Managed Trusted Internet Protocol Service

Managed Trusted Internet Protocol Service
MTIPS architectural design, demonstrating the MTIPS transport and agency trusted domain

Managed Trusted Internet Protocol Service (MTIPS) was developed by the US General Services Administration (GSA) to allow US Federal agencies to physically and logically connect to the public Internet and other external connections in compliance with the Office of Management and Budget's (OMB) Trusted Internet Connection (TIC) Initiative.[1]

MTIPS will reduce the number of connections, as originally dictated in the TIC mandate, but will not reduce the connection points to the degree originally quoted. Instead, focus has shifted on the securing of existing connection using the MTIPS architecture.[2]

Contents

Managed Services

The Networx Program facilitates transition to an MTIPS transport provider for participating agencies. Verizon, Sprint, AT&T, and Qwest are the carriers who will participate in the MTIPS services.

Architecture

Standards Compliance

"MTIPS shall comply with the following standards, as applicable, and when commercially available. After award, the contractor may propose alternatives at no additional cost to the Government that meet or exceed the provisions of the listed standards." [3]

  • Applicable Internet Engineering Task Force (IETF) RFCs.
  • T1.276-2003 American National Standard for Telecommunications — Operations, Administration, Maintenance, and Provisioning Security Requirements for the Public Telecommunications Network: A Baseline of Security Requirements for the Management Plane.[4]
  • IP/MPLS Forum.
  • IEEE
    • 802.1Q
    • 802.1P
    • 802.3AD
  • Metro Ethernet Forum (MEF).
  • The PCI Data Security Standard (PCI DSS).
  • All new versions, amendments, and modifications to the above documents and standards when offered commercially.
  • MTIPS providers shall comply with current and future regulations, policies, requirements, standards, and guidelines for Federal U.S. Government technology and cyber security, including those listed below. Contractors shall comply with new document versions, amendments, and modifications. Those most notable include minimum expectations for MTIPS specified security services identified in this SOW. After award, the contractor may propose alternatives at no additional cost to the Government that meet or exceed the provisions.
  • E-Government Act of 2002, Title III (Federal Information Security Management Act (FISMA)).
  • NIST Federal Information Processing Standards Publication (FIPS) NIST FIPS PUB 140-2 — Security Requirements for Cryptographic Modules.[5]
  • NIST FIPS PUB 199 — Standards for Security Categorization of Federal Information and Information Systems.[6]
  • United States Computer Emergency Readiness Team (US CERT) reporting requirements. (http://www.us-cert.gov/federal/reportingRequirements.html)
  • The Health Insurance Portability & Accountability Act of 1996 (HIPAA) Standards for the Security of Electronic Health Information.
  • The Sarbanes-Oxley Act of 2002.
  • The Gramm-Leach-Bliley Financial Services Modernization Act, Pub. L. No. 106-102, 113 Stat. 1338, November 12, 1999 (GLBA).
  • The PCI Data Security Standard (PCI DSS).
  • (redacted in reference)
  • Standards included in Networx Contract Section C.2.4.3.1.2, Collocated Hosting Service (CHS).
  • Standards included in Networx Contract Section C.2.7.3.1.2, Network Based IP Virtual Private Network Service (NBIP-VPNS).
  • Standards included in Networx Contract Section C.2.10.1.1.2, Managed Firewall Service (MFS).
  • Standards included in Networx Contract Section C.2.10.2.1.2, Intrusion Detection and Prevention Service (IDPS).
  • Standards included in Networx Contract Section C.2.10.4.1.2, Anti-Virus Management Service (AVMS).
  • Department of Homeland Security Management Directive Number 11042, DHS MD11042, 2005. (http://www.fas.org/sgp/othergov/dhs-sbu.html)[7]
  • Electronic Code of Federal Regulation, Title 49, PART 1520—Protection Of Sensitive Security Information
  • IETF RFC 1757 — Remote Network Monitoring Management Information Base.
  • NIST suite of documents for conducting C&A.
    • SP 800-18 Rev 1 — Guide for Developing Security Plans for Federal Information Systems.
    • SP 800-30 — Risk Management Guide for Information Technology Systems.
    • SP 800-34 — Contingency Planning Guide for Information Technology Systems.
    • SP 800-37 — Guide for the Security Certification and Accreditation of Federal Information Systems.
    • SP 800-53 Rev 2 — Recommended Security Controls for Federal Information Systems.
    • Annex 3 to SP 800-53 Rev 2 — High Impact Baseline.
    • SP 800-53 A — Guide for Assessing the Security Controls in Federal Information Systems.
    • SP 800-59 — Guideline for Identifying an Information System as a National Security System.
    • SP 800-60 — Guide for Mapping Types of Information and Information Systems to Security Categories.
    • SP 800-64 Rev 1 — Security Considerations in the Information System Development Life Cycle.
    • SP 800-84 — Guide to Test, Training, and Exercise Programs for IT Plans and Capabilities.
  • Designation and Sharing of Controlled Unclassified Information (CUI), http://www.whitehouse.gov/news/releases/2008/05/20080509-6.html *All commercially available standards for any applicable underlying access and transport services.
  • OMB Memo M-05-22 — Transition Planning for Internet Protocol Version 6 (IPv6).

References

  1. ^ MTIPS: Changing the Landscape Jeff Erlichman, Government Computer News
  2. ^ U.S. Internet security plan revamped Carolyn Duffy Marsan, Network World
  3. ^ Network Managed Trusted Internet Protocol Service (MTIPS) Statement of Work (redacted) (PDF) Networx MTIPS SOW, gsa.gov (ref: Feb. 2010)
  4. ^ Operations, Administration, Maintenance, and Provisioning(OAM&P) Security Requirements for the Public Telecommunications Network: A Baseline of Security Requirements for the Management Plane (PDF) NSTAC, (ref. Feb. 2010)
  5. ^ [1] (PDF) NIST FIPS PUB 140-2
  6. ^ [2] (PDF) PUB 199
  7. ^ [3] (PDF) DHS MD11042.1, supersedes cited DHS MD11042

Wikimedia Foundation. 2010.

Игры ⚽ Нужно решить контрольную?

Look at other dictionaries:

  • Dynamic Host Configuration Protocol — DHCP redirects here. For other uses, see DHCP (disambiguation). A DHCP Server settings tab The Dynamic Host Configuration Protocol (DHCP) is a network configuration protocol for hosts on Internet Protocol (IP) networks. Computers that are… …   Wikipedia

  • Telcordia Service Interconnection Community — Launched in March 2007, the Telcordia Service Interconnection Community is a member based initiative for Internet Protocol (IP) based communications [ [http://www.telcordia.com/services/interconnection/community.html Telcordia Service… …   Wikipedia

  • Software as a service — (SaaS, typically pronounced sass ) is a model of software deployment where an application is hosted as a service provided to customers across the Internet. By eliminating the need to install and run the application on the customer s own computer …   Wikipedia

  • Computer network — Computer networks redirects here. For the periodical, see Computer Networks (journal). Datacom redirects here. For other uses, see Datacom (disambiguation). Internet map. The Internet is a global system of interconnected computer networks that… …   Wikipedia

  • Windows Vista networking technologies — This article is part of a series on Windows Vista New features Overview Technical and core system Security and safety Networking technologies I/O technologies Management and administration Removed features …   Wikipedia

  • Computers and Information Systems — ▪ 2009 Introduction Smartphone: The New Computer.       The market for the smartphone in reality a handheld computer for Web browsing, e mail, music, and video that was integrated with a cellular telephone continued to grow in 2008. According to… …   Universalium

  • Windows Server 2008 — Part of the Microsoft Windows family …   Wikipedia

  • Media and Publishing — ▪ 2007 Introduction The Frankfurt Book Fair enjoyed a record number of exhibitors, and the distribution of free newspapers surged. TV broadcasters experimented with ways of engaging their audience via the Internet; mobile TV grew; magazine… …   Universalium

  • Windows 2000 — Part of the Microsoft Windows family Screenshot of Windows 2000 Professional …   Wikipedia

  • Unix — (officially trademarked as UNIX, sometimes also written as Unix with small caps) is a computer operating system originally developed in 1969 by a group of AT T employees at Bell Labs, including Ken Thompson, Dennis Ritchie, Douglas McIlroy, and… …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”