COMPUTER SECURITY WORKING GROUP OF THE UNITED STATES INTELLIGENCE BOARD SECURITY COMMITTEE

Declassified in Part - Sanitized Copy Approved for Release 2013/08/09: CIA-RDP89B01354R000400550026-0 IBSEC-CSWG-M-3 16 July 1968 COMPUTER SECURITY WORKING GROUP? OF THE UNITED STATES INTELLIGENCE BOARD SECURITY COMMITTEE Minutes of Meeting Held at CIA Headquarters Langley, Virginia 16 July 1968 1. The third meeting of the Computer Security Working Group of the USIB Security Committee was held on 16 July 1968 between 1330 and 1530 hours in Room 4 E 64, CIA Headquarters Building. In attendance were: Mr. Richard Kitterman, State Mr. Thomas Eccleston, Army Lt. Col. Richard H. Koenig, Army Mr. Robert C. Allen, Navy Lt. Col. Hays Bricka, Air Force Mr Raymond T Brady AFC. Z. In addition, both of CIA, were present for the initial COINS briefing. 3. At the beginning of the meeting its security level was announced as through TOP SECRET, non-codeword. 4. The first half of the meeting was taken up by a briefing on the Community On-line Intelligence System (COINS), provided by -ET CROUP I Excluded from automatic downgrading and _ _declassification STAT STAT STAT STAT STAT STAT Declassified in Part - Sanitized Copy Approved for Release 2013/08/09: CIA-RDP89B01354R000400550026-0 Declassified in Part - Sanitized Copy Approved for Release 2013/08/09: CIA-RDP89B01354R000400550026-0 (,) S-E-C-R-E-T the COINS Project Manager, In this STAT briefing not only touched upon the background to the STAT establishment of the COINS experiment and its current status, but also accented the security problems involved in the operation of the system. He .mentioned that those involved in the COINS Project are looking to the Defense Science Board Task Force and to the Security Committee for assistance in resolving security problems inherent in the COINS operation. The Working Group appreciated briefing. STAT 5. The minutes of the 2 July 1968 meeting were approved with a correction to paragraph 9 c. , which should read: "the physical arid communications security problems involved in the co-location of IDHS facilities and the command and control centers. " 6. Identification of Working Group Members: Members were reminded that formal nominations were due designating principal and alternate members to the Working Group. Most of these nominations have been received. The Chairman noted that he had received authorization from the Chairman of the Security Committee to initiate special clearance requests for Working Group members; he commented that he will submit these requests when all formal nominations have been received. It is anticipated that the clearance requests will go back to individual agencies for concurrence. 7. It was announced that the Chairman of the Security Committee had advised the Working Group Chairman that discussions had been held with Chairman of the Intelligence STAT Information. Handling Committee (IHC) concerning the plans of the IHC to address computer security problems. This discussion had resulted in agreement to relinquish the planned IHC STAT efforts in favor of Security Committee action. The Chairman further stated that the topic of computer security was again being placed on the IBSEC Agenda of its next meeting; the Working Group should be in a position to report on its activity to the Security Committee at this meeting, which probably will be scheduled in September. The Chairman commented that he would like to report to the Committee on tWD matters: (a) The suggested role of the Computer Security Working Group; 2 S-E-C-R-E-T Declassified in Part - Sanitized Copy Approved for Release 2013/08/09: CIA-RDP89B01354R000400550026-0 Declassified in Part - Sanitized Copy Approved for Release 2013/08/09 : CIA-RDP89B01354R000400550026-0 S-E-C-R-E-T (b) An initial identification of the problem areas in the ADP environment. 8. Identification of Computer Security Problem Areas: Members were reminded that submissions were due concerning the security problems and problem areas in the computer environment, as affecting individual member agencies. Several such submissions were received during the instant meeting. The Chairman expressed his plans to prepare a draft paper consolidating the problem area listings submitted by individual members. After appropriate Working Group coordination, this paper will serve as a report to the Security Committee. 9. Discussion of Proposed Working Group Charter: The Chairman distributed a draft working paper on the proposed role of the Computer Security Working Group; this paper represented the discussions held on this topic during the first two Working Group sessions. After members had an opportunity to review the document, suggestions were elicited. 10. Col. Koenig questioned the authority of the Working Group, as noted in the "goals" listed in paragraph 6, to achieve solutions and resolution of problem areas; he suggested that the Working Group had authority only to recommend such solutions. Other members of the Group accepted Col. Koenig's comments in this regard. 11. A discussion followed concerning the mechanics of implementation of security policy in the computer environment. ?Col. Koenig pointed out that the Army is concerned in setting forth policy applicable not only to its intelligence elements but also other components handling classified material. He suggested that such policy could best be implemented through an Executive Order. Mr. Brady, speaking for AEC, indicated that implementation of security policy in the ADP arena would best be initiated through a specific Executive Order. The heed for uniformity in this regard between USIB and non-USIB Government components was recognized; however, the Chairman called attention to the fact that the Security Committee's jurisdiction in at least some respects is limited to the USIB Community. He agreed to discuss this matter further with the Chairman, IBSEC 12. Mr. Brady suggested that as part of its "Charter" the Working Group should be able to maintain liaison with the U.S. 3 S-E-C-R-E-T Declassified in Part - Sanitized Copy Approved for Release 2013/08/09: CIA-RDP89B01354R000400550026-0 Declassified in Part - Sanitized Copy Approved for Release 2013/08/09: CIA-RDP89B01354R000400550026-0 c) 10' S-E-C-R-E-T Communications Security Board concerning communications security requirements in the ADP area; such liaison could be effected through the Security Committee. 13. The Chairman requested that members review again the draft paper on the proposed role of the Working Group and be prepared to discuss it further at the next meeting; it is hoped that this paper can be coordinated fully at that meeting and subsequently be submitted as a report to the Chairman, IBSEC. 14. The members were also requested to submit as soon as possible, if they had not already done so: a. Principal and Alternate membership nominations; b. Computer security problem area listings. 15. The next meeting of the Computer Security Working Group will be held at 1330 hours on 30 'July 1968 in Room 4E-64, CIA Headquarters. Chairman S-E-C-R-E-T STAT Declassified in Part - Sanitized Copy Approved for Release 2013/08/09: CIA-RDP89B01354R000400550026-0