DOD begins move to software-based security

The National Security Agency took over program management of the Defense Department's software-based, medium-assurance computer security program last month from the Defense Information Systems Agency, a key task as the Pentagon rolls out software-based security systems throughout DOD.

Richard Hale, chief engineering executive for information assurance at the DISA, said that while NSA has assumed program management responsibility for a medium-assurance public-key infrastructure, DISA still would have responsibility for centrally managing the issuance of all PKI certificates for DOD.

Hale added that while the DOD PKI program still has "pilot status," he added that "everyone in the department uses it." DOD plans to broaden the role of medium-assurance PKI beyond its initial mission to protect unclassified but sensitive information, Hale said.

Hale said DOD will start using PKI "even within communities operating on protected networks," providing yet another level of protection within systems already protected with bulk encryption.

Featured

  • Image: Shutterstock

    COVID, black swans and gray rhinos

    Steven Kelman suggests we should spend more time planning for the known risks on the horizon.

  • IT Modernization
    businessman dragging old computer monitor (Ollyy/Shutterstock.com)

    Pro-bono technologists look to help cash-strapped states struggling with legacy systems

    As COVID-19 exposed vulnerabilities in state and local government IT systems, the newly formed U.S. Digital Response stepped in to help.

Stay Connected