Chief Information Officer
IC Technical Specifications
Rollup Guidance for ISM
Overview
This Roll-up Guidance for ISM (ISM-Rollup.XML) provides information on the Roll-up processes for XML Data Encoding Specification for Information Security Markings (ISM.XML) markings. This implementation uses Extensible Stylesheet Language (XSL) to determine what the roll-up security marking for documents marked with ISM.XML should be.
This specification is maintained by the IC Chief Information Officer via the Data Standards Coordination Activity (DSCA) and Common Metadata Standards Tiger Team (CMSTT).
Technical Specification Downloads
Latest Approved Public Release:
- Roll-up Guidance for ISM (V2021-NOV - Standalone Package)
- Roll-up Guidance for ISM (V2021-NOV - Convenience Package)
- Roll-up Guidance for ISM (V2021-NOV - Light Package)
Mission Requirements
This document provides general and prescriptive guidance on rolling-up ISM.XML markings on a given Extensible Markup Language (XML) document.
Chief Information Officer
IC Technical Specifications
Unified Identity Attribute Set - Attribute Practice Compliance Statements
Overview
This Attribute Practice Compliance Statements for the Unified Identity Attribute Set (UIAS-APCS) provides concise direction to Intelligence Community (IC) elements required by Intelligence Community Standard (ICS) 500-30, Enterprise Authorization Attributes: Assignment, Authoritative Sources, and Use for Attribute-Based Access Control Of Resources, to produce an Attribute Practice Statement (APS) for each Attribute Service (AS) of an IC element.
Compliance with an Attribute Practice Compliance Statement (APCS) document ensures interoperability and consistently applied attributes in dynamic Information Technology (IT) environments including the Intelligence Community Information Technology Enterprise (IC ITE). An APCS alleviates the need for each IC element to produce an APS and ensure compliance with ICS 500-30, and IC Enterprise Attribute Exchange Between IC Attribute Services Unified Identity Attribute Set (UIAS.XML).
This UIAS-APCS has a dependency on UIAS.XML. Citations for the Controlled Vocabulary Enumeration (CVE)s are covered in the UIAS.XML technical specification and should be complied with in accordance with the needs and practices of the responding organization, and that such compliance should also designate the reasoning for compliance approach or its variations. The UIAS.XML MUST be consulted in conjunction with this document.
This specification is maintained by the IC Chief Information Officer via the Data Standards Coordination Activity (DSCA) and Common Metadata Standards Tiger Team (CMSTT).
Technical Specification Downloads
Latest Approved Public Release:
- Attribute Practice Compliance Statements for the Unified Identity Attribute Set (V2021-NOV - Standalone Package)
- Attribute Practice Compliance Statements for the Unified Identity Attribute Set (V2021-NOV - Convenience Package)
- Attribute Practice Compliance Statements for the Unified Identity Attribute Set (V2021-NOV - Light Package)
Mission Requirements
As the IC environment evolves, the user base grows with more diverse membership with unique data sources per member entity. The IC's move to a simplified architecture for access control and authorization is predicated on ABAC and an IC Authorization service being trustworthy. This drives an increased need to better understand attribute provisioning and ensure that all IC elements provision and maintain access control and authorization related attributes consistently. This document specifies compliance statements to confirm that enterprise identity attributes are consistent with the attributes defined in the UIAS.XML technical specification and that IC elements maintain attributes consistent with Appendix C of ICS 500-30, Operation of ASs and AAS. Compliance with the ICS 500-30 will ensure that all IC elements provision and maintain attributes for availability, accuracy, consistency, privacy, confidentiality, and integrity across persona lifecycles.
Chief Information Officer
IC Technical Specifications
XML Data Encoding Specifications for Production Metrics Assertion
Overview
This XML Data Encoding Specification for Production Metrics Assertion (PMA.XML) defines detailed implementation guidance for using Extensible Markup Language (XML) to encode PMA data. This Data Encoding Specification (DES) defines the XML elements and attributes, associated structures and relationships, mandatory and cardinality requirements, and permissible values for representing PMA data assertion concepts using XML within the use of a Trusted Data Format (TDF) Object or Collection.
This specification is maintained by the IC Chief Information Officer via the Data Standards Coordination Activity (DSCA) and Common Metadata Standards Tiger Team (CMSTT).
Technical Specification Downloads
Latest Approved Public Release:
- XML Data Encoding Specifications for Production Metrics Assertion (V2019-MARr2019-SEP - Standalone Package)
- XML Data Encoding Specifications for Production Metrics Assertion (V2019-MARr2019-SEP - Convenience Package)
- XML Data Encoding Specifications for Production Metrics Assertion (V2019-MARr2019-SEP - Light Package)
Mission Requirements
This DES is designed to fulfill a number of requirements in support of the transformational efforts of the IC. These requirements include:
- Capturing one or more Production Metrics where each of them captures the Actor (who), Subject (what), and optional Location (where) to provide intelligence producers the ability to more accurately track funding for DDII intelligence gathering.
