New Mexico Administrative Code
Title 1 - GENERAL GOVERNMENT ADMINISTRATION
Chapter 11 - E-GOVERNMENT
Part 2 - REAL PROPERTY ELECTRONIC RECORDING
Section 1.11.2.11 - DOCUMENT AND SYSTEM SECURITY REQUIREMENTS
Current through Register Vol. 35, No. 18, September 24, 2024
Security procedures shall be implemented to ensure the authenticity and integrity of the electronically filed instrument, including the ability to verify the identity of the filer, as well as the ability to verify that an instrument has not been altered since it was transmitted or filed. In order to protect the integrity of instruments to be recorded electronically, a participating county clerk and authorized filers shall meet the security procedure requirements set forth below.
A. An electronic recording delivery system implemented by a county clerk shall provide a secure method for accepting and recording digital or digitized electronic instruments. The system shall not permit an authorized filer or its employees and agents, or any third party, to modify, manipulate, insert or delete information in the public record maintained by the county clerk, or information in electronic records submitted pursuant to 1.11.2.NMAC.
B. Security standards implemented by county clerks shall accommodate electronic signatures and notarization of documents in a manner that complies with 12.9.2 NMAC, Performing Electronic Notarial Acts and that address the following encryption requirements. The electronic recording delivery system shall:
C. The electronic recording delivery system shall control interactive access to the system through authentication processes that:
D. County clerks shall have a key management system in place for the secure administration and distribution of cryptographic keys.
E. A risk analysis to identify potential threats to the electronic recording delivery system and the environment in which it operates shall be conducted at least once every three years by the county clerk and shall be submitted to the department of information technology and the commission of public records. The purpose of the risk analysis is to prevent the filing and recording of fraudulent instruments or alteration of instruments that were previously filed and recorded electronically. A risk analysis shall identify and evaluate system and environmental vulnerabilities and determine the loss impact if one or more vulnerabilities are exploited by a potential threat. The risk analysis shall include:
F. Authorized filers who are enrolled in a participating county clerk's electronic filing and recording program shall implement security procedures for all electronic filing transmissions and shall be responsible for maintaining the security of the systems within their respective offices.
G. Electronic recording delivery systems shall protect against system and security failures and, in addition, shall provide normal backup and disaster recovery mechanisms.