Compliance
Government Sales
- Visa PCI Compliance
- NERC Compliance
- HITECH Act Compliance
- HIPAA Compliance
- Sarbanes-Oxley Compliance
- Basel II Compliance
- GLBA Compliance
- ISO 17799 Compliance
- FFIEC Compliance
- CA SB 1386 Compliance
- DCID 6/3 Compliance
- DoD 8100.2 Compliance
- FISMA Compliance
- NISPOM Compliance
Government Sales
Home > Compliance > DoD 8100.2 Compliance
DoD 8100.2 Compliance
What is DoD 8100.2?
The Department of Defense Directive 8100.2 (DoD 8100.2) defines the security policies for the use of wireless technologies within the DoD Global Information Grid. The main purpose of this directive is to protect DoD computer networks from the security vulnerabilities introduced via wireless networks. It was issued April 14, 2004 and went into effect immediately.
Who is affected by DoD 8100.2?
This directive applies to all DoD employees as well as visitors to DoD facilities. It also applies to contractors and others who have access to DoD information.
What are the requirements of DoD 8100.2?
Some of the requirements of the directive include:
- Implementing strong identification and authentication at both the device and network level (4.1.1)
- Encryption of data, to and from the wireless devices (4.1.2)
- Use of FIPS 140-2 Level 1 or Level 2 validated technology to encrypt wireless data end-to-end (4.1.2)
- Encryption of VoIP packets (4.1.2.1)
- Introduction of wireless technologies requires a security review and documentation (4.1.5)
A June 2, 2006 supplemental policy and guidance memorandum to DoD 8100.2 adds several requirements regarding WLAN (802.11) technology, including the following: "DoD Components must ensure that WLAN-enabled devices, systems, and technologies use a robust defense-in-depth security approach that includes confidentiality, integrity, and availability mechanisms. DoD Components must ensure that standards-based authentication and encryption are used."
How do organizations comply with DoD 8100.2?
All wireless communication must be encrypted end-to-end; it cannot be decrypted at unsecured access points. Furthermore, emerging and future wireless protocols need to be protected as well.
Wireless infrastructure and security technology must be FIPS 140-2 validated and must use robust standards-based authentication and encryption methods. Wireless devices, systems, and technologies must include confidentiality, integrity, and availability mechanisms as part of a defense-in-depth security approach.
What are the penalties for DoD 8100.2 non-compliance?
Personal Electronic Devices that are not compliant will not be allowed to access the DoD network. This is a mandatory directive and standard to be implemented throughout the U.S. Department of Defense. Non-compliance is not an option for anyone needing to access the DoD network.
How does CipherOptics help?
CipherEngine assures the confidentiality, authenticity, and integrity of data in motion on any network. Our approach to protecting both your network and your data is to deny access to everyone and permit by exception. With that approach as our driving force, our solutions provide you with both encryption and authentication of all your critical information on the LAN or Wireless LAN.
Using powerful 256-bit AES encryption that is approved by the NSA for "sensitive" information, CipherOptics hardware-accelerated appliances authenticate packets and protect data. Using the robust secure hash algorithm (SHA-1), our encryptors verify the integrity of the data, rejecting any packets that have been manipulated or altered. Secure hash can also be used to thwart unauthorized intrusion at the network level. Our encryptors' deterministic firewall feature can reject any packets that lack the proper encryption-based authentication of a trusted endpoint. This effectively turns the local network dark to all unauthenticated traffic from the outside network.
In support of DoD 8100.2, CipherOptics CipherEngine can also cryptographically segment data for secure communities of interest by separating data of different security levels that travel on the same network.
CipherOptics network encryptors are FIPS-140-2-compliant and available on government buying vehicles. They are field-proven in some of the most security-conscious networks in the world and are the preferred solution for securing high-speed IP networks by many agencies. Customers include the Social Security Administration, Department of Energy, Department of Agriculture, the U.S. Coast Guard, NASA, U.S. Army and the National Security Agency.
To discuss how CipherOptics can help you can comply with DOD 8100, call 1-877-878-6655 or feel free to a quick question.
Learn More About:
Network Encryption
Ethernet Encryptors
IP Encryptors
Policy and Key Management
Helpful Resources
Text of DoD Directive 8100.2