From: “Mark O. Aldrich” <maldrich@grci.com>
To: nson@kpmg.com
Message Hash: 53fbdb3965a8bba293161c069fe9be942701abd1e70465c8d608de391048ed08
Message ID: <Pine.SCO.3.93.960630134925.4081B-100000@grctechs.va.grci.com>
Reply To: <9605288360.AA836007879@mailgate5.kpmg.com>
UTC Datetime: 1996-07-01 07:47:10 UTC
Raw Date: Mon, 1 Jul 1996 15:47:10 +0800
From: "Mark O. Aldrich" <maldrich@grci.com>
Date: Mon, 1 Jul 1996 15:47:10 +0800
To: nson@kpmg.com
Subject: Re: FTS2000 and Encryption?
In-Reply-To: <9605288360.AA836007879@mailgate5.kpmg.com>
Message-ID: <Pine.SCO.3.93.960630134925.4081B-100000@grctechs.va.grci.com>
MIME-Version: 1.0
Content-Type: text/plain
On Fri, 28 Jun 1996 nson@kpmg.com wrote:
> I trying to find out if there are any talks, decisions or even standards being
> discussed for encryption and FTS2000?
The current FTS2000 contains little in the way of protection other than
the proprietary standards undertaken by the vendors (mostly OPSEC and
PHYSEC), and the "customer" level crypto that's operated above the layers
provided by the FTS2000 networks.
In the FTS2000 follow-on contract, however, things are going to change.
The Govvies are mandating compliance with a security policy (wow - that's
an incredible change) and network management traffic has to be protected.
Further, overhead and orderwire bytes, etc., will also have to be
protected. The Government isn't mandating how, but the bidding vendors
are expected to propose solutions. Further, there are going to be some
standards for points of demarcation between adjacent networks. The
security policy and RFP materials are on the 'net (I can't get to the web
right now, or I'd post the URL with this message). From what I remember,
the RFP does state that all payload data will be encrypted by the
Government using NSA-approved crypto and that the vendors are not to
"worry about" what's in the payloads. All they have to do is carry it
from point a to point b.
I imagine that we'll see contining developments in the STU-III area (the
most popular crypto phone in Government use), as well as new devices
supporting Type I and Type II crypto for use on the FTS2000 nets.
-------------------------------------------------------------------------
|Just as the strength of the Internet is |Mark Aldrich |
|chaos, so the strength of our liberty |GRCI INFOSEC Engineering |
|depends upon the chaos and cacophony of |maldrich@grci.com |
|the unfettered speech the First Amendment|MAldrich@dockmaster.ncsc.mil |
|protects - District Judge Stewart Dalzell| |
|_______________________________________________________________________|
|The author is PGP Empowered. Public key at: finger maldrich@grci.com |
| The opinions expressed herein are strictly those of the author |
| and my employer gets no credit for them whatsoever. |
-------------------------------------------------------------------------
Return to July 1996
Return to “nson@kpmg.com”