1 / 24

Mr. Mark S. Loepker Colonel Enrico Bologna SC/4 Co-Chairmen

NATO Consultation, Command & Control Board INFOSEC Subcommittee “Protection of Information” SC/4 Perspectives 4 May 2005. Mr. Mark S. Loepker Colonel Enrico Bologna SC/4 Co-Chairmen. NATO UNCLASSIFIED. NOS. Policy. Protecting Information. INFOSEC Subcommittee SC/4. Multiple Bodies.

robert-burns
Download Presentation

Mr. Mark S. Loepker Colonel Enrico Bologna SC/4 Co-Chairmen

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. NATO Consultation, Command & Control BoardINFOSEC Subcommittee“Protection of Information”SC/4 Perspectives4 May 2005 Mr. Mark S. Loepker Colonel Enrico Bologna SC/4 Co-Chairmen NATO UNCLASSIFIED

  2. NOS Policy Protecting Information INFOSEC Subcommittee SC/4 Multiple Bodies Directives Guidance Oversight NATO UNCLASSIFIED

  3. Overview • INFOSEC Subcommittee - SC/4 • Role of SC/4 • Achievements & Activities • Areas of Interest NATO UNCLASSIFIED

  4. Mission Statement The primary mission of the INFOSEC SC is to support the NATO C3 Board (NC3B) in achieving the fundamental security objectives of confidentiality, integrity and availability in relation to NATO information stored, processed or transmitted in C3 systems and, as appropriate, in relation to the supporting C3 systems infrastructure. The INFOSEC SC also supports the Military Committee (MC) and the NATO Security Committee (NSC) by responding on urgent matters of an operational or a security policy nature. NATO UNCLASSIFIED

  5. SC/4 Composition • 26 Member National Representatives • Strategic Commands & Agencies: • Supreme Headquarters Allied Powers Europe (SHAPE) / ACO • Supreme Allied Command Transformation (SACT) • NATO Office of Security (NOS) • NATO CIS Support Agency (NCSA) • NATO C3 Agency (NC3A) • NATO ACCS Management Agency (NACMA) • SECAN, DACAN, EUSEC, EUDAC • Secretariat: • Co-Chairmen (Staff and Nationally Elected) • Secretary NATO UNCLASSIFIED

  6. The Agencies SECAN Military Committee Communications and Information Systems Security and Evaluation Agency - US Staffed and Operated EUSEC Military Committee European Communications Security and Evaluation Agency - UK Staffed and Operated DACAN Military Committee Distribution and Accounting Agency US Staffed and Operated EUDAC Military Committee European Distribution and Accounting Agency UK Staffed and Operated NATO UNCLASSIFIED

  7. NAC NATO SECURITY COMMITTEE MILITARY COMMITTEE NATO C3 BOARD WG/1 ADP SECURITY SC/5 Information Systems SC/6 Communications Network SC/7 Identi- fication SC/8 Naviga-tion SC/1 Joint Requirements and Concepts SC/2 Inter- operability SC/3 Frequency Management SC/4 INFOSEC PROVIDES INFOSEC TECHNICAL AND IMPLEMENTATION DIRECTIVES AND GUIDANCE Relationships NATO UNCLASSIFIED

  8. MILITARY COMMITTEE SC/4 INFOSEC Requirements NC3A NCSA NACMA Relationships NATO C3 BOARD SHAPE / ACO SACT SECAN DACAN EUSEC EUDAC Provides technical support, as needed NATO UNCLASSIFIED

  9. Secretary: LTC Mike Richardson Ad Hoc Working Groups INFOSEC SC AC/322 (SC/4) Staff co-Chairman Col. Enrico BOLOGNA National co-Chairman Mr. Mark Loepker ISDN AHWG/3 Dormant Chairman: VACANT COMMON CRITERIA AHWG/10 Chairman: Mr. David MARTIN Sec: LTC Mike RICHARDSON CRYPTOGRAPHIC DOCUMENTATION AHWG/14 Chairman: Mrs. Debby WALLNER Sec: Maj. Giordano EUSEPI TECHNICAL INFOSEC DOCUMENTATION AHWG/15 Chairman: Mr. Kjell W. BERGAN Sec: LTC Mike Richardson INTERCONNECTION OF NETWORKS(ICN)AHWG/4 Chairman: Mr. Jim OBAL Sec: Cdr. Bernd FÜSER NATO/NON-NATO CO-OPERATION AHWG/11 Chairman: Cdr. Bernd FÜSER SCIP AHWG/6 Chairman: Antony MARTIN Sec: Maj. Fred JORDAN INFOSEC ARCHITECTURES AHWG/13 Chairman: CDR Wolfgang KÖHLER Sec: Maj. Giordano EUSEPI CRYPTOGRAPHIC MODERNISATION AHWG/16 Chairman: LTC Robert LOGSDON Sec: Col Enrico BOLOGNA NATO UNCLASSIFIED

