My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
LS to WIN ABIS CRD00160 Kittitas Co SO - fully executed
>
Meetings
>
2023
>
04. April
>
2023-04-04 10:00 AM - Commissioners' Agenda
>
LS to WIN ABIS CRD00160 Kittitas Co SO - fully executed
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
3/30/2023 12:10:57 PM
Creation date
3/30/2023 12:10:37 PM
Metadata
Fields
Template:
Meeting
Date
4/4/2023
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Supporting documentation
Supplemental fields
Item
Request to Acknowledge the User Agreement between Washington State Patrol and Kittitas County Sheriff’s Office for Livescan to WIN ABIS Transmission of Biometric Data
Order
16
Placement
Consent Agenda
Row ID
101486
Type
Agreement
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
8
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
WSPContractNo.CRDOO160WSPrecognizesthattheFBICJISSecurityPolicyisaminimumstandardandthatcircumstancesareencounteredthatcreateaneedforadditionalsecuritymeasures.ThesestandardsareinadditiontothecurrentCJISSecurityPolicy.a.Livescandeviceswillcomplywiththefollowingsecurityrequirements:i.UnauthorizedunescortedphysicalandlogicalaccesstoLivescandeviceswillberestricted.Insomeenvironments,itmightnotberealistictoexpectabsolutecontroloveraLivescandevice100%ofthetime.Intheseenvironments,acceptableriskmitigationswillbeprovidedinlieuof100%controlthroughescortedaccess.TheWSPreservestherighttoobjecttoequipmentsecuritymeasuresandtosuspendorwithholdserviceuntilsuchmattersarecorrectedtothereasonablesatisfactionofWSP.ii.Livescandeviceswillbesinglepurposeworkstations.Thatis,applicationsusedontheworkstationwillbeusedonlyforfunctionsinvolvingLivescans.iii.WhenCJlistransmittedoutsidetheboundaryofthephysicallysecurelocation,thedatashallbeimmediatelyprotectedviaencryption.Whenencryptionisemployed,thecryptographicmoduleusedshallbeFIPS140-2certifiedanduseasymmetriccipherkeystrengthofatleast128bitstrengthtoprotectCJI.iv.Livescandeviceswillhaverestrictedinternetaccess(i.e.authorizedvendorsupport).v.Livescandeviceswillnothostemailclientsthatcanreceiveemailfromtheinternet.vi.LivescandeviceswillnotbeusedtodisplayoreditdocumentsexceptforreportsproducedbytheLivescandevice(wordprocessing,spreadsheets,PDF's,etc.),vii.Livescandeviceswillnotbeconnectedtoanyexternalmedia,exceptforthepurposeofperformingsoftwareandapplicationupgrades.ThemediashouldbeusedonlyonLivescandevices,Ifthemediaisusedonanon-Livescandevice,itwillbeerasedandanewimagewillbeplacedonthemediabeforeitisusedwithaLivescandevice.viii.LivescandeviceswillbeprotectedfromworkstationsthatdohavegeneralworkstationfunctionsbyfirewallsthatprohibitexternalaccesstoLivescandevices,ix.TheLivescanwillbelocatedinanareathatisphysicallyrestrictedtothepublicorotherunauthorizedusers.WhentheLivescanisnotinuseandleftunattended,itmustbeloggedoffandpasswordprotected.InthecasesofportableLivescans,theLivescanwillnotbeleftunattendedinanon-securearea.b.AllsecurityexceptionsmustbedocumentedinwritingandapprovedbyWSPandWIN.c.Thethreatvectorscurrentlyaddressedare:i.Physicalaccessissuesii.Multiplelsharedfunction(duetosecurityissuesraisedbyco-residentapplications)iii.UnrestrictedinternetaccessApprovedastoFormbytheWashingtonAttorneyGeneral2018LivescantoWINABISUserAgreement05/08/2018Page2of7
The URL can be used to link to this page
Your browser does not support the video tag.