lol based on the audio quality you can totally tell he’s got a portable microphone and is totally recording this from his parents spare bedroom he’s visiting for the holidays.

My guess as to why the details of SCIFs are not classified: 1) The government is extremely confident this information can't be used in a successful breach. Think of what it would take to breach an SCIF. My guess is, if you have the knowledge, willingness, and ability to actually break into this facility, chances are you're a foreign nation at war with us. 2) It gives outside researchers the ability to find flaws that the DoD's own security researchers don't see.

I feel old. I was a Yeoman in the navy in the early 90's and everything confidential and secret were sent registered mail and we had to use double envelopes and seal them with thick tape.

When I woke up today, I had no idea that I'd be reminded of so many hours explaining to lieutenants that their thumb drive no longer really belonged to them after they used it to upload a briefing they were supposed to type and email.

We had a SCIF on our compound and the amount of security was crazy. It was behind 3 layers of armed dudes. The main gate, the gate onto our compound and then surrounded by T walls.

2:58 This is not quite accurate. Only items with non-volatile (storage) memory can inherit classification if plugged into a classified information system. Things like dumb USB mice, analog headphones, cables, etc. are unable to store data after being unplugged and therefore do not inherit this classification. Your rock does not have volatile or non-volatile memory and therefore would not become classified. Edit: Also, during the classification process, a "declassify by " needs to be specified on the media so there is no burden to protect the classification "forever" Edit 2: Didn't expect this comment to blow up. For people who are interested, equipment manufactures publish a Certificate of Volatility which guarantees/proves any data written to the device cannot be stored after it is powered off. Equipment with this certificate can be plugged into a classified IS with no issues.

The best part is being escorted into a SCIF. They turn on these red rotating beacon lights and the whole room full of people groans because everybody's got to interrupt their work and turn off their monitors. Good times.

I once did some networking work in a building that had SIPRNET. We didn't touch it as we were only working on a less secure network. But the security around it was pretty cool. The cables were run through conduit that had lower air pressure inside so that if someone tried to tap into a cable in the middle it would detect the change in pressure and set off alarms.

Do you think the U.S. sends top secret bricks around the world too?

I'd like to point out that the original military cipher was not actually a cipher, but instead a code, as codes are words represented in an obfuscated form, while ciphers are letters represented in an obfuscated form. Both of them can be referred to as encryption.

I assume the reason the SCIF's specification is freely available is because. A. It requires contractors to build, and not all contractors can be trusted with Confidential information. B. It allows other world governments to find and fix security faults and also proves these facilities are legit. Considering "Security through obscurity" is considered bad practice. C. I can't think of a way to complete the rule of thirds. I guess it is just good for some non-governmental organizations. Same reason why GPS was made public.

Just FYI people generally don't use the acronyms when referring to SCIFS and JWICS. It's said like "Skiff" and "Jay Wicks"

Quick correction about packet switching. It doesn't actually necessarily send packets across different paths, it just sends a packet on a free path so let's say the time one packet reached the next node, one packet has been sent then the 3rd packet could be sent on the same path as the first one.

