Incorporated

Policy changes from this SAMM E-Change memo have been incorporated into the SAMM.

DoD Shield

DEFENSE SECURITY COOPERATION AGENCY
201 12th STREET SOUTH, STE 203
ARLINGTON, VA 22202-5408

4/14/2015

MEMORANDUM FOR :

DEPUTY UNDER SECRETARY OF THE AIR FORCE FOR INTERNATIONAL AFFAIRS
DEPUTY ASSISTANT SECRETARY OF THE ARMY FOR DEFENSE EXPORTS AND COOPERATION
DEPUTY ASSISTANT SECRETARY OF THE NAVY FOR INTERNATIONAL PROGRAMS
DIRECTOR, DEFENSE CONTRACT MANAGEMENT AGENCY
DIRECTOR FOR SECURITY ASSISTANCE, DEFENSE FINANCE AND ACCOUNTING SERVICE-INDIANAPOLIS OPERATIONS
DIRECTOR, DEFENSE INFORMATION SYSTEMS AGENCY
DIRECTOR, DEFENSE LOGISTICS AGENCY
DIRECTOR, DEFENSE LOGISTICS INFORMATION SERVICE
DIRECTOR, DEFENSE LOGISTICS AGENCY DISPOSITION SERVICES
DIRECTOR, DEFENSE THREAT REDUCTION AGENCY
DIRECTOR, MISSILE DEFENSE AGENCY
DIRECTOR, NATIONAL GEOSPATIAL-INTELLIGENCE AGENCY
DEPUTY DIRECTOR FOR INFORMATION ASSURANCE, NATIONAL SECURITY AGENCY

SUBJECT :

Revised Notes for Communications Security (COMSEC) Enhanced End-Use Monitoring (EEUM), DSCA Policy 15-16 [SAMM E-Change 275]

The attached change to the Security Assistance Management Manual (SAMM) revises existing COMSEC EEUM notes to add the requirement that recipients are not authorized to perform repairs, maintenance beyond organizational-level maintenance nor receive information, training or material pertaining to repair and/or maintenance of the COMSEC equipment provided on this LOA without the express written consent of the U.S. National Security Agency (NSA).

This change will take effect immediately. Appendix 6 of the SAMM will be updated as reflected in the attachment, and this change will be included in the online version of the SAMM found on the DSCA Web Page, www.samm.dsca.mil, as SAMM E-Change 275. If you have questions regarding this policy please contact Mr. Scott Nelson, DSCA/STR/WPN, at (703) 602-2022 or e-mail: scott.nelson@dsca.mil. For questions on the SAMM, please contact Mr. Mike Slack, DSCA/STR/POL, at (703) 601-3842 or e-mail: michael.slack@dsca.mil. Implementing Agencies should disseminate this policy to supporting activities.

Karen L. Garvey
Principal Director
Strategy

ATTACHMENT :
As stated

CC :

USAFRICOM
USCENTCOM
USEUCOM
USNORTHCOM
USSOUTHCOM
USPACOM
USTRANSCOM
USSOCOM
STATE/PM-RSAT
USASAC
SATFA
TRADOC
NAVSUPWSS
NETSAFA
AFSAC
AFSAT
DISAM
MARCORIP
SCETC
USCG International Affairs (G-CI)

SECURITY ASSISTANCE MANAGEMENT MANUAL (SAMM), E-CHANGE 275
Revisions to Appendix 6 Enhanced End-Use Monitoring Notes for COMSEC Products

Revise the following four notes to read:

COMMUNICATIONS SECURITY (COMSEC) ENHANCED END-USE MONITORING (EEUM) - BPC - NATO MEMBERS, AUSTRALIA, OR NEW ZEALAND

Note Usage

Mandatory for BPC LOAs to NATO members, Australia, or New Zealand that include COMSEC equipment.

Mandatory for Amendments and Modifications that add COMSEC equipment.

Mandatory for Amendments that add no additional COMSEC equipment if the note on the current implemented version of the case varies from this text.

References

See Chapter 8.

Note Input Responsibility

CWD

Note Text

"This LOA provides COMSEC products that require physical security and accountability as set forth in the following agreements and documents (not all may be applicable):

  1. NATO Security Agreements including implementing directives and policies promulgated by the NATO Military Committee, NATO Communications and Information Agency, (NCI Agency), NATO Office of Security, and other NATO organizations.

  2. Bilateral and/or multilateral Communications Security and other security agreements between the U.S. and the Benefitting Country.

The Benefitting Country is not authorized to perform repairs, maintenance beyond organizational-level maintenance nor receive information, training or material pertaining to repair and/or maintenance of the COMSEC equipment provided on this LOA without the express written consent of the U.S. National Security Agency (NSA).

The Benefitting Country is aware that upon U.S. Government request, the COMSEC products and their inventory and accountability records are to be made available to U.S. representatives for the purpose of conducting a compliance assessment with the requirements stated in applicable agreements and documents above. This assessment will not be a COMSEC account audit and will not include an inspection of keying material."

COMMUNICATIONS SECURITY (COMSEC) ENHANCED END-USE MONITORING (EEUM) - BPC - TO OTHER THAN NATO MEMBERS, AUSTRALIA, OR NEW ZEALAND

Note Usage

Mandatory for BPC LOAs to countries other than NATO members, Australia, or New Zealand that include COMSEC equipment.

Mandatory for Amendments and Modifications that add COMSEC equipment.

