Connectivity to tier 2 enclaves is permitted only via NSA approved trusted gateways, secure mail guard technologies, or other NSA approved multilevel security solutions. This tier operates in an environment that does not employ a direct connection to the Internet except via a tier 2 enclave and its associated security enhancements. This tier includes all of the security enhancements of tier 2 and is tailored to protect sensitive information up to and including information that may be classified up to the DoD Secret level. Tier 2 includes all tier 1 capabilities with the addition of a set of tier 2 services as shown in the diagram below. A secure path to the Internet and the service provider's network is required. This tier is tailored to Secure but Unclassified (SBU) mission functions and information. There are no requirements for protection of information content beyond these measures. Additionally, Networx contracts have basic requirements for adequate and reasonable means to ensure and protect the integrity and confidentiality of information, and availability of Networx services. Help desk functions are provided in tier 1 and Agency installed security mechanisms are employed as needed. This tier supports basic internet connectivity and is appropriate for non-mission critical functions or non-sensitive communications requirements. The tiers and services within the individual tiers are similar to the FTS2001 Multiple Tiered Security Profile (MSTP) service. A specific tier includes all services for that tier as listed in Section C.2.7.4.1.4.1 of the Networx contracts. With MTSS, GSA provides Government users with four levels of security solutions (tiers) which can be customized to individual users based on their needs for sensitive information protection.
8.Secure Managed E-Mail Service (SMEMS).7.Managed E-Authentication Service (MEAS).
3.Intrusion Detection and Prevention Service (IDPS).1.Managed Tiered Security Service (MTSS).In addition to this mandatory level of security, the Networx contracts provide additional security services that may be ordered on a fee-for-service basis. These requirements are detailed in Section C.3.3.2 Security Management of the Networx contracts. The contracts employ adequate and reasonable means to ensure and protect the integrity, confidentiality, and availability of Networx services, Operational Support Systems (OSS), and Government information transported or stored in the contractor's Networx services infrastructure. The Networx contracts require a basic level of security management for its contractors that ensures compliance with Federal Government generally accepted security principles and practices, or better.
0 kommentar(er)
