Re: [Fed-Talk] Privacy policies and logging records
Re: [Fed-Talk] Privacy policies and logging records
- Subject: Re: [Fed-Talk] Privacy policies and logging records
- From: "Rowe, Walter P. \(Fed\) via Fed-talk" <email@hidden>
- Date: Tue, 5 Dec 2023 19:26:55 +0000
- Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nist.gov; dmarc=pass action=none header.from=nist.gov; dkim=pass header.d=nist.gov; arc=none
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=/RIieB0fjnWXE5fhQ2yzkrc1NQfqFaSM4wqZsVYYLpI=; b=C9L3rWz8nrN+d9Fa49vLrId8GoErc0DmnLXqVDQuoe2Ae3kQOjWLAH/s0iCyjnbiJpn9+nS5LMcZAH//Sc0nqDR2FOiB+Geq69VIwabb/0IJHfNubc4JvdgrA/+UKLXafrutiRLy2DMFO4rOKBDuAUvGZiJ3PsmlJuGinZkyPm20XfkNE7UDy7vEZsb0pWuk7iB1Ky0WATcDqjQW/ljWMZ3RGCw7gYexvhK2nPc6KOVPbiN6a4SlPMzINS2ff519YamijsBa0ZBN39kQAk2C6dlmEWYx1GAbh28Bd+qkT3P4XsUSe75LpZcJIf7BOBALtZmCyvP++fOJU8c47FrQKQ==
- Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=LYY0nZ6mGskwnyUd3n3Wxa+Lglcpl5QrtmLaJHVH7g6TA0Ip5D86uqh4nMzlcqDPvKQ8I3aI0AsRnWCCapAWnRZmPNvioOIt+zkzFDsAy37xWdelZMUwcqwovaUVawVZsF8cb4eyaTkLEVqyYL6NffJqIHKccIk0pzjaTraZdAHsYXTZF+wP7bprt2TLncoBVFlWKBVTy2YnhhuGprF9oc1GVX/q8jWRr1dQIWgG3CVZT1G2jI7CHM8yb9j8461gbVpaVu4gS3pTlUsYdNINIqPvyL7aN1mdYAUIgCXjqC8d7G3kSkAaK5mg8jUzQM8mZDdQzvVUi1gS4UZKmA1FSQ==
- Thread-topic: [Fed-Talk] Privacy policies and logging records
The login banner tells you that you have no reasonable expectation of privacy.
You are accessing a U.S. Government information system, which includes: 1) this
computer, 2) this computer network, 3) all Government-furnished computers
connected to this network, and 4) all Government-furnished devices and storage
media attached to this network or to a computer on this network. You understand
and consent to the following: you may access this information system for
authorized use only; unauthorized use of the system is prohibited and subject
to criminal and civil penalties; you have no reasonable expectation of privacy
regarding any communication or data transiting or stored on this information
system at any time and for any lawful Government purpose, the Government may
monitor, intercept, audit, and search and seize any communication or data
transiting or stored on this information system; and any communications or data
transiting or stored on this information system may be disclosed or used for
any lawful Government purpose. This information system may contain Controlled
Unclassified Information (CUI) that is subject to safeguarding or dissemination
controls in accordance with law, regulation, or Government-wide policy.
Accessing and using this system indicates your understanding of this warning.
Walter
--
Walter Rowe, Division Chief
Infrastructure Services Division
Mobile: 202.355.4123
On Dec 5, 2023, at 2:00 PM, Todd Heberlein via Fed-talk
<email@hidden> wrote:
Hi all,
Does the federal government have any guidance on privacy policies on what can
be logged?
We are using Apple’s network system extension for macOS, and it collects a fair
amount of information. I was wondering if the government has any policies that
would say whether capturing this level of detail is permitted or not.
As an example in the screenshot below, box (1) shows information a typical
network monitor (e.g., Zeek or NetFlow) could collect on an encrypted
connection, and box (2) shows additional details Apple’s network system
extension can collect on the Mac for that connection (e.g., the URL passed over
the encrypted connection) even without MITM decryption.
<Traffic-for-fedtalk-annotated.png>
Any pointers on policies would be appreciated. Thanks,
Todd
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden