What is Decree No 528 / 2005 Coll.?

Decree No. 528 / 2005 Coll., on Physical Safety and Certification of Technical Devices — Decree on physical safety and certification of technical means.

When it became Decree No 528 / 2005 Coll. effectiveness?

Decree No 528 / 2005 Coll. became effective 01.01.2006.

Is Decree No 528 / 2005 Coll. still valid?

Yes, Decree No 528 / 2005 Coll. is still valid and effective.

How many times was it Decree No 528 / 2005 Coll. amended?

Decree No 528 / 2005 Coll. has 10 time versions of the text.

Decree No 528 / 2005 Coll. - Decree on physical safety and certificat...

528

DECLARATION

of 14 December 2005

on physical security and certification of technical means

The National Security Authority shall determine, pursuant to Sections 33 and 53 of Act No. 412 / 2005 Coll., on the protection of classified information and on security competence, as amended ("the Act '):

§ 1

Subject matter

This decree sets out the points for evaluation of individual physical security measures (1), the lowest level of security of the secured areas2) and the negotiating areas3), the basic method of risk assessment, further requirements for physical security measures and the formalities for certification of the technical device.

§ 2

Definition of terms

For the purposes of this decree:

(a) by the object of the building or other enclosed space in which, as a general rule, secure or negotiated areas are located;

(b) boundary of the building's mantle, physical barrier (fence) or otherwise visibly defined boundary;

(c) the border of the secured area or the negotiating area of the building or otherwise visibly enclosed space;

(d) entry into the building, secure area or negotiating area a place intended for entry and exit of persons and a place intended for entry and exit of means of transport;

(e) means of transport by land, underground, air and water intended for the transport of persons, objects and material;

(f) the possibility of disclosure or misuse of classified information in the event of a breach of physical security;

(g) the risk of a threat occurring;

(h) an emergency situation in which there is a imminent risk of disclosure or misuse of classified information;

(i) by a technical means, a security feature the use of which prevents, makes it difficult, notifies or records security breaches in the protection of the object, the security area or the area of action and further destroys classified information;

(j) a safe deposit box or other lockable box provided for in Annex 1 to this Regulation;

(k) technical equipment for military material5) and military equipment, containing classified information, in particular electronic, phototech, chemical, physicochemical, radiotech, optical and mechanical military technology, including assets of certified information systems and cryptographic devices.

§ 3

Security of the building and secured area

(1) The boundaries of an object or a secure area, the classification of an object or a secure area in the relevant category6) and the inclusion of a secured area in the relevant class are determined and approved by the responsible person or by the authorised person in the physical security project.

(2) Security of an object or a secured area shall be ensured by a combination of physical security measures pursuant to paragraphs 3 to 10 and Sections 6 to 9.

(3) The object is secured according to the object category, taking into account the nature of the object boundary and depending on the risk assessment by these technical means

(a) for category Reserved - mechanical defence devices,

(b) for category Confidential and Secret - mechanical means of defence and alarm protection systems,

(c) for the category Top Secret - mechanical means of defence, alarm security systems and surveillance video systems. Surveillance video systems shall not interfere with the protection of classified information.

(4) The secured area is secured according to its category, class and risk assessment by these technical means

(a) for category Reserved - mechanical defence devices,

(b) for category Confidential - mechanical means of defence and alarm protection systems,

(c) for the category Secret and Top Secret - mechanical defence devices, input control systems, alarm security systems, surveillance video systems and electrical fire alarm devices. Surveillance video systems may be replaced by emergency systems. The protection of classified information shall not be compromised when surveillance video systems are used.

(5) Point values for the lowest security level of the secured area are set out in Annex 1 to this Decree.

(6) In the case of objects and secured areas of the category Confidential and higher, in which the permanent presence of workers is ensured, the alarm security system may be replaced by surveillance carried out by such persons.

(7) Certified or non-certified technical means are used to ensure secure areas. Uncertified technical means may only be used under the conditions laid down in Annex 1 to this Decree.

(8) The classified information shall be stored in a secure area of the relevant category or higher, or in a storage facility where its point value is applied in a physical security project for the relevant secure area.

(9) The facility shall include the physical destruction of information media according to Annex 1 to this Decree.