Audio is amazing as per usual! Keep up the good work guys

You could have also mentioned a few additional SCIF features, which applies to facilities located in the U.S.: o. Man Traps (that is what they call them.) Man traps are barriers that begin just above ceiling, and extend all the way up to the underside of the roof. In the horizontal, they run along the entire perimeter of the SCIF. The barriers are sometimes a solid wall, but are more often a steel grid; picture chain link fencing, but with much heavier material, and a tighter open space pattern. Sometimes the man trap material will also be embedded within the walls, ceiling, and floors. The purpose of this feature is pretty much contained in the name; you don't want outsiders dropping into your secure room from ceiling. o. Shielding. You talked about wall construction, and it should be mentioned that the entire room is shielded to prevent the escape of electromagnetic signals. This means that the walls and ceiling have a continuous surface of copper, or some other conductive material, which is usually a fine mesh, rather than solid material. The floor of the SCIF is usually elevated to allow the shielding material to run under the floor without interruption. In this case, the door is approached from outside by a small ramp. There is only one door, which is shielded in the same manner as the walls, except that there are a great number of flat "fingers" made from a conductive material that can be heat treated to have a spring temper, such as beryllium copper. These fingers run along all 4 edges of the door, and are connected electrically to the shielding inside the door. The door opening has a continuous piece of rubberized conductive material that is connected electrically with the wall shielding; picture the rubber around your refrigerator door, but with a wrapping of fine metal mesh. When the door is closed, the fingers on the door press up against the flexible material, thereby making the door a part of the wall, electrically. Access to the SCIF is usually controlled by a cipher lock. Because of the shielding, cell phones do not work inside the SCIF. If you need to communicate with anyone outside the SCIF, there is a "red line" available; yes the phone is often red in color. This is because all electronic data inside the SCIF is separated into "red" and "black"; the black data is the secret stuff. If black data needs to leave the SCIF, the data will be encrypted, and the data cable will be run through a shielded and armored conduit, which must be certified to reject X number of minutes of chainsaw/grinder attack, as well as fire; at least that was a requirement for one of SCIFs that I worked in. The SCIF is usually a self contained room inside a larger building, but obviously, the outer facility's air conditioning vents cannot be allowed to penetrate the protected barrier of the SCIF, so it can get hot in there. Usually, the SCIF will have its own isolated air conditioner. o. One must hold some level of government issued security clearance before one can enter a SCIF. If you have read this far, you probably noticed that the customer specification requirements for a SCIF can vary, depending on "how secret" the project needs to be. Usually, these rooms for government projects; the government will flow their requirements down to the subcontractor, who will flow them down to sub-subcontracors, if any. I am no expert on this topic, and there are more considerations for secure rooms than what I have written here. I did not realize that I had written so much until I went back to proof-read it, so I hope that I have not inadvertently bored the hell out of anyone who read this.

Don’t forget the flashing purple lights to let people know if there are visitors so they don’t accidentally talk about something they’re not supposed to

Because this is HAI, and pedantry is expected…we absolutely still distribute information on British warship movements. The difference now is that: 1. The British told us and 2. We are likely distributing the information to other British.

They also use shortwave radio to send EMERGENCY ACTION MESSAGES to strategic military assets across the world!

This is great! And here I was thinking we stored these highly classified documents in the closet at Mar-a-Lago.

Worth pointing out that most government agencies have separate classification systems that are analogous to DoD but don’t directly correspond (e.g. Energy, Treasury, etc.). Often the systems are compatible enough to inter-connect but occasionally it creates other issues since security vs. resIliency often DO differ between agencies.

Technically the public internet is packet switched as well. It's just that with the consolidation of backhaul providers, more stable connections, and modern routing logic, not to mention lack of redundant connections for most people, it's unlikely that your packets will go different routes. But they *could.*

I was given a tour of a DOJ SCIF in the late 90's and here is what I remember. The door had a combination lock that randomized the number layout after each turn of the dial. All the computers had removeable hard drives that were kept in a safe within the SCIF. Also, the surrounding walls, floor and ceiling did form a faraday cage.

Always get a kick remembering someone from my shop was browsing FB on a SIPRNET approved computer when on a training exercise. Good times were had by all except him.

I love the fact that there are probably a lot of us officials closely inspecting this video to see if anything important was leaked or revealed

I want a Wendover episode on something related to this. This was fascinating.

Great video. Accurate enough. I used to be a JWICS admin and worked in a SCIF for 5 years. Depending on the compartment, you could even essentially have a SCIF within a SCIF.

Interesting video, watched it twice. now it's once as interesting :)

Holy Crap so my mom was a secret agent when I grew up? She liked hanging clothes outside in the air because she thought it was better than a dryer Think of all the messages she had outside that our neighborhood could have cracked!

I thought Sam said you will either end up in prison or shocked, then on replay realised he said shot. Now it makes sense.

Note that the 736 word dictionary was not a "cipher" -- which can be cracked -- but a "code", which is essentially impossible to crack without stealing the dictionary.

There are also “CDS” (cross domain solutions). Allowing data to pass through different security domains (IE. secret, classified, or top secret).

Next video you can go even deeper and talk about the various CENTRIX systems. They are basically SIPRNET systems, but run between the U.S. a various foreign countries. There are also multiple SIPRNET systems operating within the U.S.; local ones dealing with classified information pertaining to a specific region or base and the "global" SIPRNET.

