Re: [Fed-Talk] Re: ExpressCard/34 references
Re: [Fed-Talk] Re: ExpressCard/34 references
- Subject: Re: [Fed-Talk] Re: ExpressCard/34 references
- From: "Timothy J. Miller" <email@hidden>
- Date: Thu, 18 May 2006 12:11:46 -0500
Michael Kluskens wrote:
certainly in active use in DOD--I wonder how many times CAC PINs have
been typed into wireless keyboards,
Don't go there. :)
I picked up a wireless keyboard in an internal store at a DOD location
and could find nothing on the box that made me feel like using one of
those at that location was even remotely a good idea for anything. When
I queried the appropriate people there was nothing in the regs against
using a wireless keyboard no matter how bad it was.
DISA Wireless Security Technical Implementation Guide v4r1, under
authority of DODD8500.1. Not that it's forbidden, but read through the
requirements and tell me if it's not easier to just plug one in.
Just because they're in use doesn't mean that they're in compliance with
regs. We're also not allowed to process DoD data on non-DoD machines.
Outlook Web Access, anyone?
We still haven't seen the regs that exempt CAC cards from the regs that
restrict the carrying of computers in and out of secure spaces, after
all CAC cards are java computers.
It's the ID card, so it's required. I can't cite offhand but check with
DMDC for that. However, while you can bring the CAC in and out of
SCIFs, you can't (yet) insert the CAC into a reader attached to a Secret
or higher computer, as that (currently) makes the CAC classified. These
rules may be changing soon, and you'll see docs from NSA and directives
from DISA accordingly.
-- Tim
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden