m above the terrain;

(b) it cannot be easily penetrated from the roof or through lightning ducts, gutters, parapets, other building elements, terrain inequalities, trees or other structures.

Mechanical devices shall not show signs of damage or wear which would make it impossible to identify attempts at unauthorised entry.

2.1.4. Type 1 security area:

SS3 = 1 point

Walls, floors and ceilings are light construction structures made of materials such as:

- drywall,

- light brick construction,

- wood, particle board,

- plastic hardened materials,

- profiled or corrugated sheet,

- glass.

The penetrating openings shall be secured by mechanical means providing the same degree of resistance as the remaining parts of the safety area type 1, or protected by certified electrical signalling devices (EZS), the installation of which corresponds to at least SS92 = 3.

Leakholes need not be secured by the following mechanical means if the lower edge of the leaky opening meets the following requirements:

(a) at least 5,5 m above the terrain;

(b) it cannot be easily penetrated from the roof or through lightning ducts, gutters, parapets, other building elements, terrain inequalities, trees or other structures.

The mechanical means of defence shall be rigid structures and shall not show signs of damage or wear which would make it impossible to identify attempts at unauthorised entry and compliance with these requirements shall be assessed by the responsible person or by the authorised person.

The conformity assessment report shall become part of the physical security project.

2.1.5. Type 0 security area:

SS3 = not evaluated (N)

The securing of penetrable holes shall enable the movement of persons and vehicles to be controlled.

Mechanical devices shall not show signs of damage or wear which would make it impossible to identify attempts at unauthorised entry.

Compliance with the above requirements shall be confirmed by the responsible person or by the authorised person in the physical security project.

2.2. cloaking systems designed to clothe secured areas

2.2.1. Type 4 locking system:

SS4 = 4 points

Type 4 locking system is certified by the Office.

The locking system and its components shall meet the requirements of the safety class RC 5 according to ČSN EN 1627.

2.2.2. Type 3 locking system:

SS4 = 3 points

Type 3 locking system is certified by the Office.

The locking system and its components shall meet the requirements of the safety class RC 4 according to ČSN EN 1627.

2.2.3. Type 2 locking system:

SS4 = 2 points

Type 2 locking system is certified by the Office.

The locking system and its components shall meet the requirements of the safety class RC 3 according to ČSN EN 1627.

2.2.4. Type 1 locking system:

SS4 = 1 point

Citation	Decree No. 454 / 2011 Coll., amending Decree No. 528 / 2005 Coll., on Physical Safety and Certification of Technical Devices, as amended by Decree No. 19 / 2008 Coll.
Regulation Type	Order
Author	-
Collection	Code of Laws

Date of Promulgation	29.12.2011
Effective from	01.01.2012
Effective until	-
Status	Valid

Decree No. 454 / 2011 Coll.

Decree amending Decree No 528 / 2005 Coll., on Physical Safety and Certification of Technical Means, as amended by Decree No 19 / 2008 Coll.

Contents

Čl. I

„§ 3

„§ 5

„§ 7

Contents

Comments 0

Regulation Information

Partner Websites

Favorites

Browsing History