All Australian Government agencies are required to implement protective markings for email by 30 March 2007. Protective markings are to be applied to all emails, regardless of whether the email is human or system originated.
Compliance in a Notes/Domino email environment means that regular emails, meeting invitations, appointments and system-generated emails must have a compliant security classification. Preemptive Consulting offers the only Notes/Domino solution for protective markings that meets these rigorous requirements. No other vendor or outsourcer has a licence to use our patented technology for protective markings compliance.
ACSI33 and AGIMO Guidance
In the context of protective markings, Preemptive Consulting would like to draw your attention to the following key sections of ACSI33 and the AGIMO implementation guide for email protective markings:
• Section 3.5.56 of ACSI33 states “Agencies must ensure that protective markings are applied to all emails containing classified information that have been written or forwarded by agency staff, or automatically generated by an agency system and are leaving the agency.” In addition, “Agencies should ensure that all automatically generated emails remaining within the agency are marked with a protective marking.”
• Section 3.5.58 of ACSI states “Agencies must ensure that all agency-originated emails that do not contain any classified information are given a protective marking to indicate this.”
• The AGIMO implementation guide for email protective markings states in section 2.2 that “The protective marking must be included as part of the ‘Subject:’ line. If it is only included as part of the email headers it will not be visible to all recipients unless they have a modified email client that is capable of displaying this extra information. This is particularly so for portable wireless devices including BlackBerry.”
Notes/Domino environments uses email for a wide variety of purposes, including traditional email, meeting invitations, system generated warnings, application- generated notifications, return receipts, out-of-office replies and delivery notifications.
Preemptive Consulting believes that it is not possible to achieve protective marking compliance by simply modifying the mail template. The design of Domino calendaring and scheduling, for instance, means that advanced techniques are required in order to achieve compliance.
As a simple example, when you accept a meeting invitation, any protective marking that was at the end of the invitation subject is not automatically moved to end of your acceptance. The AGIMO standard (section 2.5.1) requires that the security classification is at the end of the subject field, not the beginning or middle. This is just one default feature of Domino that can lead to non-compliance.
Our protective marking software is licensed on a per user basis. Customers also get access to our Domino server based modules that ensure system and SMTP based email messages have markings in the correct location. You can deploy this software on as many Domino servers as is required to support your licensed user count.
Our protective marking software licenses are portable acrosss Notes and Outlook while you maintain your TSS subscription with us. Buy for Notes today and if you move to Outlook tomorrow there will be no additional licensing charges.
Preemptive Consulting Can Help
Preemptive Consulting understands the deeply embedded nature of email within Notes/Domino environments. Our unique patented technology ensures that all email is compliant with AGIMO, PSM and ACSI33 requirements. We have already helped several large Federal Government agencies meet their protective markings obligations.
Preemptive Consulting is fully accredited IBM Business Partner for Lotus Domino, and is a 100% Australian owned company. Please don’t hesitate to contact us if we can be of further assistance.