PRELIMINARY

DCN/ICN SECURITY PLAN

SECURITY ARCHITECTURE FOR
AN INTERNET-BASED NETWORK

for the

DOD CALS IDE PROJECT

January 1998

Submitted by

ManTech Advanced Systems International, Inc.

West Virginia Technology Applications Operations Center

1000 Technology Drive, Suite 3310

Fairmont, West Virginia 26554

In support of

Contract #DASW01-97-D-0006

CDRL Sequence Numbers: Non-CDRL

______________________	______________________
Robert S. Kidwell	Jack G. Richman
Technical Director	Executive Director
DoD CALS IDE Project	DoD CALS IDE Project

Table_of_Contents

LIST OF FIGURES
LIST OF TABLES
1.0 Introduction

1.1  Purpose
1.2  Scope
1.3  Background
1.4  Document Overview
1.5  References

2.0 Security Architecture

2.1 Risk Analysis

2.1.1  Security Threats to Computers and Networks
2.1.2  Vulnerabilities and Loss Impact
2.1.3   DCN/ICN Risk Analysis

2.2 Security Requirements

2.2.1 Subscriber Facility Security Requirements
2.2.2 MOCC Facility Security Requirements

2.3 Security Technologies

2.3.1  Identification and User Authentication
2.3.2  Data Protection
2.3.3  Access Control

2.4 Security Policies
2.5 Security Architecture

2.5.1  Security Architecture:  Access Control and Participant Authentication
2.5.2  Security Architecture:  Data Protection/Integrity
2.5.3  Security Architecture:  Event Monitoring and Intrusion Detection
2.5.4  Security Architecture:  Optional Componets

3.0 Security Resources

3.1 Facilities

3.1.1 Subscriber Facilities
3.1.2 Management Operations Control Center Facility

3.2 Personnel

3.2.1 Subscriber Personnel
3.2.2 Management Operations Control Center Personnel

3.3 Security Hardware and Software
3.4 Schedule and Resources

4.0 Security Processes

4.1 Risk Management
4.2 Security Event Monitoring and Reporting

4.2.1  Security Event Monitoring
4.2.2  Management and Technical Points of Contact
4.2.3  Incident Reporting

4.3  Security Event Damage Assessment
4.4  Recovery from a Security Intrusion
4.5  Security Awareness Training

5.0 Technology Refreshment

5.1 Technology Refreshment Process Model
5.2 Security Technology Refreshment Areas

6.0 Conclusions and REcommendations

6.1  Conclusions
6.2  Recommendations
6.3  Status of Current and Planned Activities

Appendix A: Security Policies

A.1 Security Policy Overview
A.2 Security Policies

A.2.1  Access Controls
A.2.2  Identification and Authentication
A.2.3  Software Import Control
A.2.4  Data Integrity
A.2.5  External Threat/Attack Control
A.2.6  Functional Security
A.2.7  Security Event Monitoring and Incident Response (IR) Handling
A.2.8  Administrative Security Policy

Appendix B: Security Incident Response Form
APPENDIX C: NOTES

C.1  Acronyms
C.2  Glossary of Security Terms
C.3  Internet Security Resources

C.3.1  AIS Security Bulletins
C.3.2  CERT Advisories and Bulletins
C.3.4  GAO Reports/Testimony

C.4 MIME Types and Viewers

LIST OF FIGURES

Figure 2.1.1-1 CIAC Security Incident Categories and Frequencies (1996-1997)

Figure 2.1.1-2 Information Security Threats (1996 Survey)

Figure 2.5.1-1 Encrypted User Identifiers and Passwords for DCN/ICN Subscribers to Access Web Pages

Figure 2.5.1-2 Access Control for Internet Access by MOCC Infrastructure Personnel

Figure 2.5.1-3 Digitally Signed E-Mail for Authentication of Collaborating DCN/ICN subscribers

Figure 2.5.2-1 Encryption of E-Mail Messages for transmission of sensitive, unclassified information over the Internet

Figure 2.5.2-2 Protection of Financial Information Transactions using SET.

Figure 2.5.2-3 Secure Sockets Layer (SSL) Security for Web-Forms based Transactions

Figure 2.5.3-4 Intrusion Monitor Monitors Network (Internet and Intranet Traffic) for Attacks

Figure 2.5.2-5 Firewall with Perimeter Network and User Authentication

Figure 3.1.2-1 MOCC Security Facilities

Figure 3.4-1 Preliminary Security Engineering Implementation Schedule

Figure 4.2.1-1 Security Event Monitoring and Incident Response Plans Survey (IW/E&Y)

Figure 5.1-1 Technology Refreshment Model for Security Engineering