The Non-Secure Internet Protocol Router Network (NIPRNet) is used for unclassified communications while the Secret IP Router
Network (SIPRNet) is used for classified communications.
"DISA wants to redesign these networks with security as the upfront criteria," Croom said.
The decades-old NIPRNet is a non-homogeneous combination of more than 1,500 networks, Croom said, adding that he helped wire
some of it by hand. The SIPRNet has better security at its perimeter but also could benefit from internal partitioning, he
said.
One difficulty is that the Defense Department has basically no end-to-end network management, Croom said, adding that he hoped
this would be part of the architectural changes under review in the next six months.
In addition to the security crackdown, the Defense Department Cyber Crime Conference highlighted other advances for the department.
The Defense Cyber Crime Center, in Baltimore, which carries out computer forensics work for the military, announced its lab methodologies and standards
earned it the accreditation of the American Society of Crime Laboratory Directors (ASCLD), making it one of only six computer
forensics labs in the country to hold that distinction.
"This can give the [Defense Department's] leadership the confidence that they have experts in their line of work," said Lt.
Col. Kenneth Zatyko, director of the Center's Defense Computer Forensics Laboratory.
A big step
Steve Shirley, executive director of the Defense Cyber Crime Center, said the ASCLD accreditation is an important step because
it is valued by the court system when digital evidence is exhibited in a criminal case.
The Defense Department and the Department of Justice also are working together to define possible requirements to certify
computer forensics examiners because there is no recognized authority for this type of expert, although a handful of universities
now have programs for this position.
"In air flight, the first aviators didn't have a pilot's license," Shirley said. "We're sort of in the same stage of development
when it comes to digital forensics examiners."
Interview: Keeping insider information inside
PortAuthority's appliance-based approach to data protection helps keep company secrets from getting out. PortAuthority President and CEO Pete Foley explains how it all works on this week's Network World Hot Seat.Watch it now
Mobile Security: The Essential Ingredient for Today's Enterprise
- Qwest Software and technology solutions help mitigate security risks and safeguard from threats, but they require IT staff to select, deploy and maintain them. Problem is, today's IT environments are lean. This paper examines the current mobile security landscape, including myths surrounding the risks and threats, and how organizations can establish a solid mobile security strategy.
Network World on Twitter: Get our tweets and stay plugged in to networking news