(10) If the boundary of the object is identical to the boundary of the secured area, the scope of application of physical security measures is determined by the requirements for the category of the secured area.

§ 4

Security of negotiating areas

(1) The border of the area of procedure shall be determined by the responsible person or by the authorised person.

(2) Security of the negotiating area shall be ensured by a combination of the physical security measures referred to in paragraphs 3 to 8 and Sections 6 to 9.

(3) The scope of the application of physical security measures to safeguard the negotiating area shall be determined according to the level of classified information which is regularly discussed in the negotiating area and the risk assessment.

(4) The negotiating areas for the regular discussion of classified classified information classified by classified and Top Secret shall be secured by mechanical means, input control systems, alarm systems, surveillance video systems, electrical fire alarm devices, passive and active wiretap devices.

(5) The surveillance video systems in paragraph 4 may be replaced by emergency systems. Surveillance video systems shall not interfere with the protection of classified information.

(6) Point values of the lowest level of security of the negotiating area are set out in Annex 1 to this Decree.

(7) The provisions of Annex No 1 to this Decree concerning the security of a secure area shall apply mutatis mutandis to the security of the negotiating area, unless otherwise provided in Annex No 1 to this Decree.

(8) Certified or non-certified technical means are used to secure the negotiating areas. Uncertified technical means may only be used under the conditions laid down in Annex 1 to this Decree.

(9) Where the object border is identical to the area of procedure, the scope of application of physical security measures shall be determined by the requirements for securing the area of procedure.

§ 5

Security of technical equipment

(1) The technical equipment is provided by physical security measures pursuant to Sections 3, 6 to 10 or paragraphs 2 to 4.

(2) The scope of the use of the arrangements and technical means for securing the technical equipment shall be determined by the responsible person or by the authorised person, depending on the risk assessment.

(3) Security of stored technical equipment containing classified information

(a) Top secret is provided by type 5 in accordance with Annex 1 to this Decree;

(b) The secret shall be provided by at least type 4 according to Annex 1 to this Decree;

(c) Confidential treatment shall be provided at least by type 3 in accordance with Annex 1 to this Decree;

(d) Reserved shall be provided to the extent specified by or by the responsible person.

(4) The scope of the application of physical safety measures to ensure technical equipment is laid down in the physical safety project. The content and form of the physical safety project shall apply mutatis mutandis.

§ 6

Scheme measures

(1) The framework measures are:

(a) the establishment of the authorisation of persons and means of transport to enter the premises, the establishment of the authorisation of persons to enter the secure area and the area of procedure and the way in which those authorisations are checked;

(b) control measures when entering the premises, secure areas and negotiating areas and how they are controlled;

(c) the conditions and manner of checking the movement of persons in the building, the secure area and the negotiating area and the means of checking and transmitting classified information from the building, the secure area and the negotiating area;

(d) the system of key handling and means of identification, in particular the method of marking, allocation, storage and registration;

(e) the system of handling and use of technical equipment;

(f) the regime for the movement of classified information in an object, a secure area and a negotiating area.

(2) Point values of the regime measures are set out in Annex 1 to this Decree.

§ 7

Movements of persons and means of transport

(1) Authorisations to enter an object, a secure area or a negotiating area shall be issued by the responsible person or by the authorised person. An authorisation to enter a secure category category may be issued to a person who is instructed and is the holder of a notice of compliance with the conditions for access to classified information of a classified classification level Reserved, a natural person certificate or a person who has access to classified information of a classified classification level Reserved under § 58a (1) of the Act. The authorisation to enter a secured category category Confidential or higher or a negotiating area may be issued to a person who is instructed and holds a certificate of a natural person for an appropriate or higher level of secrecy. Authorisations to enter a secure category area Reserved or higher or to the negotiating area may be issued to a person who has access to classified information under Paragraph 58 (1) of the Act. The list of persons authorised to enter the category Confidential, Secret or Top Secret, to the secure area and to the negotiating area, and the list of the means of transport authorised to enter the category Confidential, Secret or Top Secret shall be deposited with the responsible person or the person authorised by him or her, or stored in another demonstrable way. Where access under this paragraph is also aimed at access to classified information of a foreign authority or to classified information of a foreign authority requiring a special treatment regime, it may be granted only in accordance with the requirements of that foreign authority.

