7C

Question 1

___ is a subset of the Air Force Security Enterprise.

Answer 1

IP

Question 2

What does IP stand for?

Answer 2

Information Protection

Question 3

Information Protection consists of a set of three core security disciplines:

Answer 3

Personnel Security, Industrial Security, and Information Security

Question 4

Information Protection consists of a set of three core security disciplines (Personnel Security, Industrial Security, and
Information Security) used to:

Answer 4

• Determine military, civilian, and contractor personnel’s eligibility to access classified information or occupy a sensitive position (Personnel Security).
• Ensure the protection of classified information and controlled unclassified information (CUI) released or disclosed to industry in connection with classified contracts (Industrial Security).
• Protect classified information and CUI that, if subject to unauthorized disclosure, could reasonably be expected to cause damage to national security (Information Security).

Question 5

_____ is a core security discipline within IP that is designed to identify and protect classified national security information and CUI in accordance with DoD policy issuances.

Answer 5

Information Security (INFOSEC)

Question 6

Cryptographic systems of signals that contain sensitive or classified plain-text information. This carries what color signals?

Answer 6

Red Signals

Question 7

Cryptographic systems of signals that carry encrypted
information, or cipher-text. This carries what color signals?

Answer 7

Black Signals

Question 8

Red/Black Separation continues to be relevant for ____ cabling systems.

Answer 8

copper-based

Question 9

The following describes which core security principle?

Determines military, civilian, contractor eligibility to access classified.

Answer 9

Personnel Security

Question 10

The following describes which core security principle?

Protects classified/controlled unclassified information (CUI) released to contractors.

Answer 10

Industrial Security

Question 11

The following describes which core security principle?

Protects classified/controlled unclassified information (CUI).

Answer 11

Information Security

Question 12

Since 1967, the ___ ___ ___ ___ has provided the public the right to request access to records from any federal agency.

Answer 12

Freedom of Information Act (FOIA)

Question 13

It is often described as the law that keeps citizens in the know about their government.

Answer 13

FOIA

Question 14

Federal agencies are required to disclose any information requested under the FOIA unless it falls under one of ___ exemptions which protect interests such as personal privacy, national security, and law enforcement.

Answer 14

nine

Question 15

The following describes which FOIA exemption?

Information that is currently and properly classified.

Answer 15

Exemption 1

Question 16

The following describes which FOIA exemption?

Information that pertains solely to the internal rules and practices of the agency that, if released, would allow circumvention of an agency rule, policy, or statute, thereby impeding the agency in the conduct of its mission

Answer 16

Exemption 2

Question 17

The following describes which FOIA exemption?

Information specifically exempted by a statute establishing criteria
for withholding. The language of the statute must clearly state that the information will not be disclosed.

Answer 17

Exemption 3

Question 18

The following describes which FOIA exemption?

Information such as trade secrets and commercial or financial information obtained from a company on a privileged or confidential basis that, if released, would result in competitive harm to the company, impair the Government’s ability to obtain like information in the future, or impair the Government’s interest in compliance with
program effectiveness.

Answer 18

Exemption 4

Question 19

The following describes which FOIA exemption?

Inter- or intra-agency memorandums or letters containing information considered privileged in civil litigation. The most common privilege is the deliberative process privilege, which concerns documents that are part of the decision-making process
and contain subjective evaluations, opinions, and recommendations. Other common privileges are the attorney-client and attorney work product privileges.

Answer 19

Exemption 5

Question 20

The following describes which FOIA exemption?

Information, the release of which would reasonably be expected to
constitute a clearly unwarranted invasion of the personal privacy of individuals.

Answer 20

Exemption 6

Question 21

The following describes which FOIA exemption?

Records or information compiled for law enforcement purposes that meet certain criteria.

Answer 21

Exemption 7

Question 22

The following describes which FOIA exemption?

Certain records of agencies responsible for supervision of financial
institutions.

Answer 22

Exemption 8

Question 23

The following describes which FOIA exemption?

Geological and geophysical information (including maps) concerning
wells.

Answer 23

Exemption 9

Question 24

Information that is currently and properly classified shall be withheld from mandatory release in accordance with FOIA Exemption _.

Answer 24

Exemption 1

Question 25

The marking “__ __ __ __” (FOUO) is applied to information that can reasonably be expected to qualify for exemption under one or more of FOIA Exemptions 2 through 9

Answer 25

FOR OFFICIAL USE ONLY

Question 26

Information must be ____ to be designated FOUO

Answer 26

unclassified

Question 27

What does CUI stand for?

Answer 27

Controlled Unclassified Information

Question 28

Certain types of unclassified information require access and
distribution controls and protective measures to keep it secure.

Answer 28

CUI

Question 29

DoDI ______, Controlled Unclassified Information provides guidance
on the various types of CUI and their associated markings.

Answer 29

DoDI 5200.48

Question 30

CUI is government created or owned information that requires safeguarding or dissemination controls consistent with applicable laws, regulations, and government wide policies. CUI __ __ classified information.

Answer 30

is not

Question 31

CUI is a ____ (not a classification) applied to unclassified information that was exempt from mandatory release to the public under the FOIA.

