(b) Agency and entity responsibility.
- (1) Each agency or entity that connects to the service shall ensure that its connection to and use of the service does not jeopardize the security of the service.
- (2) With regard to individual users, each agency or entity shall ensure that only authorized users from its local environment are able to access the service. For accountability purposes in the event of a security threat or breach, the LDPC has the right to trace the route from a user to points within the service. Each agency or entity shall maintain and, upon request, shall make available to the LDPC a secure log of access events. The log shall be in a format and be for a period as the LDPC prescribes.