  10. Role of SC/4 • Develop Technical and Implementation Directives and Guidance Based on Security Policy • Assist in Identification and Formulation of INFOSEC Requirements • Promote Interoperability Between NATO and NATO Nations, Non-NATO Nations and International Organizations NATO UNCLASSIFIED

  11. Role of SC/4 (Continued) • Recommend Improvements to Operations, Materials, and Facilities • Contribute to the Identification of Vulnerabilities • Provide a Forum for Exchange of Information and Ideas NATO UNCLASSIFIED

  12. Role of SC/4 (Continued) • Maintain Technological Awareness of Developments That May Affect Security • Advise the NATO Security Council on Implications for NATO Security Policy • Monitor and Assess the INFOSEC Projects Within the NC3A NATO UNCLASSIFIED

  13. 2004 Achievements • Requirement for, Selection, Approval and Implementation of, Security Tools • Electronic Labelling of NATO Information • Consistent Marking of NATO Information in C3 Systems • Intrusion Detection • Support of PKI Cryptographic Aspects NATO UNCLASSIFIED

  14. 2004 Achievements (Continued) • Education and Training Requirements for INFOSEC Personnel • Criteria for NNN Structures, Rules and Procedures • Strategy on Non-NATO Cryptographic Confidentiality Issues – Implementation Plan • INFOSEC Course for NNN and IO • NATO Public Key Infrastructure Reference Architecture NATO UNCLASSIFIED

  15. 2005 Planned Activities • Cryptographic Security and Cryptographic Mechanisms • Protecting NATO Information Over the Internet • Network Centric Environment • Guidance on Common Criteria • Technical Characteristics for Primary Rate Interface NATO UNCLASSIFIED

  16. 2005 Planned Activities (Continued) • Secure Communications Interoperability Protocol • Comprehensive Cryptographic Modernisation Roadmap • INFOSEC Training and Awareness Programme • Plenary Session in EAPC Format • INFOSEC Day with Industry NATO UNCLASSIFIED

  17. Areas of Interest NATO UNCLASSIFIED

  18. INFOSEC Capability Package • Reference Architectures • Strategic Commands Input • Statement of Requirements • Provides Nations Insight for INFOSEC Product Development NATO UNCLASSIFIED

  19. Crypto Selection and Procurement • CSP Task Force • IS, IMS, Nations, SC, Agencies • Agreed That Synchronisation Will Reduce Procurement Delay • NICE & NSIE Initial Review • Separate Serial Processes - Caused Delays • Change to Integrated Parallel Approach NATO UNCLASSIFIED

  20. Cyber Defence andNCIRC • Central Capability • Incident Handling and Reporting • Establish Links With National CIRCs • NATO Computer Incident Response Capability (NCIRC) IOC Declared on 16 Dec 04 • IDS 17 Sites/2 Sensors Each by End 05 NATO UNCLASSIFIED

  21. NATO Public Key Infrastructure • Governed by NATO PKI Management Authority (NPMA) • Ensure Interoperability Across NATO, NATO Nations and its Partners • Provides Identification, Authenticity and Integrity • Provides Protection of NATO Information up to NATO Restricted • Must have Public Key Enabled Applications NATO UNCLASSIFIED

  22. NATO Network Enabled Capability (NNEC) • Support to Political and Military • Strategic Framework • Late 2005 • INFOSEC Aspects • Operational Requirements • Security Policy • Network Interconnections • Risk Management NATO UNCLASSIFIED

  23. Road Map • NOS Developed • Support NSC and NC3B • Web based collection of NATO Security Policies, Directives, and Guidance for the protection of NATO Information on Communication and Information Systems (CIS) • In Final Development NATO UNCLASSIFIED

  24. Summary • Protecting Information is Complex • Policy, Directives, Guidance and Oversight Provide Common Agreed Methods for Protection • Collaborative Process Between NATO Bodies and NATO Nations • Requires Constance Vigilance NATO UNCLASSIFIED

More Related