JHU’s Export Control/Facility Security office promotes a type of facility security that differs from the sort that is promoted by JHU’s Campus Safety and Security program. We do not have a physical presence that, for example, is intended to prevent personal and property crime on JHU property. Instead, we work mostly behind the scenes to protect certain tangible items and information from being released to (or stolen by) those who are not authorized to access such things.
Executive Order 13526 and 32 CFR 2001 describe a system of classification, declassification, and handling of national security information generated by the U.S. Government and its employees and contractors, as well as information received from other governments. No entity or its employees may receive such “Classified Information” without being rigorously screened and cleared for such access. Once cleared, an entity must implement a facility security program that prevents unauthorized access to Classified Information.
As a matter of policy, JHU does not permit any activity involving “Classified Information” to take place on its academic campuses, nor would it be allowed to accept such information on its non-academic campuses without special permission being granted by the Department of Defense. Please contact JHU’s Facility Security Officer (Frank Barker, firstname.lastname@example.org) if you have questions about performing research (on a non-academic campus) that could involve Classified Information.
Export-controlled technology and technical data is access-restricted information but it is not Classified Information under US law and regulation. In the absence of an export license, export-controlled information, source code, and tangible goods may not be shared with certain countries, their organizations or their citizens (even if in the US) because the U.S. Government has determined that there is an increased chance that such items could be used to undermine US interests (e.g., national defense and economic strength) and foreign policy. Research projects that work with or generate export-controlled items must be capable of preventing unauthorized access to such items. A separate facility security program exists to promote the application of access controls to such controlled-but-unclassified information and other items.