CA-3(1) — Unclassified National Security System Connections

This enhancement was incorporated into the base CA-3 control. It previously addressed connections involving unclassified national security systems specifically.

Example 1: If your unclassified system connects to a DoD network like NIPRNet, ensure you have a signed connection approval from the authorizing official on both sides.

Example 2: Use a cross-domain solution or approved boundary protection device when connecting unclassified national security systems to other networks, and document the configuration.