Get documents about "Basic Guidance on Planning Design and Implementation of SIPRNET 20 August 2008 A dobe Systems Engineering Command U S Army InformationReader 9
Description
Nov 28, 2009 Fort Bragg Construction Contracts document sample
Document Sample
Basic Guidance on Planning,
Design, and Implementation
of SIPRNET
20 August 2008
A dobe Systems Engineering Command
U.S. Army InformationReader 9.lnk
Fort Detrick Engineering Directorate (ISEC FDED)
Page 1 of #
Introduction
• SIPRNET requirements now considered as
common user, in limited quantities and
environments
• Users may also fund out of mission funding
• Standardized designs under development
• Need to engineer within regulations and
policies
• Also need to pay attention to types of funding
– OMA vs. OPA
Page 2 of #
Technical Guides
• Technical Guide for the Integration of Secret Internet
Protocol Router Network (SIPRNET), Version 5.0, August
2008
• Technical Guide for the Installation Information
Infrastructure Architecture, July 2008
• Both are available on AKO:
– FilesUS Army Organizations AMC CECOM
CECOM ISEC FDED
– Before clicking on CECOM ISEC FDED, please register to
receive automatic notification of updates.
– Within this folder, you will see several folders - one
contains the I3A Tech Guide and one the SIPRNET Tech
Guide and Cost Estimates.
• This site also contains a folder for the Wireless Design
Guide from ISEC, TIC
Page 3 of #
Policies and Regulations
Primary Resources
• NSTISSI 7003, Protected Distribution Systems (PDS), 13 Dec 96
• NSTISSAM TEMPEST 2/95, Red/Black Installation Guide, 12 Dec 95
• NSTISSAM TEMPEST 2/95A, Amendment to TEMPEST 2/95,
03 Feb 00
• AR 380-5, Department of Army Information Security Program,
29 Sep 00
• AR 25-1, Army Knowledge Management and Information Technology,
15 Jul 05
• AR 25-2, Information Assurance, 14 Nov 03
• AR 420-1, Army Facilities Management, Chapter 4, Army Military
Construction and Non-Appropriated-Funded Construction Program
Development and Execution, 02 Nov 07 (*Note* AR 415-15 has been
replaced by AR 420-1)
Page 4 of #
Page 5 of #
Current SIPRNET Efforts
• BCT Effort Under I3MP
• FORSCOM Initiative
• MCA Guidelines
• US Army Reserves
• IMOD at Fort Bragg
Page 6 of #
BCT Effort Under I3MP
• PM NSC-funded effort – all sites will be completed by Dec 08
• Includes SIPRNET extensions for Warfighter BCTs, Sustainment
Brigades, Corps HQ, and Division HQ
• 12 sites – (W/S/C/D)
– Bliss (MCA/BCA) Drum (3/3/0/1) Lewis (3/1/0/0)
– Bragg (4/3/1/1) Hood (2(5)/3/1/1) Polk (1/0/0/0)
– Campbell (4/4/0/1) Irwin (1/0/0/0) Riley (3/3/0/1)
– Carson (4/3/0/1) Knox (MCA/BCA) Stewart (3/3/0/1)
• Standard design:
– 54 drops per BCT
– 8 INEs per BCT
– Hardened PDS
• Design is tailored to meet the site requirements after completion of the
survey and coordination with DOIM and user.
Page 7 of #
FORSCOM Initiative
• FORSCOM has identified needs not met with the initial I3MP
effort.
• Survey, develop TA/CE, implement, configure, and make
operational
On Contract Future Work (FY09)
Benning (10 drops) Jackson (10 drops) APG (9 drops) Lvnworth (18 drops)
Bliss (50 drops) Lee (14 drops) Benning (36 drops) Leon Wd (18 drops)
Bragg (500 drops) Leon Wd (10 drops) Bragg (5 drops) Lewis (342 drops)
Campbell (50 drops) Lewis (160 drops) Campbell (68 drops) Polk (54 drops)
Drum (30 drops) Riley (20 drops) Carson (15 drops) Riley (23 drops)
Hood (100 drops) Sill (150 drops) Hood (311 drops) Rucker (54 drops)
Irwin (10 drops) Stewart (20 drops) Knox (15 drops)
Page 8 of #
MCA Guidelines
• Centrally-funded effort beginning in FY08.
