DoD to Deploy Windows 10 Agency Wide by January

Discussion in 'Science & Technology' started by Pathfinder, Mar 9, 2016.

Share This Page

  1. Pathfinder

    Pathfinder Lieutenant Colonel

    Joined:
    Dec 17, 2015
    Messages:
    1,406
    Likes Received:
    2,436
    Location:
    United-States
    DOD-wide Windows 10 rapid deployment to boost cybersecurity

    hero_carousel_2in1_mini_start_CortanaMarket_1x.png


    WASHINGTON (AFNS) --
    The Defense Department will deploy Windows 10 departmentwide by January to strengthen cybersecurity and streamline the information technology operating environment, according to a Feb. 26 memo by Deputy Defense Secretary Bob Work.

    Work addressed the memo to secretaries of the military departments, the chairman of the Joint Chiefs of Staff, defense under secretaries, defense agency directors, DOD field activity directors and other senior leaders.

    “After consultation with department leadership and through discussions with the DOD chief information officer, I am directing the department to complete a rapid deployment and transition to Microsoft Windows 10 Secure Host Baseline,” Work wrote.

    “This decision,” he added, “is based on the need to strengthen our cybersecurity posture while concurrently streamlining the IT operating environment.”

    Strengthening cybersecurity

    The secure host baseline approach to the transition was developed in partnership with the military departments and other DOD components, including the DOD Chief Information Office, National Security Agency and Defense Information Systems Agency.

    The deputy secretary directed U.S. Cyber Command, through U.S. Strategic Command, and in consultation with the CJCS and DOD CIO Terry Halvorsen, to lead the directive’s implementation.

    Halvorsen said the DOD-wide shift to a single operating system is unprecedented and offers several benefits.

    “Transitioning to a single operating system across the department will improve our cybersecurity posture by establishing a common baseline,” the CIO said, adding that deploying Windows 10 also will help lower the cost of DOD information technology.

    Pass the hash

    DOD will transition more than 3 million Windows-based desktops, laptops and tablets to Windows 10, a cross-platform release that does not include mobile phones, said David Cotton, the deputy CIO for information enterprise.

    New security features in Windows 10 will help the department enable faster software patching, he said, and counter a major cyber-intrusion technique called “pass the hash.”

    In this hack, an attacker accesses a remote server by using a stored hash, or a one-way transformation, of a user’s password rather than the standard plain-text password.

    The operating system also will increase accountability and transparency across DOD networks, allowing cyber defenders to better detect malicious activity, Cotton said.

    Critical implementation

    Work said in his memo that he expects the full cooperation of all critical implementation components, including DISA and NSA.

    “DOD components are responsible for planning, resourcing and executing the Microsoft Windows 10 SHB deployment consistent with this memorandum,” he said, noting that the DOD CIO may update and refine the deputy secretary’s direction as needed during the implementation.

    From his perspective as STRATCOM commander, Navy Adm. Cecil D. Haney said that cyberspace underpins all his mission areas and has become a critical facet of national power.

    “This transition is another step toward ensuring we strengthen our cybersecurity posture,” he said. “It is also another example of a number of partners, including the DOD Chief Information Office, NSA, DISA, Cybercom, and DOD components, successfully working together to ensure our networks are resilient and secure.”

    http://www.af.mil/News/ArticleDispl...-rapid-deployment-to-boost-cybersecurity.aspx
     
    Technofox likes this.
  2. Technofox

    Technofox That Norwegian girl Staff Member Ret. Military Developer

    Joined:
    Oct 8, 2015
    Messages:
    900
    Likes Received:
    3,196
    Occupation:
    Professional "Doer" of "Things"
    Location:
    Norway
    Hobby:
    Being a geek
    Isn't Windows and Cybersecurity kind of an oxymoron? I'm using Windows 10, was using 8.1, and I like it for personal use. But for military applicationso_O? Windows, like Java, is one of those things I thought we all agreed not to touch?

    Well I guess having a common platform is good too. Makes fixing things easier.

    [​IMG]
     
    Pathfinder likes this.
  3. Pathfinder

    Pathfinder Lieutenant Colonel

    Joined:
    Dec 17, 2015
    Messages:
    1,406
    Likes Received:
    2,436
    Location:
    United-States
    Windows has more vulnerabilities compared to the other operating system because more people are trying to find vulnerabilities for it. A hacker would rather create malware for Windows because more people are using it meaning that more people will get the malware. A lot of security guys I know prefer Mac because it is more "secure", I don't know if thats because its designed to be secure or because there is less malware for it.

    Apple and linux can't be used in large enterprise environments because they are not easy to manage on a large scale. With windows you have Active Directory where you can manage user group policies etc. Office 365 is also offering a lot of capabilities as everything begins moving to the cloud. Windows 10 also has a thing called hello where Windows computers with infrared cameras can scan your face (something you are) for use when signing in. This combined with your password (something you know) is called Passport. This is more secure than the current Windows 7 we are using, even though windows 7 does support finger print scanning.

    All DoD computers must be configured to standards established by NIST as required by the FISMA Act of 2002. All federal information systems be certified and accredited prior to being deployed. All sub contractors working with DoD data must also do the same.

    For securing a DoD computer you follow a Security Technical Information Guide (STIG)

    http://iase.disa.mil/stigs/os/windows/Pages/win7.aspx

    :0?:
     
    Last edited: Mar 9, 2016
    Technofox likes this.
Loading...