This passage discusses guidelines for securing office spaces, rooms, and buildings where confidential information is processed or stored. These include situating important areas to prevent public use, designing facilities to keep confidential information or actions from being detectable or listenable from outside, and away from directories, telephone books, or online maps showing areas with confidential information managing facilities accessible to unauthorized people. Additionally, buildings should be unassuming and display their purpose minimally, with no obvious signs that information processing activities occur inside. Electromagnetic protections should also be considered.
Conformance1
Tools for conforming to standards, goals and processes