• MCA reviews (by ISEC) will include design of
SIPRNET connectivity.
– Imperative to have ISEC review of comm design
– Different PDS requirements for UAA and CAA
• CIO/G6 and PM NCS have contributed to the
development of SIPRNET profiles.
• 25% rule for new construction
• See supporting slides for list of buildings which
received SIPRNET and those that do not.
Page 9 of #
US Army Reserves
• Reserve-funded effort
• Will include implementation of 2 NOCs (Peachtree
City and Carson)
• Will also include implementation of SIPRNET Cafés
at 241 Reserve facilities
• Surveys will begin in FY08
• Installation work will begin in FY09
Page 10 of #
IMOD at Fort Bragg
• SIPRNET installed as part of the “big” I3MP project
• Funded by PM NSC
• Includes 1600 SIPRNET drops
• Currently being installed
Page 11 of #
Current ISEC Contracts
• BCT SIPRNET Contract
– Expires January 2009
– All applicable options have been awarded
• Army SIPR Options Contract
– Expires September 2009
Page 12 of #
Army SIPR Options Contract
OY
Option Price** OY Award Remain
Extra Small (10) $ 59,649.88 2 3
Small (20) $ 111,406.80 0 15
Medium (50) $ 193,682.38 0 15
Large (100) $ 359,613.15 0 10
Classified VTC $ 45,572.79 0 2
Unclassified VTC $ 45,572.79 0 5
Class/Unclass VTC $ 96,398.68 0 2
This price does not include TACLANEs or Sargent-Greenleaf locks.
TACLANE (w/shelf) = $10,200 / SG Lock = $94 on GSA/$150 thru contractor
**Prices shown have increased due to KO-approved price adjustment
Page 13 of #
Upcoming ISEC Contracts
• Army Reserve SIPR Contract
– Contract is scheduled for award in September 2008
– Initial award for 241 sites (6 or 10-drop SIPR
cafés, with possibility of 350 more sites at later
dates
• I3MP SIPR Contract
– Contract is scheduled for award in September 2008
– Initial award anticipated for 1000 drops
Page 14 of #
Army Reserve SIPR Contract
BY
Option Price BY Award Remain
6-Drop Option $ TBD 175 175
10-Drop Option $ TBD 125 125
This price does not include TACLANEs or Sargent-Greenleaf locks.
TACLANE (w/shelf) = $10,200 / SG Lock = $94 on GSA/$150 thru contractor
Page 15 of #
I3MP SIPR Contract
• Anticipated Options
– X-Small = 5 drops (1 building)
– Small = 10 drops (2 buildings)
– Medium = 20 drops (3 buildings)
– Large = 60 drops (6 buildings)
– X-Large = 110 drops (8 buildings)
Page 16 of #
Approved Encryption Devices
• Altasec (ViaSat)
• KIV-7M
• RedEagle (L3)
• SecNet 54 w/Ethernet connection (Harris)
• TACLANE Micro / Mini (General Dynamics)
• Talon (L3)
• Other devices
*** Each of these devices may be used effectively,
depending on requirements for bandwidth, type of
environment, and available funding.
Page 17 of #
Updates to the SIPRNET TG
• Expansion and update of the reference section
• Updated drawings and sketches
• Updated info pertaining to epoxy for raceway
• Expanded section on Multicast through INE
• Added section on VoSIP
• Added/updated info on current INEs (available and
Army-approved)
• Added list of MCA/BCA buildings for SIPRNET
• Improved readability
• Copies are available on CD
Page 18 of #
Important People
• CTTA: Certified Tempest Technical Authority
– According to Para 3.2 in 2-95, the CTTA must approve any SIPRNET
designs – “The cognizant CTTA must be consulted in the initial planning
phases for facilities that will process classified information….There
should be no commitment of funds without CTTA concurrence.”
• DAA: Designated Approving Authority
– The DAA is responsible for approving all local CANs and circuit
connectivity for the site.
– The DAA legally accepts and agrees to mitigate the risk associated with
the system.
– The DAA is personally responsible for any compromise of classified
information.
• Certification and Accreditation personnel
– All implementation must be done in accordance with regulations to
ensure that IA and DISA personnel will accredit the system or addition.
• Any design should be approved (and chopped) by the CTTA and the
DAA entities before any material is ordered or implementation begun.
Page 19 of #
Important Things to Remember
• Become familiar with the SIPRNET Tech Guide
• Capture requirements – plan ahead
– Important for the DOIM and any ISEC personnel to begin to gather
requirements for users/tenants.
– The more we know about the requirement, the better we can address
the real SIPRNET needs to the funding authorities.
• Involve the IA, DAA, and CTTA upfront and early
• Open dialogue with the SIPRNET survey team and engineers
– Balance personal desires with programmatic realities
– Coordinate schedules – deployments, work hours, exercises, etc
• Follow CTTA guidance for design
• Support the team – access and availability of facilities
• Complete the paperwork
Page 20 of #
Points of Contact
ISEC FDED
Kimberly Reed, kimberly.reed@us.army.mil,
(301) 619-6414
Bernie Nestor, bernard.nestor@us.army.mil,
(301) 619-6406
Barbara Cadogan, barbara.cadogan@us.army.mil,
(301) 619-6452
PM NSC
Rick Schaeffer, richard.schaeffer@us.army.mil,
(732) 427-6671
Page 21 of #
Supporting Information
• MCA Guideline Tables for SIPRNET
– Protected Distribution System
– SIPRNET Buildings
– Breakout of Buildings with SIPRNET
– Breakout of Buildings without SIPRNET
Page 22 of #
Protected Distribution System
• Uncontrolled Access Area (UAA)
– Hardened PDS must be:
• Ferrous metal conduit or raceway (including all fittings
and connectors)
• Installed on the wall (recommended 6” from ceiling)
• Undergo daily inspection (IAW NSTISSI 7003)
• Controlled Access Area (CAA)
– Simple PDS must be:
• Metal, plastic, or any other material
• Installed on the wall (recommended 6” from ceiling)
• Undergo inspection (IAW tables in NSTISSI 7003)
Page 23 of #
SIPRNET Buildings
• Some facilities, structures, or buildings will
NOT get SIPRNET drops during the initial
construction.
• The designs for all other buildings will be
considered for SIPRNET drops (25% rule).
– Those with current need will be designed for PDS,
cable, and electronics.
– Those will possible future need will be designed
for PDS and cable only.
Page 24 of #
SIPRNET Buildings
• For SIPRNET buildings with 10 or more
drops, an INE solution will be recommended.
– An example of an INE is the Micro from GD.
• For SIPRNET buildings with less than 10
drops, Individual Mobile Encryptors (IME)
will be used.
– An example of an IME is a TALON card.
– No PDS will be required.
Page 25 of #
SIPRNET Buildings (w/INE)
ENCRYPTION
CATEGORY SUB SIPRNET PDS DEVICE (IME
CODE CATEGORY DESCRIPTION OF CATEGORY RQMT REQ'D or INE) COMMENTS
131 Communications (Information Systems) Buildings Y Y INE
133 Aviation Navigation and Traffic Aids Bldgs Y Y INE
137 Ship Navigation and Traffic Aids Buildings Y Y INE
141 Operational Buildings Y Y INE
142 Helium Plants and Storage Y Y INE
143 Ship Operational Buildings Y Y INE
156 Cargo Handling Facilities and/or Buildings Y Y INE
171 Training Buildings Y Y INE
172 Simulation Facilities Y Y INE
178 Training Ranges Y Y INE Drill down to only digital range facilities
179 Training Facilities Other Than Buildings Y Y INE Drill down to only digital range facilities
211 Aircraft Maintenance Facilities Y Y INE
212 Guided Missile Maintenance Facilities Y Y INE
213 Ships and Spares Maintenance Facilities Y Y INE
214 Tank and Automotive Maintenance Facilities Y Y INE
Page 26 of #
SIPRNET Buildings (w/INE)
ENCRYPTION
CATEGORY SUB SIPRNET PDS DEVICE (IME
CODE CATEGORY DESCRIPTION OF CATEGORY RQMT REQ'D or INE) COMMENTS
215 Weapons and Spares Maintenance Facilities Y Y INE
Ammunition, Explosives, and Toxics Maintenance
216 Facilities Y Y INE
Electronics and Communications Equipment
217 Maintenance Facilities Y Y INE
Miscellaneous Items and Equipment Maintenance
218 Facilities Y Y INE
Installation, Repair, and Operations Maintenance
219 Facilities Y Y INE
221 Aircraft Production Facilities Y Y INE
222 Guided Missiles Production Facilities Y Y INE
224 Tank and Automotive Production Facilities Y Y INE
225 Weapons and Spares Production Facilities Y Y INE
Ammunition, Explosives, and Toxics Production
226 Facilities Y Y INE
Miscellaneous Items and Equipment Production
228 Facilities Y Y INE
Installation Maintenance and Repair Production
229 Facilities Y Y INE
Research, Development, Test, and Evaluation
310 (RDT&E) Science Laboratories Y Y INE
311 Aircraft RDT&E Buildings Y Y INE
312 Missile and Space RDT&E Buildings Y Y INE
Page 27 of #
SIPRNET Buildings (w/INE)
ENCRYPTION
CATEGORY SUB SIPRNET PDS DEVICE (IME
CODE CATEGORY DESCRIPTION OF CATEGORY RQMT REQ'D or INE) COMMENTS
314 Tank and Automotive RDT&E Buildings Y Y INE
315 Weapons and Weapons Systems RDT&E Buildings Y Y INE
Ammunition, Explosives, and Toxics RDT&E
316 Buildings Y Y INE
Electronic and Communications Equipment RDT&E
317 Buildings Y Y INE
318 Propulsion RDT&E Buildings Y Y INE
Miscellaneous Items and Equipment RDT&E
319 Buildings Y Y INE
321 Technical Services RDT&E Buildings Y Y INE
371 RDT&E Range Facilities Y Y INE
610 Administrative Buildings Y Y INE
61001 Military Entrance Processing Station (MEPS) Y Y INE
61050 Administrative Building, General Purpose Y Y INE
620 Underground Administrative Structures Y Y INE
73015 Confinement Facility Y Y INE Warden
73016 Police/MP Station Y Y INE MP
Page 28 of #
SIPRNET Buildings (w/IME)
ENCRYPTION
CAT SUB SIPRNET PDS DEVICE (IME
CODE CAT DESCRIPTION OF CATEGORY RQMT REQ'D or TACLANE) COMMENTS
510 Medical Centers and Hospitals Y N IME 1 Drop
550 Dispensaries and Clinics Y N IME 1 Drop (If no hospital (under Cat 510))
61002 Recruiting Station: Storefront Y N IME
71111 Family Housing: General Officer Y N IME
73017 Chapel Y N IME Chaplain
74010 Auditorium, General Purpose Y N IME Deployment Purposes (IME or Roll-about)
74028 Physical Fitness Center Y N IME Deployment Purposes (IME or Roll-about)
74034 Community Activities Center Y N IME Deployment Purposes (IME or Roll-about)
Page 29 of #
Non-SIPRNET Buildings
CAT SUB CAT SUB
CODE CAT DESCRIPTION OF CATEGORY CODE CAT DESCRIPTION OF CATEGORY
111 Airfield Runways Operational Support Facilities Other Than
112 Airfield Taxiways 149 Buildings
113 Airfield Aprons 151 Piers and Wharfs
116 Other Airfield Pavements 154 Sea Walls, Bulkheads, and Quay Walls
121 Aircraft Fuel Dispensing Facilities 155 Small Craft Berthing
122 Marine Fuel Dispensing Facilities 159 Other Waterfront Operational Facilities
123 Land Vehicle Fuel Dispensing Facilities 163 Moorings
124 Operating Fuel Storage Facilities 164 Marine Improvements
125 Petroleum, Oil, and Lubricant Pipeline 177 Impact, Maneuver, and Training Areas
390 RDT&E Facilities Other Than Buildings
126 Other Liquid Fuel and Dispensing Facilities 411 Bulk Liquid Fuel Storage
Communications Facilities Other Than Liquid Storage Other Than Water, Fuel,
132 Buildings 412 and Propellants
Aviation Navigation and Traffic Aids 421 Depot and Arsenal Ammunition Storage
134 Facilities Other Than Buildings Installation and Ready-Issue Ammunition
135 Communications Lines 422 Storage
136 Airfield (Heliport) Pavement Lighting 423 Liquid Propellant Ammunition Storage
Ship Navigation and Traffic Aids Other 424 Weapon-Related Battery Storage
138 Than Buildings 425 Open Ammunition Storage pad
Page 30 of #
Non-SIPRNET Buildings
CAT SUB CAT SUB
CODE CAT DESCRIPTION OF CATEGORY CODE CAT DESCRIPTION OF CATEGORY
431 Depot and In-Transit Cold Storage 711 Family Housing: Dwellings
71112 Family Housing, Colonel
432 Installation and Ready Issue Cold Storage 71113 Family Housing, LT Colonel and Major
441 Depot and Arsenal Covered Storage Family Housing, Company Grade and
Installation and Organizational Covered 71114 Warrant Officer
442 Storage 71115 Family Housing, Senior NCO
451 Depot Open Storage 71116 Family Housing, Junior NCO/Enlisted
Installation and Organizational Open 71117 Family Housing, Other Than Military
452 Storage 712 Family Housing: Trailers
Medical and Medical Support Facilities 713 Family Housing: Trailer Sites
530 (Laboratories) 714 Family Housing Support Facilities
540 Dental Clinics 720 Transient Housing
61055 Waiting Area/In-Out Processing Enlisted Personnel Unaccompanied
61065 Technical Library 721 Personnel Housing
61070 Red Cross Building Unaccompanied Personnel Housing Mess
61075 Courtroom 722 Facilities
Administrative Structures Other Than Detached Unaccompanied Personnel
690 Buildings 723 Housing Facilities
Officers Unaccompanied Personnel
724 Housing
Page 31 of #
Non-SIPRNET Buildings
CAT SUB CAT SUB
CODE CAT DESCRIPTION OF CATEGORY CODE CAT DESCRIPTION OF CATEGORY
Emergency Unaccompanied Personnel Sewage and Industrial Waste Treatment
725 Housing 831 and Disposal
730 Personnel Support and Service Facilities Sewage and Industrial Waste Collection
Indoor Morale, Welfare, and Recreation 832 Lines
740 Facilities 833 Refuse and Garbage Facilities
Outdoor Morale, Welfare, and Recreation 834 Landfills
750 Facilities Potable Water Supply, Treatment, and
760 Museums and Memorials 841 Storage
811 Electrical Power Source 842 Potable Water Distribution System
Electrical Power Transmission and 843 Fire Protection Water Facilities
812 Distribution Lines 844 Nonpotable Water Supply and Storage
Electrical Power Substations and Switching 845 Nonpotable Water Distribution System
813 Stations 846 Water Storage: Potable
821 Heat Source 847 Water Storage: Nonpotable
851 Roads
822 Heat Transmission and Distribution Lines 852 Sidewalks and Other Pavements
823 Heating Gas Source 857 Training Area Roads
824 Heating Gas Transmission 860 Railroad Tracks
826 Refrigeration (Air-Conditioning) Source 861 Railroad Facilities Other Than Track
Chilled Water (Air-Conditioning) 871 Grounds Drainage
827 Transmission and Distribution Lines Grounds Fencing, Gates, and Guard
872 Towers
Page 32 of #
Non-SIPRNET Buildings
CAT SUB CATEGORY SUB
CODE CAT DESCRIPTION OF CATEGORY CODE CATEGORY DESCRIPTION OF CATEGORY
880 Fire and Other Alarm Systems 923 Foreign Rights
881 Fire Extinguishing Systems
932 Clearing, Grading, and Landscaping
Miscellaneous Utilities Measured in Square
933 Demolition of Facilities
891 Feet (SF)
934 Cut and Fill
892 Miscellaneous Utilities Measured in Each 940 Contaminated Facility or Area
Miscellaneous Utilities Measured in Linear
893 Feet
Miscellaneous Utilities Measured in Cubic
894 Feet Per Minute
895 Miscellaneous Utilities Measured in Gallons
Land Purchase, Condemnation, Donation,
911 or Transfer
912 Public Domain Withdrawal
913 License or Permit
914 Public Land of Territories and Possessions
Land Purchase, Donation, or Transfer to
915 State (National Guard Use Only)
921 Easements
922 In Lease
Page 33 of #
Related docs
Other docs by gsn61905
