The Civil Liberties Protection Officer
Rebecca J. Richards is the Civil Liberties Protection Officer for the Office of the Director of National Intelligence. In that capacity, she leads the ODNI's Office of Civil Liberties, Privacy and Transparency, and reports directly to the Director of National Intelligence.
Civil Liberties and Privacy Intelligence Community Enterprise Strategy 2019-2024
Provides the CLPT's strategic roadmap for enhancing the IC’s framework for protecting civil liberties and privacy, highlighting four high-level goals relating to civil liberties and privacy to obtain the trust of the American people. The goals focus on protecting civil liberties and privacy through policy implementation, ensuring compliance with the Constitution and laws, handling complaints of possible abuses of civil liberties, and providing transparency.
Intelligence Community Directive 107: Civil Liberties, Privacy, and Transparency
This Directive establishes Intelligence Community policy for protecting civil liberties and privacy and for providing greater transparency that enhances public understanding of, and trust in, the IC mission, its governance framework, and intelligence activities as defined in EO 12333.
Chief Information Officer
IC Technical Specifications
Access Rights and Handling
Overview
This XML Data Encoding Specification for Access Rights and Handling (ARH.XML) defines detailed implementation guidance for using Extensible Markup Language (XML) to encode ARH data.
Information sharing within the national intelligence enterprise will increasingly rely on information assurance metadata (including enterprise data headers) to allow interagency access control, automated exchanges, and appropriate protection of shared intelligence. A structured, verifiable representation of security metadata bound to the intelligence data is required in order for the enterprise to become inherently "smarter" about the information flowing in and around it. Such a representation, when implemented with other data formats, improved user interfaces, and data processing utilities, can provide part of a larger, robust information assurance infrastructure capable of automating some of the management and exchange decisions today being performed by human beings.
The Intelligence Community (IC) has standardized the various classification and control markings established for information sharing within the Information Security Markings (ISM) and Need-To-Know (NTK) XML specifications of the Intelligence Community Enterprise Architecture (ICEA) Data Standards. The IC Access Requirements and Handling XML specification combines elements of the ISM and NTK specifications and extends them to access rights management and handling needs.
Technical Specification Downloads
Latest Approved Public Release:
- XML Data Encoding Specification for Access Rights and Handling (V3 - Standalone Package (Release Date: 6 Sep 2013))
- XML Data Encoding Specification for Access Rights and Handling (V3 - Light Package (Release Date: 6 Sep 2013))
Chief Information Officer
IC Technical Specifications
REST Service Encoding Specification for Security Markings
Overview
This technical specification defines the syntax, protocol and conventions for applying security metadata or notices to a request or a response message conveyed using the Hypertext Transfer Protocol (HTTP).
Adding security metadata and notices to messages provides the capability to route and filter messages based on classification and other security markings. By processing security metadata such as portion markings and tearlines, access control points have the ability to filter data based on the formal authorization credentials of authenticated users.
This specification provides guidance for the implementation of applying such metadata to messages using HTTP or Representational State Transfer (REST)-based services.
Technical Specification Downloads
Latest Approved Public Release:
Chief Information Officer
IC Technical Specifications
Information Transport Service Organizational Messaging
Overview
This XML Data Encoding Specification for Information Transport Service Organizational Messaging ITS/OM defines detailed implementation guidance for using Extensible Markup Language (XML) to encode ITS/OM data. The ITS OM provides the Intelligence Community (IC) with a common set of services, architectural infrastructure, operating environment, and maintenance support to seamlessly transport information across IC-unique domains and via cross-domain systems, to other domains such as the DOD and other U.S. government agencies.
The creation of this XML standard provides a common programming schema for the IC messaging community. The extensive and consistent use of XML will improve data discovery, data sharing, and system interoperability.
Technical Specification Downloads
Latest Approved Public Release:
- Information Transport Service Organization Messaging (V2015-AUG - Standalone Package)
- Information Transport Service Organization Messaging (V2015-AUG - Convenience Package)
- Information Transport Service Organization Messaging (V2015-AUG - Light Package)
Chief Information Officer
IC Technical Specifications
REST Service Encoding Specification for Identity Propagation
Overview
This technical specification applies to non-SOAP-based web services over HTTP and provides guidance for REST-based services in an environment that does not utilize a Security Token Service (STS).
This specification provides a mechanism to track a sequence of requestor identifier(s), from the initiating requestor to the final called service, providing "end-to-end" visibility of the requestor(s) in the transaction sequence.
The solution provided by this specification provides a mechanism for conveying identity in an interoperable manner. The specification does not by itself provide integrity, confidentiality or non-repudiation of the requestor identity or identities over the service chain. This specification will, however, address how these security goals can be accomplished by using this specification in combination with other security mechanisms.
Technical Specification Downloads
Latest Approved Public Release: