Politico’s Josh Gerstein unearthed a 2005 State Department policy on secure emails that may add to the controversy surrounding Hillary Clinton on her sole use of personal email while she was Secretary of State.
Here’s what the policy [PDF] says:
It is the Department’s general policy that normal day-to-day operations be conducted on an authorized AIS, which has the proper level of security control to provide nonrepudiation, authentication and encryption, to ensure confidentiality, integrity, and availability of the resident information. The Department’s authorized telework solution(s) are designed in a manner that meet these requirements and are not considered end points outside of the Department’s management control.
The State Department document also says the department “is expected to provide, and employees are expected to use, approved secure methods.” And, of course, they warn about other forms of communication not being quite as secure.
It does note that anyone using SBU (sensitive but not classified information) “on personally owned computers must ensure that these computers will provide adequate and appropriate security for that information.”
[image via Chatham House]
Have a tip we should know? firstname.lastname@example.org