See also:
ALARACT 256/2010 – DIRECTED ACTIONS TO SAFEGUARD AGAINST UNAUTHORIZED INFORMATION DISSEMINATION
- 2 pages
- For Official Use Only
- August 17, 2010
Classification: UNCLASSIFIED
Caveats: FOUODTG: 211048Z
Precedence: PRIORITY
Subject: ALARACT 256/2010 – DIRECTED ACTIONS TO SAFEGUARD AGAINST UNAUTHORIZED INFORMATION DISSEMINATION (U)UNCLASSIFIED//FOR OFFICIAL USE ONLY.
THIS MESSAGE HAS BEEN SENT BY THE PENTAGON TELECOMMUNICATIONS CENTER ON BEHALF OF DA WASHINGTON DC//DAMO-AOC/DCS, G-3/5/7//SUBJECT: DIRECTED ACTIONS TO SAFEGUARD AGAINST UNAUTHORIZED INFORMATION DISSEMINATION (U)
THIS MESSAGE HAS BEEN SENT BY THE PENTAGON TELECOMMUNICATIONS CENTER ON BEHALF OF DA WASHINGTON DC//DAMO-AOC//DCS, G-3/5/7 SENDS PASS TO ALL PRINCIPAL OFFICIALS OF HEADQUARTERS, DEPARTMENT OF THE ARMY; ARMY SERVICE COMPONENT COMMANDS; ARMY COMMANDS; AND DIRECT REPORTING UNITS.
REFERENCES:
REF/A/ARMY REGULATION AR 25-2//24 OCTOBER 2007/RAPID ACTION REVISION 23 MARCH 2009//INFORMATION ASSURANCE: THIS REGULATION ESTABLISHES THE POLICIES AND RESPONSIBILITIES FOR THE PROTECTION OF ARMY NETWORKS AND INFORMATION.
REF/B/ALARACT 246/2010/DTG 170133Z AUG 10//SUBJECT: APPLICATION OF INFORMATION SECURITY PROCEDURES
REF/C/ALARACT 245/2010/DTG P141042Z AUG 10//SUBJECT: SENSITIVE INFORMATION IN THE PUBLIC DOMAIN
(U/FOUO) NARR: THIS MESSAGE DIRECTS IMMEDIATE AND FOLLOW ON ACTIONS NECESSARY TO PROTECT AGAINST THE UNAUTHORIZED DOWNLOADING OF SENSITIVE INFORMATION.
(U/FOUO) 1. ALL ARMY ACTIVITIES ARE DIRECTED TO IMMEDIATELY REVIEW AND REVALIDATE WHO HAS SYSTEM ADMINISTRATOR(SA)/POWER USER PRIVILEGES. IN ACCORDANCE WITH (IAW) REF A, THESE PERSONNEL SHALL BE GRANTED THE MINIMUM SET OF PRIVILEGES REQUIRED TO PERFORM THEIR JOBS AND NOTHING MORE. ALL ACTIVITIES MUST ENSURE THAT THEY HAVE IDENTIFIED THESE PERSONNEL AND THAT NO OTHER PERSONNEL HAVE THESE PRIVILEGES. THIS IS KEY TO PRECLUDING UNAUTHORIZED DOWNLOADING AND DISSEMINATION OF SOFTWARE AND INFORMATION.
(U/FOUO) 2. IT IS CRITICAL THAT ALL ARMY ACTIVITIES CONDUCT A REVIEW OF THEIR POLICIES CONCERNING THE ABILITY TO WRITE TO REMOVABLE MEDIA LIKE COMPACT DISCS (CD) AND DIGITAL VIDEO DISCS (DVD) AND THAT THIS CAPABILITY BE LIMITED TO THE MAXIMUM EXTENT THAT IS OPERATIONALLY FEASIBLE. THIS MEANS THAT NOT EVERYONE CAN BE ALLOWED TO WRITE TO SUCH MEDIA. IAW WITH REFS B AND C, THIS IS ANOTHER IMPORTANT STEP IN PRECLUDING THE UNAUTHORIZED DOWNLOADING/DISSEMINATION OF SENSITIVE INFORMATION.
(U/FOUO) 3.THE ARMY IS DEVELOPING COMPLETION TIMELINES AND GUIDANCE THAT WILL DIRECT ALL ARMY ACTIVITIES TO IMPLEMENT THE HOST BASED SECURITY SYSTEM (HBSS) DEVICE CONTROL MODULE (DCM) ON ALL ARMY NETWORKS (NIPRNET AND SIPRNET). THIS WILL PROVIDE COMMANDERS THE CAPABILITY TO LIMIT THE ABILITY TO WRITE/DOWNLOAD TO CD/DVDS TO ONLY AUTHORIZED PERSONNEL. THE GENERAL PROHIBITION AGAINST THE USE OF NON-VOLATILE MEDIA (UNIVERSAL SERIAL BUS (USB) AND SECURE DIGITAL (SD) FLASH MEDIA) REMAINS IN EFFECT.
(U/FOUO) 4. IF NOT ALREADY ACCOMPLISHED, ALL ARMY ACTIVITIES WILL BE DIRECTED TO HAVE THE MCAFEE AGENT (MA), THE HOST INTRUSION PREVENTION SYSTEM (HIPS) (IN BLOCK HIGH MODE), THE ASSET BASELINE MONITOR (ABM), AND POLICY AUDITOR (PA) INSTALLED ON BOTH NIPRNET AND SIPRNET ASSETS. IN ADDITION, ALL ARMY HBSS EPO SERVERS SHALL BE CONNECTED TO THE HBSS EPO ROLL-UP SERVER FOR BOTH NIPRNET AND SIPRNET.
(U/FOUO) 5. POINTS OF CONTACT.
(U/FOUO) 5.1 ARMY G-2, MR. RICHARD F. MARCELL, RICHARD.F.MARCELL@US.ARMY.MIL, DSN 225-1321.
(U/FOUO) 5.2 ARMY CIO/G-6, MR. ROY LUNDGREN, LEROY.LUNDGREN@US.ARMY.MIL, DSN 332-7355.
(U/FOUO) 5.3 ARMY G-3/5/7, LTC DONALD P TAYLOR, JR DONALD-TAYLOR@US.ARMY.MIL, DSN 225-4627.
Classification: UNCLASSIFIED
Caveats: FOUO