Ivanti Policy Secure (IPS) has an implementation for doing DoD PKI Token SSH logins using x509 certificates. This method is not the traditional static RSA keys. The information below will show you how to configure each step of the way, as well as some troubleshooting steps. The Requirements For the last 20 years, DoD has …
**Update: As of 17 Feb 2023, (2) new manufacturers and (6) new FIPS 140-3 modules have been certified For vendors offering capability to the U.S. Department of Defense (DoD), the use of Federal Information Processing Standard (FIPS) validated cryptography can be a make or break feature within their products. Active FIPS certification for all …
DoD Innovation Delays Culminating From the NIST CMVP Backlog Read More »
As we approach the 10 year anniversary of World IPv6 Launch, a parallel effort attempting to extend IPv4 addressing is taking place – introducing a series of complex technical, political, and logistical issues. With all the success occurring with the ongoing migration to IPv6 (49% IPv6 adoption in North America according to Google), we recommend you …
Why You Should Stay Away from Extending IPv4 Solutions Read More »
I know there’s been a lot of internet traffic on Log4j – not to mention all the drama on broken fixes, but we wanted to offer a different perspective: what are the Log4j vulnerability implications for DoD Information Network Approved Products List (DoDIN APL) testing and certification? What is the Log4j Issue? I wish this …
Earlier this year, DISA released the zero trust reference architecture for the DoD. Per President Biden’s Executive Order on Improving the Nation’s Cybersecurity released this year, “the Federal Government must advance toward Zero Trust Architecture.” With motivations within the Federal Government and DoD to adopt zero trust, several of our clients have asked how zero …
It has been decades in the making, but the near future is crystal clear now: the DoD is mandating IPv6-only. This is different than previous pushes to move the Department to some level of IPv6 enablement – including IPv6/IPv4 dual-stack, etc. This new push comes with very specific actions. This directive also arrives at the …
Lots of IPv6-related things hit the news cycle in the last few weeks.Here are some of those news items: 2020 IPv6 OMB Mandate: stating all federal agencies must transition at least 20% of their networks to IPv6-only by end of FY 2023 the NIST IPv6 Profile updated to their Revision 1 of the US Government …
Our very own Jeremy Duncan lead a webinar today on Network Simulation with EVE-NG. Thanks again to Tyrone Wilson from Cover6 Solutions and all the folks part of the DC Cybersecurity Professionals Meetup group for hosting us. If you have any questions feel free to get in contact with us today here! For anyone who …
The new trend for IPv6 migrations lately is going fully to IPv6, or IPv6-only. This means that your transition plan is IPv4 one day, and then you change and roll-out a single IP stack: to IPv6. You may be thinking, “but how is that possible considering most of the Internet is IPv4-only still?” The answer …