Mandatory for Amendments that add no additional COMSEC equipment if the note on the current implemented version of the case varies from this text.

References

See Chapter 8.

Note Input Responsibility

CWD

Note Text

Line item(s) [fill-in] are being procured under Foreign Military Sales-Cryptographic Device Services (FMS-CDS) procedures and are subject to foreign national ownership and use restrictions and limitations. FMS-CDS is the procurement of COMSEC services rather than COMSEC products.

The following restrictions and/or limitations apply to all FMS-CDS cases:

  1. The U.S retains legal title to the COMSEC products;

  2. The U.S. may recall the COMSEC products at any time without reimbursement to the purchaser;

  3. The COMSEC products must be used only to support specific U.S. validated or endorsed requirements; and

  4. Only U.S.-produced keying material may be used to key the device

  5. The Benefitting Country is not authorized to perform repairs, maintenance beyond organizational-level maintenance nor receive information, training or material pertaining to repair and/or maintenance of the COMSEC equipment provided on this LOA without the express written consent of the U.S. National Security Agency (NSA).

COMSEC products procured under this LOA require physical security and accountability as set forth or referenced in the following agreements and documents (not all may be applicable):

  1. Communications Interoperability and Security Memorandum of Agreement;

  2. NAG-14C, Allied COMSEC Material Accounting Manual;

  3. NAG-18A, Safeguarding COMSEC Material and Facilities; and/or

  4. Bilateral and/or multilateral COMSEC and other applicable information security agreements

The Benefitting Country is aware that upon U.S. Government request, the COMSEC products and the purchaser's inventory and accountability records will be made available to U.S. representatives for the purpose of conducting a compliance assessment. The compliance assessment is not a COMSEC account audit or inventory, and does not include an inspection of keying material.

COMMUNICATIONS SECURITY (COMSEC) ENHANCED END-USE MONITORING (EEUM) - FMS - NATO MEMBERS, AUSTRALIA, OR NEW ZEALAND

Note Usage

Mandatory for FMS LOAs to NATO members, Australia, or New Zealand that include COMSEC equipment.

Mandatory for Amendments and Modifications that add COMSEC equipment.

Mandatory for Amendments that add no additional COMSEC equipment if the note on the current implemented version of the case varies from this text.

References

See Chapter 8.

Note Input Responsibility

CWD

Note Text

"This LOA provides COMSEC products that require physical security and accountability as set forth in the following agreements and documents (not all may be applicable).

  1. NATO Security Agreements including implementing directives and policies promulgated by the NATO Military Committee, NATO Communications and Information Agency, (NCI Agency), NATO Office of Security and other NATO organizations.

  2. Bilateral and/or multilateral Communications Security and other security agreements between the U.S. and the purchaser.

The purchaser is not authorized to perform repairs, maintenance beyond organizational-level maintenance nor receive information, training or material pertaining to repair and/or maintenance of the COMSEC equipment provided on this LOA without the express written consent of the U.S. National Security Agency (NSA).

The purchaser agrees that, upon U.S. Government request, the COMSEC products and the purchaser's inventory and accountability records will be made available to U.S. representatives for the purpose of conducting a compliance assessment with the requirements in agreements and documents above (not all may be applicable). This assessment will not be a COMSEC account audit and will not include an inspection of keying material."

COMMUNICATIONS SECURITY (COMSEC) ENHANCED END-USE MONITORING (EEUM) - FMS -TO OTHER THAN NATO MEMBERS, AUSTRALIA, OR NEW ZEALAND

Note Usage

Mandatory for FMS LOAs to countries other than NATO members, Australia, or New Zealand that include COMSEC equipment.

Mandatory for Amendments and Modifications that add COMSEC equipment.

Mandatory for Amendments that add no additional COMSEC equipment if the note on the current implemented version of the case varies from this text.

References

See Chapter 8.

Note Input Responsibility

CWD

Note Text

Line item(s) [fill-in] are being procured under Foreign Military Sales-Cryptographic Device Services (FMS-CDS) procedures and are subject to foreign national ownership and use restrictions and limitations. FMS-CDS is the procurement of COMSEC services rather than COMSEC products.

The following restrictions and/or limitations apply to all FMS-CDS cases:

  1. The U.S retains legal title to the COMSEC products;

  2. The U.S. may recall the COMSEC products at any time without reimbursement to the purchaser;

  3. The COMSEC products must be used only to support specific U.S. validated or endorsed requirements; and

  4. Only U.S.-produced keying material must be used to key the device

  5. The purchaser is not authorized to perform repairs, maintenance beyond organizational-level maintenance nor receive information, training or material pertaining to repair and/or maintenance of the COMSEC equipment provided on this LOA without the express written consent of the U.S. National Security Agency (NSA).

COMSEC products procured under this LOA require physical security and accountability as set forth or referenced in the following agreements and documents (not all may be applicable):

  1. Communications Interoperability and Security Memorandum of Agreement;

  2. NAG-14C, Allied COMSEC Material Accounting Manual;

  3. NAG-18A, Safeguarding COMSEC Material and Facilities; and/or

  4. Bilateral and/or multilateral COMSEC and other applicable information security agreements

The purchaser agrees that, upon U.S. Government request, the COMSEC products and the purchaser's inventory and accountability records will be made available to U.S. representatives for the purpose of conducting a compliance assessment. The compliance assessment is not a COMSEC account audit or inventory, and does not include an inspection of keying material.