(2) Persons not authorised to enter separately may enter an object of the category Confidential, Secret or Top Secret, Secured Area or negotiating area only with the escort of a person authorised to enter the object, a secure area or a negotiating area, provided that the entry is necessary and does not interfere with the protection of classified information.

(3) An entry check shall be carried out at the entrance to the confidential, secret or top secret category of the building and data records shall be kept for persons not authorised to enter the building and the accompanying visiting arrangements shall be mandatory. An entry check is carried out at the entrance to the secure category area Reserved, which is located in the category Object Reserved.

(4) Upon entry of persons without authorisation to enter a category of Top Secret Object, they shall be inspected by equipment to search for dangerous substances or articles.

§ 8

Key handling and identification mode

(1) The key handling regime and the means of identification determine the system and the method of marking, allocation and surrender, their storage and registration, the deposit of duplicates and the way in which they are used.

(2) Keys and means of identification for the negotiating area, as well as for a secure area and storage facility where classified information is stored in a confidential or higher level, must be marked, stored in a way that allows for the control of their use and their release shall be subject to registration. With the keys, the responsible person or the authorised person shall have the keys.

(3) The key handling regime and the means of identification for the secure area and for the storage facility where classified classified information is stored shall be determined by the responsible person or by the authorised person.

(4) The Secured Area and the negotiating area must be locked in the absence of persons authorised to enter the Secured Area or the negotiating area separately. In the absence of persons having access to classified information7), the storage facility must be locked. Persons who have keys and means of identification from secure areas, negotiating areas and storage facilities shall store them in the premises unless the responsible person or the authorised person determines another place of deposit.

(5) The loss of keys and means of identification must be notified without delay to the responsible person or to the person authorised by him who ensures the correction.

§ 9

Security

Point values of the individual types of surveillance on the premises are set out in Annex 1 to this Decree.

§ 10

Verification of physical safety measures and risk assessment

(1) Verification that the individual physical security measures and risk assessment applied correspond to the physical security project and the legislation on the protection of classified information shall be carried out on an ongoing basis by the responsible person or by the delegate, but at least every 12 months.

(2) The condition for the verification referred to in paragraph 1 in the case of the technical means referred to in Paragraph 30 (1) of the Act is that the functional examination referred to in Annex 1 to this Decree be carried out.

(3) Risk assessment is carried out

(a) identifying the levels of classified information and identifying the amount of classified information that occurs or will occur in the premises, in particular as a result of disclosure or misuse;

(b) a description and evaluation of the threats to which such classified information is exposed;

(c) description and assessment of the vulnerability of classified information to such threats;

(d) determining the level of risk, such as "small," "medium" or "large," on the basis of an assessment of the threats and vulnerability of classified information.

(4) In the event of a change in physical security measures, the responsible person or the authorised person shall immediately ensure compliance with the physical security project.

(5) The structure of the physical security project is set out in Annex 1 to this Decree.

§ 11

Forms of application for certification of technical means

(1) The application for certification of a technical device shall contain:

(a) identification of the applicant

1. by the trading firm, name, registered office and identification number where the applicant is a legal person,

2. by a trading firm, or by name and surname, or, where appropriate, by a different addition, permanent residence and place of business, if different from permanent residence, date of birth and identification number, if the applicant is a natural person who is an entrepreneur; or

3. the name, registered office, identification number and the name and surname of the responsible person, if applicable,

(b) the list of technical means and the list of documentation submitted.

(2) The application referred to in paragraph 1 shall be accompanied by the following dossier:

(a) specification and description of the technical device;

(b) a certificate of conformity issued on the applicant in accordance with paragraph 1 (a) - not required for a single technical device;

(c) an assessment under Paragraph 46 (14) of the Act.

§ 12

The period of validity of the certificate shall be determined by the Office for a maximum period of validity of the opinion provided for in Article 46 (14) of the Act.

§ 13

The model of the technical device certificate is set out in Annex 2 to this Decree.

§ 14

The technical means provided for in Paragraph 30 (1) of the Act may be used after the expiry of their certificates in the manner and under the conditions set out in Annex 1 to this Decree.

