Terminate Cable Systems at Cabinet Boundaries
In TOP SECRET areas, cables connecting to cabinets outside server rooms stop at the cabinet edge.
Plain language
In high-security areas, like places handling TOP SECRET information, all cables going into a cabinet that isn’t in a dedicated server or communication room need to stop at the cabinet's edge. This matters because if cables are allowed to run directly into sensitive hardware from less secure areas, it could make it easier for someone to tamper with or eavesdrop on important data.
Framework
ASD Information Security Manual (ISM)
Control effect
Preventative
Classifications
S
ISM last updated
Feb 2023
Control Stack last updated
19 Mar 2026
E8 maturity levels
N/A
Section
Cabling infrastructureOfficial control statement
SECRET cables are terminated in an individual cabinet; or for small systems, a cabinet with a division plate between any SECRET cables and non-SECRET cables.
Why it matters
If SECRET cables are not terminated within a dedicated cabinet or segregated by a division plate, they may be accessible alongside non-SECRET cabling, increasing risk of compromise.
Operational notes
Inspect cabinets to confirm SECRET cables terminate within that cabinet and, for small systems, that a division plate separates SECRET and non-SECRET cabling; fix any breaches promptly.
Implementation tips
- The IT manager should review all cabling routes for TOP SECRET areas to identify which cabinets are located outside dedicated server rooms, ensuring compliance. They should map out where cables are entering a room and ensure that they terminate right at the cabinet's edge.
- Facilities staff should install appropriate cabinet termination fittings. This involves fixing new panel fittings where incoming cables can be neatly terminated and secured at the cabinet boundary.
- Security personnel should conduct regular inspections of these cabinet boundaries to ensure that cables remain properly terminated and that no unauthorised extensions or junctions have been added.
- The IT team should work collaboratively with security and facilities teams to document any changes in cabinet locations or building modifications that might affect cable termination setups. Regular updates to plans and schematics should be maintained to reflect any changes.
- System owners must ensure that new projects involving cabling are planned with this control in mind. This means they should include termination requirements in project specifications and verify these are met before signing off on project completion.
Audit / evidence tips
-
Aska list of cabinets located in TOP SECRET areas that are outside dedicated server rooms
Goodincludes a complete list showing accurate termination locations
-
Goodhas updated and accurate diagrams with clear termination points
-
Askrecent inspection reports conducted by security or facilities staff
Goodincludes detailed reports with no exceptions or breaches noted
-
Goodincludes project details that clearly show compliance with this control
-
Aska schedule of ongoing maintenance and inspections of cable terminations
Goodoffers a consistent schedule and records confirming regular compliance checks
Cross-framework mappings
How ISM-1098 relates to controls across ISO/IEC 27001, Essential Eight, and ASD ISM.
ISO 27001
| Control | Notes | Details |
|---|---|---|
| layers Partially meets (1) expand_less | ||
| Annex A 7.1 | ISM-1098 requires SECRET cabling to be terminated at cabinet boundaries (or separated by a division plate in small systems), limiting whe... | |
These mappings show relationships between controls across frameworks. They do not imply full equivalence or certification.