Answer 31

designation

Question 32

A common example of information that is considered CUI is a ___ ___, which is a list of personnel assigned to a unit or flight that has their telephone numbers and addresses on it for cases of emergency.
The ___ ___ can be designated CUI because it qualifies under Exemption 6 of the FOIA, because the release of it would reasonably be expected to constitute a clearly unwarranted invasion of the personal privacy of individuals under the Privacy Act of 1974.

Answer 32

recall roster

Question 33

DoD legacy material will not be required to be ___ or ___ while it remains under DoD control or is accessed online and downloaded for use within the DoD.

Answer 33

re-marked or redacted

Question 34

However, any such document or new derivative document must be marked as CUI if the information qualifies as CUI and the document
is being…?

Answer 34

shared outside DoD

Question 35

DoD legacy marked information stored on a DoD access-controlled
website or database does not need to be remarked as ___, even if other agencies and contractors are granted access to such websites or databases.

Answer 35

CUI

Question 36

For Official Use Only (FOUO) is a ___ ___ used to indicate sensitivity based on agency policy or practice.

Answer 36

legacy marking

Question 37

All FOUO information was CUI, but not all CUI was ____.

Answer 37

FOUO

Question 38

FOUO was applied by the Department of Defense to unclassified information when disclosure to the public of that record, or portion thereof, would reasonably be expected to cause ___ ___ to an interest protected by one or more of FOIA Exemptions 2 through 9.

Answer 38

foreseeable harm

Question 39

Information that has been determined to qualify for CUI status shall be indicated by markings. Markings are to be applied at the time documents are ____ to properly protect the information.

Answer 39

created

Question 40

______ prescribes the management, access, handling, and denial of access to records within a system of records.

Answer 40

The Privacy Act of 1974

Question 41

An official system of records is a ___ ___ (hard copy and/or digital) that is authorized by law or Executive Order and controlled by an Air Force or lower-level directive that is needed to carry out an Air Force mission or function.

Answer 41

file system

Question 42

Any information that has a ___ ___ ___ of a citizen or alien and is in an official system of records is granted protection under the Privacy Act.

Answer 42

Social Security Number

Question 43

The Privacy Act of 1984 and AFI 33-332, The Air Force Civil Liberties Program prescribe management of ____ information stored within _____ record systems, also known as Personally Identifiable
Information (PII).

Answer 43

personal
official

Question 44

The Air Force Privacy and Civil Liberties Program is designed to prevent widespread distribution of personal records. The program, implemented through AFI ______, sets guidelines for collecting,
safeguarding, maintaining, using, accessing, amending, and disseminating personal information kept in an Air Force system of records.

Answer 44

AFI 33-332

Question 45

___ ___ is information that has been determined to require protection against unauthorized disclosure in the interest of national defense.

Answer 45

Classified Information

Question 46

In this context, ___ ___ means the defense of the United States or foreign relations of the United States

Answer 46

national security

Question 47

What are the three collateral classification levels?

Answer 47

Top Secret
Secret
Confidential

Question 48

Classification levels of information is based upon the amount of ____ it could reasonably cause to national security if released to unauthorized persons.

Answer 48

damage

Question 49

There are three types of classification for classified information:

Answer 49

Original, Tentative, and Derivative

Question 50

The following describes which classification for classified information?

Everyone doesn’t possess authority to classify a piece of information. For something to be marked and protected as classified, it must first be given an ___ ___. Secretary of the Air Force (SECAF) delegates ___ ___ authority (OCA) to Air Force officials. No other Air Force OCA has delegation or designation authority.

Answer 50

Original Classification

Question 51

The following describes which classification for classified information?

All Air Force personnel (military, civilian, and on-site contractors) with access to classified information systems are considered derivative classifiers and any other person designated by the commander or
director.

Answer 51

Derivative Classification

Question 52

Top Secret damage to National Security =

Answer 52

Exceptionally Grave

Question 53

Secret damage to National Security =

Answer 53

Serious

Question 54

Confidential damage to National Security =

Answer 54

Some

Question 55

The proper marking of a classified document, to include e-mail, is the specific responsibility of the ____ (original or derivative classifier).

Answer 55

author

Question 56

Derivative classifiers must receive initial training and refresher training every…?

Answer 56

2 years

Question 57

Derivative classifiers must receive initial training and refresher training every…?

Answer 57

2 years

Question 57

Weapons or sensitive items such as funds, jewels, precious metals, or drugs shall not be stored in the same container used to safeguard…?

Answer 57

classified information

Question 58

The ___ ___ ___ establishes and publishes standards and specifications for storage devices.

Answer 58

General Services Administration (GSA)

Question 59

Top Secret: Must be stored in a GSA security container approved for Top Secret level. The container shall be subject to continuous protection by guard or duty personnel or be protected by an intrusion detection system with personnel responding to the alarm within __ minutes.

Answer 59

15 minutes

Question 60

Hand carrying classified material poses a risk and should be done as a ___ ___ in critical situations.

Answer 60

last resort

Question 61

Derivative classifiers must receive initial training and refresher training every…?

Answer 61

2 years

Question 62

Derivative classifiers must receive initial training and refresher training every…?

Answer 62

2 years

Question 63

Derivative classifiers must receive initial training and refresher training every…?

Answer 63

2 years