§ 15

Forms of application for the conclusion of an activity contract

The application for the conclusion of a contract of activity 9) contains:

(a) identification of the applicant pursuant to Article 11 (1) (a);

(b) the name and surname of the applicant's contact officer and contact details;

(c) identification of the relevant professional workplace of the applicant (subject of activity and detailed specification of the location of the assigned workplace, name and surname of the contact worker and contact links),

(d) the specifications of the activities to be carried out under the contract for securing the activity;

(e) an extract from the Commercial Register or Trade Register and a certified copy of the valid decision or certificate:

1. Decision granting an authorisation to which the scope of conformity assessment activities includes the technical means (technical means) referred to in Section 30 (1) of the Act, issued by the Office for Technical Standardisation, Metrology and State Examination10),

2. Accreditation certificate including an annex in which the subject-matter of accreditation includes the certification of the technical means (technical means) referred to in Section 30 (1) of the Act issued by the Czech Accreditation Institute (11); or

3. Certificate of accreditation, including an annex in which the subject of accreditation includes the carrying out of tests on the technical device (s) referred to in Section 30 (1) of the Act, which is issued by the Czech Accreditation Institute 11).

§ 16

Efficacy

This Decree shall take effect on 1 January 2006.

Director:

Mgr. Mareš v. r.

Příloha č. 1

Annex No 1

1. SAFE OBJECTS AND THEIR LOCKS

1.1. SAFEGUARD OBJECTS

1.1.1. Úschovný objekt typ 4:
	SS1 = 4 body

The Type 4 storage facility is certified by the National Security Authority ("the Office ') and complies with the requirements of safety class II or higher according to EN 11431 of January 2020 Safety Storage Objects - Requirements, Classification and Methods of testing for resistance to burglary - Part 1: Locker safes, safe doors and chamber vaults.

In accordance with ČSN EN 1143-1, the storage object type 4 must be fitted with a minimum class lock A according to ČSN EN 1300 of May 2024 Safety storage objects - Classification of locks with high security due to their resistance to unauthorised opening (type 2 lock, point 1.2.3. of the Annex).

1.1.2. Úschovný objekt typ 3:
	SS1 = 3 body

Type 3 storage facility is certified by the Office and meets the requirements of the safety class I according to ČSN EN 1143-1.

In accordance with ČSN EN 1143-1, the type 3 storage object shall be fitted with a minimum class A lock according to EN 1300 (type 2 lock, paragraph 1.2.3. of the Annex).

1.1.3. Úschovný objekt typ 2:
	SS1 = 2 body

The Type 2 storage facility is certified by the Office and meets the requirements of safety class 0 according to ČSN EN 1143-1.

In accordance with ČSN EN 1143-1, the Type 2 storage object shall be fitted with a minimum Class A lock according to EN 1300 (type 2 lock, paragraph 1.2.3. of the Annex).

1.1.4. Úschovný objekt typ 1:
	S1 = 1 bod

The type 1 storage object is an inseparable steel housing of a solid structure, its door cap is equipped with a three-sided distribution mechanism and a lock. The door cap is self-locking in a closed state.

The Type 1 storage object is not certified by the Office. The conformity of these storage facilities with the above requirements shall be assessed by the responsible person or by the authorised person. The conformity assessment report shall become part of the physical security project.

1.1.5. Úschovný objekt typ 1A:
	S1 = 1 bod

The Type 1A storage facility is certified by the Office and meets, including the locking system, the requirements of the safety class Z1 according to the CSN 91 6012 of December 2001 Safety storage facilities - Requirements, classification and methods of testing for resistance to break-ins - Safety safes with basic safety.

1.1.6. Úschovný objekt typ 1B:
	S1 = 2 body

The 1B storage object is certified by the Office and meets the requirements of the Z2 security class according to ČSN 91 6012, including the locking system.

1.1.7. Úschovný objekt typ 1C:
	S1 = 3 body

The 1C storage object is certified by the Office and meets the requirements of the Z3 security class according to ČSN 91 6012, including the locking system.

1.2. LOCATION OF SAFE OBJECTS

1.2.1. Zámek typ 4:
	SS2 = 4 body

Type 4 lock is certified by the Office as part of the certification of the storage facility and meets the requirements of safety class C according to ČSN EN 1300.

