Host Based Security System: Difference between revisions

Seeing the need to supply a comprehensive, department-wide security suite of tools for DOD System Administrators, the ESSG started to gather requirements for the formation of a host-based security system in the summer of 2005. In March 2006, [[BAE Systems]] and McAfee were awarded a contract to supply an automated host-based security system to the department. After the award, 22 pilot sites were identified to receive the first deployments of HBSS.<ref>''{{Cite web|date=2010-06-19|title=Host Based Security System'', (HBSS)|url=https://web.archive.org/web/20100619104318/http://www.disa.mil/hbss/index.html, 3/13/2010|access-date=2021-08-18|website=web.archive.org}}</ref> During the pilot roll out, DOD System Administrators around the world were identified and trained on using the HBSS software in preparation for software deployment across DOD.

On October 9, 2007, the [[Joint Task Force for Global Network Operations]] (JTF-GNO) released [[Communications Tasking Order]] (CTO) 07-12 (''Deployment of Host Based Security System (HBSS)'') mandating the deployment of HBSS on all Combatant Command, Service and Agency (CC/S/A) networks within DOD with the completion date by the 3rd quarter of 2008.<ref>''[{{Cite web|date=2010-12-05|title=infoexchange|url=https://web.archive.org/web/20101205013909/http://www.afcea.org/events/landwarnet/08/infoexchange.asp Host Based Security System HBSS]'', 3/13/2010|access-date=2021-08-18|website=web.archive.org}}</ref> The release of this CTO brought HBSS to the attention of all major department heads and CC/S/A's, providing the ESSG with the necessary authority to enforce its deployment. Agencies not willing to comply with the CTO now risked being disconnected from the DOD [[Global Information Grid]] (GIG) for any lack of compliance.

* November, 2009: The [[United States Air Force|Air Force]] awarded [[Northrop Grumman]] with the deployment of HBSS on the SIPRNet<ref>Henry Kenyon, ''Northrop Grumman Wins Air Force SIPRNET Contract'',http://www.afcea.org/signal/signalscape/index.php/2009/11/northrop-grumman-wins-air-force-siprnet-contract/, 3/13/2010</ref>{{Dead link|date=August 2021}}

The DCM component of HBSS was introduced in HBSS Baseline 2.0 specifically to address the use of USB devices on DOD networks. JTF-GNO CTO 09-xxx, ''removable flash media device implementation within and between Department of Defense (DOD) networks'' was released in March, 2009 and allowed the use of USB removable media, provided it meets all of the conditions stated within the CTO. One of these conditions requires the use of HBSS with the DCM module installed and configured to manage the USB devices attached to the system.<ref>Tom{{Cite Conway, ''DODweb|date=2011-01-20|title=DoD Can Safely Use USB'', Securely {{!}} Blog Central|url=https://web.archive.org/web/20110120192355/http://blogs.mcafee.com/enterprise/public-sector/dod-can-use-usb-securely, (security insights blog), 3/9/2010|access-date=2021-08-18|website=web.archive.org}}</ref> The DCM was renamed to the data loss prevention (DLP) in HBSS Baseline 3.0 MR3.

The DISA Risk Management Executive Office (RE) formerly [[field security office]] (FSO) provides free technical support for all HBSS Administrators through their help desk. DISA has three tiers of support, from Tier I to Tier III. Tier I and Tier II support is provided by DISA FSO, while Tier III support is provided by McAfee. DISA FSO Support is available using one of the following methods:<ref>''IA{{Cite Tools'',web|date=2010-02-12|title=DoD Information Assurance Tools|url=https://web.archive.org/web/20100212232302/http://iase.disa.mil/tools/index.html, 3/14/2010|access-date=2021-08-18|website=web.archive.org}}</ref>