Much attention lately has been given to insider threats and to shoring up network security in the Intelligence Community (IC) and Department of Defense (DoD, yet one of the great vulnerabilities left for America’s enemies to exploit is access to classified information via Audio Visual (AV) channels. With current budget cuts and travel restrictions, along with a push to share more information among various agencies, the demand to provide video conferencing access to multiple domains in a single location is rapidly increasing. While video access to both of the primary DoD networks (NIPR, SIPR) and to IC networks has been common for some time, there has been a recent increase in demand on these networks. There is also an increase in the number of and the utilization of separate and/or dedicated SCI networks within the Intelligence Community . More and more personnel are seeking access to multiple of these networks at each point of access to these resources. These multiple networks may span various agencies and security classifications. To find out more please read our white paper on “AV Security Risk Migration”
In response to this trend, Freeport Technologies develops and employs a variety of methods to ensure security requirements are properly defined and addressed throughout the design, configuration, and implementation phases of multi‐domain AV systems.
Policy & Procedure Development – A set of policies and procedures is developed in order to classify all audio visual resources and functions of the system. Source Management, Isolation & Distribution – A system design is created using key hardware components which provide the proper level of isolation and control of all resources and functions.
System Configuration – The system software is configured to enforce the agreed upon policies and procedures developed in the first phase and then deployed in the system design.
Functional Testing & Verification – A test and acceptance document is developed which provides a step by step process of testing and verifying that the system is functioning as intended, with the proper security policies and procedures in place.
In addition, Freeport has developed several AV products that were specifically designed to effectively manage security risks and to reduce overall implementation costs. These products and the risks that they are designed to mitigate are listed below. To find out more please read our white paper on “AV Security Risk Migration Solutions”.
Enterprise Room Control (ERC)
"Alleviates Source Management and Environmental Risks"
Freeport’s AV system software Enterprise Room Control (ERC) was developed using an object‐oriented programming language (Microsoft C#). It was designed as a simplified and modern software platform which provides scalability and maintainability in an environment that has been historically limited in both of these areas by proprietary AV programming languages. ERC provides built in security modeling; providing the ability to address specific functional requirements and enforce security policies without custom programming.
Multi‐Domain Video Network Switch (MDVNS)
"Eliminates Data Tunneling Risks"
The Freeport Multi‐Domain Video Network Switch (MDVNS) permits a single video CODEC to be utilized on up to nine IP networks of varying security classifications. The MDVNS meets all current DISA requirements and future requests as detailed in the STIG dated January 2008. The MDVNS is the only secure VTC switching solution that has been approved by the Defense Intelligence Agency for use on the JWICS top secret network. It has also been approved for operation by DISA for NIPR and SIPR, NRO, NGA, Coalition Forces, and many other classified networks.
Room Control Isolator (RCI)
"Mitigates Residual Data Risks"
Freeport has developed a hardware device that provides the means to program and control AV system components (video codec, displays, etc) without exposing any data that might be contained in them or on the network to which they are connected. Freeport’s Room Control Isolator (RCI) prevents the AV control system from permanently inheriting the security classification of the network that specific AV components are connected to. The RCI addresses room control security issues without modification of existing system designs, it is manufacturer neutral, and it can be used with any type of control device.