Browse > Article
http://dx.doi.org/10.7472/jksii.2021.22.6.91

CSfC Network Security Architecture Analysis for the Assurance of Commercial Security Solutions in Defense Area  

Lee, Yong-joon (Far East University)
Park, Se-joon (Information Security Group, SK)
Park, Yeon-chool (Advanced Robotics LAB, LG)
Publication Information
Journal of Internet Computing and Services / v.22, no.6, 2021 , pp. 91-97 More about this Journal
Abstract
The United States is responding to evolving cyberattacks through the Commercial Solutions for Classified Program (CSfC). Authorized safety evaluation and certification are being carried out so that US government agencies can quickly introduce civilian commercial security products into the national pavilion. Commercial security products registered in the CSfC process can be used by defense agencies through a rapid approval process. Defense agencies approve commercial security products without duplicate evaluation. Approved security products can reduce the time, cost, and cost of the approval process required to implement the defense information system. In this study, security control for 4 types of network security architecture MSC (Multi-Site Connectivity), MA (Mobile Access), Campus WLAN, and DAR (Data at Rest) proposed by the US National Security Agency (NSA) for introduction to national defense A detailed analysis was performed on the items.
Keywords
CSfC(Commercial Solutions for Classified Program); MSC(Multi-Site Connectivity); MA(Mobile Access); Campus WLAN; DAR(Data at Rest);
Citations & Related Records
연도 인용수 순위
  • Reference
1 NSA, MA(Mobile Access) Capability Package Ver 2.1, 2021.6.
2 collaborative Protection Profile for Network Devices, Version: 2.1, 2018-09-24
3 PP-Module for Virtual Private Network (VPN) Gateways, Version: 1.1, National Information Assurance Partnership, 2020-06-18. https://www.commoncriteriaportal.org/files/ppfiles/mod_vpngw_v1.1.pdf
4 collaborative Protection Profile for Network Devices/collaborative Protection Profile for Stateful Intrusion Prevention Systems (IPS), Version 2.11, 2017-06-15.
5 Network Device Collaborative Protection Profile (NDcPP) Extended Package MACsec Ethernet Encryption, Version 1.2, 2016-05-10.
6 NSA, MSC(Multi-Site Connectivity) Capability Package Ver 1.1.8, 2021.5.
7 NSA, Campus WLAN(Wireless Local Area Network) Capability Package Ver 2.2, 2021.6.
8 NSA, DAR(Data at Rest) Capability Package Ver 5.0, 2020.11.
9 Network Device Collaborative Protection Profile (NDcPP)/Stateful Traffic Filter Firewall Collaborative Protection Profile (FWcPP) Extended Package VPN Gateway, Version: 2.1, National Information Assurance Partnership, 2017-03-08. https://www.commoncriteriaportal.org/files/ppfiles/ep_vpn_gw_v2.1.pdf
10 PP-Module for Virtual Private Network (VPN) Clients, Version: 2.2, National Information Assurance Partnership, 2021-01-05. https://commoncriteria.github.io/pp/vpnclient/vpnclient-release.pdf
11 collaborative Protection Profile for Stateful Traffic Filter Firewalls, Version 2.0, 2018-03-14. https://www.commoncriteriaportal.org/files/ppfiles/CPP_FW_V2.0E.pdf