The entire INTERNET, World Wide Web included, uses packet switching. That's the basis of the Internet Protocol (developed under a DOD contract in the mid '60s to make nuclear war survivable.)

I think the room specs aren’t classified because “build a soundproof box with white noise” is pretty much a given.

2:09 why I subbed ... f*ckin righteous !

SIPR is actually connected to the greater WWW. Each LAN is just connected to each other by a VPN, a very good VPN.

Why don't they just hide the information in bricks?

The audio quality makes it seem as if this video could've been totally written and spoken by AI

Big fan of this channel and I know this is a totally random, barely related comment, but I knew the guy with glasses in the stock footage at 1:36. Joe DeCola was an absolutely fascinating man with a huge heart and an even huger laugh. He passed away in 2022 and is missed by so many people. It made me really emotional to see him so unexpectedly here.

I signed up for curiosity stream / nebula with your link !!!! I LOVE IT !!!!! Thanks for the amazing content, keep it up and have a fantastic start to 2023!

To be honest I'm kinda disappointed there is no Nord VPN sponsorship in this one, it would've been the perfect fit for the video

Me with popcorn noting how many people are outing themselves as having/had DoD security clearances.

I've been in the Army for nearly a decade now. We absolutely have not updated our methods for transmitting military secrets. We may have _changed_ the methods, but they aren't exactly _updated_

Regarding Sipernet, I know from experience that if you plug in a memory stick into a computer on the network, and then plug it into your personal laptop, your laptop is now secret also. My coworker had personal pics on his laptop that he wanted to be the home screen on his government laptop. So without thinking he put them on his USB drive and downloaded them on his government laptop. He then continued to use the same device on his personal laptop. So without knowing it, he made his memory stick and personal laptop classified secret. So now his laptop had to be kept in a secure location (we were on a submarine on deployment. Every inch is secret until we pull into port, in which case he would need to lock it in a safe). He could no longer connect to the internet or download things off his laptop. I don’t remember what the resolution was. I think they had to wipe everything. Just like they wiped away his rank as a result.

4:50 anyone else thought he was gonna say your computer and give a nord vpn ad?

I think my favorite method was Cardan Grille or Mask Letters which the British used and the Americans didn't crack. A letter is written that contains two messages with the intended one only revealed when a cutout paper mask, sent separately, is placed over the letter.

Enjoying the audio quality in this video

I like how Sam's videos are an excuse to expose things the US have swept under the rug

Am I the only person who feels like Sam's voice is heavily compressed, like I'm listening to him over shortwave, with a potato plugged into two tin cans?

This is the very high level overview of one layer of military communications networks and security. The really important related item is security clearances and the "need to know". There is a complex process to obtain a clearance. And, just because you have a clearance doesn't mean you have a need to know, or a need to obtain login credentials for one of the networks or the ability to gain access to any of the classified facilities that have such computers and networks in operation. And, let's not forget these facilities and networks have physical crypto hardware that has to be loaded with the crypto keys each with a security classification, distributed and tracked from a central facility, that have to be loaded, updated, and destroyed at prescribed times, including emergency re-keying when a device or key is compromised, all administered by career personnel whose job is to manage crypto keys. It's false to believe that some ex-government official that still has a clearance can someone access classified material. They retain their clearance for many reason, one of which is so that they would still be able to answer questions in an investigation that may arise about the classified material they once accessed or possibly mis-handled.

It may seem ridiculous that all media plugged in to SIPR devices must be classified (i.e. a USB rock), but it’s vital that only approved technology are allowed in closed spaces. One could imagine the consequences of connecting a computer mouse that had “additional functionality” unbeknownst to the user. Also I’m not sure if this is standard, but JWICS can be pronounced like “jay-wicks”

I've used both NIPRNET and SIPRNET with credentials on both. I've never touched JWICS though

No one spells out the acronyms. They're pronounced SKIF and Jay Wicks. Classification criteria has a very specific definition and over classification is prohibited by law. The SCIF specs aren't classified for a couple of reasons: one, the information doesn't meet the standard; two, any construction worker or engineer would need a clearance for that level. It can take months to years to get all of it approved. Finally, classified information isn't just a clearance level. There are also compartments and releasabilities. You could have a TS, but you likely wouldn't be able to see anything because it's mostly segmented up into programs, which you need special clearances and access to.

