Derivative classification determinations are based on which sources?

Derivative classification determinations hinge on the official basis that introduced the information or defines its classification. When you derive a new document’s classification, you must look to authoritative sources that establish the level and safeguarding requirements. Those sources include classified source material itself, a security classification guide that defines how topics are classified, or a contract security classification specification (CSCS) or an equivalent official framework. Using any of these ensures the derived classification reflects the same protection level as the original material and properly cites the origin. Publicly available manuals or internal memos don’t provide the official authorization or the precise guidance needed to assign a derivative classification. Public manuals are unclassified by nature and internal memos may reflect opinions or informal notes rather than formal classification guidance, so they aren’t suitable bases for derivative determinations. Relying solely on a contract security classification specification would be incomplete if the material could also be derived from classified source material or a classification guide, which is why including all valid authoritative sources (or an equivalent) is necessary. In short, derivative classifications must be grounded in the original classified source, a security classification guide, or a contract security classification specification (or an equivalent official source) to ensure accuracy and proper protection.