Description
The primary method of protecting confidentiality of information is via encryption. In addition to sensitive business data, there is also data about the network and systems themselves that need to be encrypted in order to prevent attacks.
Brick Information
Tactical
(0-2 years)
|
Strategic
(2-5 years)
|
|
|
Retirement
(To be eliminated)
|
Containment
(No new development)
|
- 40 bit
- LZS compression (retired as an encryption mechanism only)
|
|
Baseline
(Today)
|
Emerging
(To track)
|
- Algorithms
- 3DES
- MD5
- Key Size
- 168 bit
- 128bit
- 40bit
- 56 bit
- Database Encryption
- Message encryption
- Transport Encryption
- IPSEC
- WEP
- SSL
- SSH
- Blackberry Transport Encryption
- LZS compression
- Data Link Encryption
- File encryption PGP
|
- AES
- 802.11l
- S-HTTP
- S/MIME
|
Comments
Time Table
This architecture definition approved on:
July 18, 2003
The next review is scheduled in:
TBD