- Capturing one or more Production Metrics where each of them captures the Actor (who), Subject (what), and optional Location (where) to enable intelligence producers to mark data in a way that improves DDII's ability to measure collected information.
Both enterprise needs and requirements for this specification can be found in the following policies and implementation guidance:
500 Series:
- Intelligence Community Directive (ICD) 500, Director Of National Intelligence Chief Information Officer
- ICD 501, Discovery and Dissemination or Retrieval of Information within the IC
- Intelligence Community Standard (ICS) 500-20, IC Enterprise Standards Compliance
Chief Information Officer
IC Technical Specifications
XML Data Encoding Specification for Intelligence Community Enterprise Data Header
Overview
This XML Data Encoding Specification for Enterprise Data Header (EDH.XML) defines detailed implementation guidance for using Extensible Markup Language (XML) to encode EDH data. This Data Encoding Specification (DES) defines the XML elements and attributes, associated structures and relationships, mandatory and cardinality requirements, and permissible values for representing enterprise data header data concepts using XML.
This specification is applicable to the Intelligence Community (IC) and information produced by, stored, or shared within the IC. This DES may have relevance outside the scope of intelligence; however, prior to applying outside of this defined scope, the DES should be closely scrutinized and differences separately documented and assessed for applicability.
This specification applies to the IC, as defined by the National Security Act of 1947, as amended; and such other elements of any other department or agency as may be designated by the President or designated jointly by the Director of National Intelligence (DNI) and the head of the department or agency concerned, as an element of the IC. Joint and Coalition forces may use this specification, but it is not required.
Compliance with this specification is measured against all aspects of the technical and documentary artifacts contained within the specification release package.
This specification is maintained by the IC Chief Information Officer via the Data Standards Coordination Activity (DSCA) and Common Metadata Standards Tiger Team (CMSTT).
Technical Specification Downloads
Latest Approved Public Release:
- XML Data Encoding Specification for Intelligence Community Enterprise Data Header (V2019-MAR - Standalone Package)
- XML Data Encoding Specification for Intelligence Community Enterprise Data Header (V2019-MAR - Convenience Package)
- XML Data Encoding Specification for Intelligence Community Enterprise Data Header (V2019-MAR - Light Package)
Mission Requirements
Information sharing within the national intelligence enterprise will increasingly rely on information assurance metadata (including enterprise data headers) to allow interagency access control, automated exchanges, and appropriate protection of shared intelligence. A structured, verifiable representation of security metadata bound to the intelligence data is required in order for the enterprise to become inherently "smarter" about the information flowing in and around it. Such a representation, when implemented with other data formats, improved user interfaces, and data processing utilities, can provide part of a larger, robust information assurance infrastructure capable of automating some of the management and exchange decisions today being performed by human beings.
The Intelligence Community (IC) has standardized the various classification and control markings established for information sharing within the Information Security Markings (ISM) specification. The IC Enterprise Data Header XML specification further expands on this body of work, adapting and extending it as necessary to meet mission-unique needs. By specifying a data object's header information required for exchange on the IC Enterprise, EDH ensures a secure method of information sharing and discovery, supporting use cases such as the IC Cloud.
Chief Information Officer
IC Technical Specifications
Revision Recall
Overview
This IC enterprise data encoding specification defines detailed implementation guidance for using XML to encode RevRecall data. It defines the XML elements and attributes, associated structures and relationships, mandatory and cardinality requirements, permissible values, and constraint rules for representing RevRecall data concepts using XML.
This standard supports Executive Order (EO) 13526, Classified National Security Information which "prescribes a uniform system for classifying, safeguarding, and declassifying national security information," across national security disciplines, networks, services, and data.
Compliance with this specification is measured against all aspects of the technical and documentary artifacts contained within the specification release package.
The IC Chief Information Officer maintains this specification via the Data Coordination Activity (DCA) and Common Metadata Standards Tiger Team (CMSTT).
Technical Specification Downloads
Latest Approved Public Release:
- XML Data Encoding Specification for Revision Recall (V2021-NOVr2022-MAY - Standalone Package)
- XML Data Encoding Specification for Revision Recall (V2021-NOVr2022-MAY - Convenience Package)
- XML Data Encoding Specification for Revision Recall (V2021-NOVr2022-MAY - Light Package)
Mission Requirements
This specification expresses information related to the revision and recall of intelligence products. This information allows recipients to be aware of revisions and recalls and to take necessary actions in regards to previous versions.
This specification is intended to meet the requirements put forth in the Memorandum for Distribution signed by Negroponte on August 5, 2005. This includes declaring the title or subject of the intelligence product being revised or recalled, type of revision or recall, the date the revision or recall was issued, the reason for its issuance, and any required actions to be taken as a result of its issuance.