1.2.2. Zámek typ 3:
	SS2 = 3 body

Type 3 lock is certified by the Office as part of the certification of the storage facility and meets the requirements of safety class B according to EN 1300.

1.2.3. Zámek typ 2:
	SS2 = 2 body

Type 2 lock is certified by the Office as part of the certification of the storage facility and meets the requirements of safety class A according to ČSN EN 1300.

Note to paragraph 1:

Storage objects equipped with anchors are anchored.

Where construction conditions do not allow anchoring, a spatial solution shall be used or technical means shall be deployed which make tampering with the storage object impossible or unwarranted.

Storage objects assessed by the Authority outside the certification procedure are type 2.

Conversion table of the storage object point evaluation:

Typ úschovného objektu	Stupeň utajení, pro který byla schválena způsobilost, je vypsán slovy	Bodová hodnota SS1	Bodová hodnota SS2
Typ úschovného objektu	do 31. 12. 1999	Bodová hodnota SS1	Bodová hodnota SS2
Typ 4	PŘÍSNĚ TAJNÉ	4 body	2 body
Typ 3	TAJNÉ	3 body	2 body
Typ 2	DŮVĚRNÉ	2 body	2 body

2. SECURITY AREAS AND THEIR cloaking SYSTEMS

In this paragraph, mechanical means of defence shall mean, in particular, locks, doors, bars, glass and other safety structural and construction features other than storage objects (Annex I, paragraph 1).

The following dimensions shall be provided with mechanical means of defence:

Průlezný otvor	Rozměr
obdélník	400 mm x 250 mm
elipsa	400 mm x 300 mm
kruh	průměr 350 mm

If the leaky opening is secured by a mechanical means with one or more openings (e.g. grate), these openings shall not allow the passage of an ellipse-shaped template of 250 mm x 150 mm.

2.1. Secured Areas

The identification of the type of secured area is given by the least resistant element of its boundary.

The Secured Area of the category Confidential, Secret and Top Secret must be protected against eavesdropping from outside the area.

2.1.1. Zabezpečená oblast typ 4:
	SS3 = 4 body

The walls, floors and ceilings shall have the following construction structure:

(a) brick or limestone blocks, poroconcrete blocks, thickness > 300 mm;

(b) of reinforced concrete thickness exceeding 150 mm; or

(c) a safety construction with a class of resistance of at least RC4.

The scoring of the other mechanical means shall meet the SS3 = 4. Mechanical devices shall not show signs of damage or wear which would make it impossible to identify attempts at unauthorised entry.

Windows, doors and other closures shall comply with the requirements of safety class RC 4 or class RC 5 according to EN 1627 of March 2022 Windows, doors, closures - Resistance to forced entry - Requirements and classification.

2.1.2. Zabezpečená oblast typ 3:
	SS3 = 3 body

The walls, floors and ceilings shall have the following construction structure:

(a) brick or limestone blocks, poroconcrete blocks, thickness > 150 mm;

(b) reinforced concrete thickness exceeding 100 mm; or

(c) a safety construction with a class of resistance of at least RC3.

The scoring of other mechanical means of defence shall meet at least the value of SS3 = 3. Mechanical devices shall not show signs of damage or wear which would make it impossible to identify attempts at unauthorised entry.

Windows, doors and closures shall meet the requirements of the safety class RC 3 according to EN 1627.

2.1.3. Zabezpečená oblast typ 2:
	SS3 = 2 body

The walls, floors and ceilings shall have the following construction structure:

(a) brick or limestone blocks, poroconcrete blocks, thickness between 100 and 150 mm;

(b) reinforced concrete thickness up to 100 mm; or

Citation	Decree No. 528 / 2005 Coll., on Physical Safety and Certification of Technical Devices
Regulation Type	Order
Author	-
Collection	Code of Laws

Date of Promulgation	29.12.2005
Effective from	01.01.2006
Effective until	-
Status	Valid

Decree No 528 / 2005 Coll.

Decree on physical safety and certification of technical means

Contents

§ 1

§ 2

§ 3

§ 4

§ 5

§ 6

§ 7

§ 8

§ 9

§ 10

§ 11

§ 12

§ 13

§ 14

§ 15

§ 16

Příloha č. 1

Contents

Comments 0

Regulation Information

Partner Websites

Favorites

Browsing History