As an architect, that wall construction for the rooms is not actually that acoustically separated. You’d find better acoustic separation between two condos.

in my experience with the armed forces, any “minor” infraction you do pertaining SIPRNET system’s will immediately get you into UCMJ (Uniform Code of Military Justice) which is basically prison so yeah it was no joke

The USB rock thing is incorrect, the device cannot have volatile storage. In fact I KVM between all three systems with the same mouse, keyboard and monitor every day.

I recall a pseudo classification called UNCLASS EFTO. It was for unclassified material which was Encrypted For Transmission Only.

0:27 technically speaking, doing that isn't even encryption, just encoding, which can be easily broken through something called frequency analysis.

@HaI I'm 25N, sipr nipr is my bread & butter. You missed the perfect oppurtunity to delve into the satelite network system that carries said classified information, Skynet. (yes the same network system name as in Terminator)

I swear half as interesting, wendover productions, and reallifelore are the same person

I'm pretty sure I once worked on assiting one of these type of connections being installed. I wasn't told a lot but I was informed it was for some sort of secure internet connection for receiving data in regard to government contracts worked on by the company we were working in. As this video continues, I realize this must be exactly what it was for.

Today's fact: Baked beans are actually not baked, but stewed.

Regular internet uses packet switching too

JWICS is an acronym and is pronounced "jay-wicks", while SCIF is also an acronym and pronounced as "skiff." Just FYI.

lmao before I looked at the comments I was like "my fucking airpod is doing that thing again goddamit" and reconnected it a bunch of times

Missed opportunity for a Mara Lago joke.

We just say those acronyms as "j-wicks" and "skiff"

Scifs are just room-sized headaches, especially when building them

Bruh, buy some acoustic room treatment with that Nebula I'm giving you.

You are so right about the USB drives. For this reason USB drives are banned from the nuclear plants I work for LMAO

3:45 Is the Mar A Lago storage closet a sensitive compartment information facility?

Amazing how now they advertise curiosity stream as an add on to nebula, a few months ago it was the opposite..... and the episode is great

It sounds like Sam recorded this in a washing machine

The Australian Military had a courier system for transferring classified documents by hand from place to place and person to person. For many years I was one of these couriers.

Where does the basment of Mar A Lago fit in with SCIFs?

I love how "computer code" being shown on videos like these are 90% of the time HTML, which isn't even a Turing-complete programming language (i.e., you can't do stuff you can do on other programming languages). It's one of the few languages you can't hack with.

"Pearls before swine" used to be a favorite phrase, but I'm updating it to "Rocks before SIPRNET"

Anyone feel the urge to build a DIY SCIF?

Being a former Intel guy in the Army, I can tell you that a lot of the info in this video is pretty outdated. A lot has changed since 2006 when this info was last accurate lol. Classified info is no longer dealt with nor transmitted in this way.

your ads alone make me want to claw my eyes out despite the fact that you use my stock video all the time, and I am fucking handsome.

"How the US Sends Top Secret Information Around The World" --> By using some Discord servers, duh.

I always forget that I have an Nebula account until Sam remebers me. I really miss the comments on Nebula.

"Unfortunately we're no longer allowed to distribute information on British warships". Hmm, really?

That Obama paddle boarding is about to be TOP SECRET

Lol I've never been in a SCIF where they were actually playing anything through the speakers

You missed the point of putting the fear of god in people even on the NIPRNET, and they do it yearly through training.

As a Long Islander, I'm beyond impressed he said "Setauket" correctly.

4:24 Lol that’s how you Jam Radios 📻😄 You run so much energy through it that your the only one anyone can hear :P

Yay a video written by Ben

Missed Thug Shaker Central

Given the subject matter, I was certain this one would be sponsored by a VPN company. 😀

Note: Jet Lag: the Game is also censored on Nebula. It's [BLEEPING] annoying, as it is anywhere else.

did someone else find the sound was off or is it just my computer?

why does the voice sound like it was generated by an ai

I am disappointed, I thought this video was going to be about bricks.

I love Jet lag the game!

We've got the 2016 mic back out lads

This video feels mildly illegal to watch, and i absolutely love it lol.

Or you could just visit Palm Beach, FL!

I wanted to take advantage of your nebula deal, but credit cards arent as common in my country as they may be in the usa. A paypal option would be great