Research Security Measures
Technology Control Plan
Technology Control Plans (TCP) document specific procedures taken to safeguard and control access to information or items that are export restricted. A TCP will outline what the restricted information/item is, who will have access to it, how access will be monitored and controlled, how the information/item will be physically and electronically stored, what information about it can be shared or presented and what will be done with the information/item once the project is complete. Such security measures include:
Laboratory Compartmentalization
- Quarantine specified research areas from observation or access by unauthorized persons and ensure the research team is trained and aware of their responsibilities,
- Do not distribute keys or other access to a lab with export controlled items or data to foreign nationals.
Time Blocking
- Project operation may be restricted to secure time blocks when unauthorized individuals cannot observe or access export controlled materials or project data.
Marking
- Export controlled information must be clearly identified to ensure it is not inadvertently distributed.
Locked Storage
- Tangible items such as equipment, operating manuals, external hard drives, hardcopy data and research journals should be secured in a locked storage container when not in the personal possession of approved project personnel.
Electronic Security
- Project computers, networks, and electronic transmissions should be secured and monitored through User ID’s, password controls, and encryption,
- Research data should be saved on encrypted flash drives or external hard drives that can be locked in a storage container.
Confidential Communications
- Discussions about the project must be limited to authorized project participants, in areas where unauthorized individuals are not present.