User:Howard C. Berkowitz/Sandbox-GW

From Citizendium
< User:Howard C. Berkowitz
Revision as of 17:21, 15 July 2008 by imported>Howard C. Berkowitz (New page: {{subpages}} For the United States military communications environment, where extranets handling different levels of sensitive-but-unclassified and [[classified information|classif...)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

This is a draft in User space, not yet ready to go to Citizendium's main space, and not meant to be cited. The {{subpages}} template is designed to be used within article clusters and their related pages.
It will not function on User pages.

For the United States military communications environment, where extranets handling different levels of sensitive-but-unclassified and classified data, the underlying "service provider" physical network is the Defense Information System Network (DISN). While there are different extranets above the DISN, they are not necessarily virtual private networks, as secure communications technology is not trusted to run unencrypted information, with different sensitivity levels, in the same router.

According to its management office, DISN "... has been the United States Department of Defense's enterprise network for providing data, video and voice services for 40 years." During those 40 years, the speed of the physical transmission lines have been increasing, and, in a major architectural transition, it moved from the Public ]]Asynchronous Transfer Mode]](PATM) circuit switching to a worldwide IP routing core. The core interfaces to classified provider edge routers, which split off the traffic of a particular sensitivity level

to the DISN IP core worldwide.

The DISN-LES is a Defense Working Capital Fund cost-reimbursable program migrating from the The DISN-LES is a Mission Assurance Category III program designed to pass encrypted unclassified and classified traffic via the Classified Provider Edge (CPE) Routers of the DISN and provide capability for subscriber sites requiring "Next Generation" network, encryption, software, NETOPS, and advance services not offered by other DISN Subscriber Services (DSS).

The network provides a non-Command and Control, risk aware infrastructure identical to the DISN core available to subscribers of a variety of Communities of Interest to support a "test once" Capability Test and Evaluation (T&E), Interoperability, Information Assurance, Certification and Accreditation (C&A), and Operational T&E (OT&E) environment which would include Developmental (DT), Interoperability (IOP), Information Assurance (IA) and Net-Centric Key Performance Parameter (NR-KPP) compliance testing of capabilities, systems, equipment, network monitoring and management technologies, data link compliance, compatibility testing among products produced on evolving standards for systems planned for the operational community.

The IPv6 capable transport provides Quality of Service(QoS) for customer use of advanced services that support Resource Reservation Protocol (RSVP)), Virtual Private LAN Services (VPLS), bridged VLANS, Multicast and Broadcast (e.g., Links 11/16) protocols. The DISN-LES is piloting controlled interface solutions with SIPRNet, NIPRNet and DMZs which supports federating emerging and current capabilities, to facilitate a "Test and Train like we Fight" joint operational mission environment for the development of tactics, techniques and procedures (TTP) and for access to Live, Virtual, Constructive (LVC) resources in support of acquisition requirements. The results of network, hardware and software tests and exercises are shared with equipment and software suppliers and government organizations to provide a Net-Centric real world experience with the technologies that influence network designs and system acquisition decisions throughout the industry.

Of course, if the data is appropriately encrypted so DISN routers would only know where to deliver packets, perhaps only to a gateway to a more sensitive network so the internal destination