US Air Force,
LANGLEY AIR FORCE BASE: A new Air Force policy on encrypting and digitally signing e-mails is now in effect to ensure security and reliability of information as the battle for cyberspace dominance continues.
Officially called the Air Force Public Key Infrastructure Policy on Encrypting and Digitally Signing E-mails, it is designed to combat adversaries' growing attempts at network infiltration and sending barrages of malicious e-mails.
PKI is not simply a program. It is a combination of hardware, software, policies and procedures that allows users to securely send and receive e-mails. Every user has a personal identity on the Air Force network and now has the ability to protect their identity.
Defense Department networks sustain up to six million attacks per day, said Lt. Gen. Charles E. Croom Jr., director of the Defense Information Systems Agency and commander of the Joint Task Force-Global Network Operations, in a speech given at the 2007 Armed Forces Communications and Electronics Association SpaceComm conference.
A digital signature is the same as a signature on a piece of paper, they both are legally binding. Digital signatures also assure the recipient of the sender's identity and reaffirm that an e-mail remains unaltered through transmission.
Message encryption assures the sender that only the intended recipient will have the ability to receive and read the message.
“Increased threats and changes in mission needs resulted in our senior leaders recently modifying the Air Force mission to include cyberspace as a viable domain in which to fight and win,” said Col. Daniel Blaettler, the Cryptologic Systems Group commander at Lackland Air Force Base, Texas. “PKI is integral to defending our networks against those threats.”
Both digital signature and e-mail encryption are readily available tools and mandatory for network users when conducting official Air Force business through electronic means. The policy defines the criteria when these tools should be used.
Examples of when to use a digital signature include formal direction to a government employee or contractor, messages that stipulate an Air Force official position on any matter and messages that commit to, authorize or deny the use of funds in some manner, according to the policy.
In addition to being digitally signed, e-mail messages that contain sensitive, but unclassified information or mission critical information should also be encrypted with the PKI certificates to ensure confidentiality, according to the policy. Examples include e-mails containing for official use only information, Privacy Act Information or personally identifiable information, according to the policy.
“These are powerful, readily available tools everyone can use to ensure vital Air Force information infrastructure and operations are secure,” Colonel Blaettler said.
Operational security can now be practiced by every user with a click of the mouse. After composing a sensitive e-mail users can click on either or both the digitally sign or encrypt e-mail icons located on the e-mail message toolbar in Microsoft Outlook.
“Digital signature and encryption is not just a change in technology, it is a change in culture,” said James Pinder, Air Combat Command's core services manager.
