1 Introduction

The United States Postal Service® relies on the integrity, confidentiality, and availability of its information and information resources to conduct its business and fulfill its obligations to the public. Suppliers must create and maintain an environment that protects Postal Service™ information and information resources from accidental or intentional unauthorized use, modification, disclosure, or destruction. This document summarizes the security requirements necessary for protecting the confidentiality, integrity, and availability of Postal Service information and information systems that collect, process, store, or transmit Postal Service information. Further, this document supports practices set forth in the United States Postal Service security policies, as well as the Supplying Principles and Practices, available at http://about.usps.com/manuals/pm/welcome.htm.

The security requirements in this handbook apply to all suppliers and subcontractors whose business requires the accessing, processing, storage, or transmission of Postal Service information or interconnections to Postal Service networks and information systems.