NIST CSL Bulletin, July 1993, NIST Connecting to the Internet: Security Considerations

NIST CSL Bulletin, May 1994, NIST Reducing the Risks of Internet Consideration and use

NIST Publication, Keeping Your Site Comfortably Secure: An Introduction to Internet Firewalls (Draft) September 1994,

USDA OIRM, DR 3140-1, USDA IRM Security Policy Dated March, 1995

USDA OIRM, DR 3300-1, Telecommunications (Appendix I, Internet), dated April 8, 1994

USDA OIRM, Guide to the USDA Internet

a Data which is exempted from disclosure under the Freedom of Information Act (Public Law 93-502) or whose disclosure is forbidden by the Privacy Act (Public Law 93-579) will not be transmitted over the Internet network unless encrypted. "Note: Logon IDs and passwords are frequently classified as sensitive information."

b All USDA agencies and staff offices using the Internet must follow the guidance in DR 3300-1 "Telecommunications," and report to OIRM the information requested in Appendix I, Section 4.

c USDA agencies and staff offices that plan a gateway to the Internet are responsible for funding, implementing and maintaining the prescribed protection, including devising, and implementing a comprehensive risk management program.

d Agencies and staff offices will access the Internet only through the USDA Internet Access Network. Any agencies currently accessing the Internet through other means may continue to do so provided:

e Host-based security will be the primary method of protecting USDA systems. However, many host-based security software packages cannot be trusted to protect us from the Internet, because of their vulnerability to denial-of-service attacks.

f Due to inherent weaknesses in certain Internet telecommunication services, and cumbersome aspects of some security packages, many sites will find that the most practical method of securing access to systems from the Internet is to use a secure Gateway or a firewall system. Agencies will perform risk assessments to determine where secure gateways, firewalls, smart cards, or authentication tokens will be most suitable. USDA agencies will:

g Firewall compromise would be potentially disastrous to subnet security. For this reason, agencies will, as far as is practical, adhere to the below listed stipulations when configuring and using firewalls.

h No USDA computer or subnet that has connections to the Internet can house privacy or sensitive information without the use of firewalls or some other means to protect the information.

i USDA agencies and staff offices must develop and document an Internet security strategy based on the type of Internet service selected for use. This strategy must be included in the Internet Security Plan.

j USDA agencies and staff offices that use the Internet must adhere to guidance stated in DR 3140-1 "USDA IRM Security Policy."

k All software available on the Internet must be scanned for Trojan horses or computer viruses once it has been downloaded to a USDA computer. All downloaded software should be loaded preferably onto a floppy disk and not to the system hard disk. Once you are reasonably assured that the downloaded software does not contain Trojan horses or computer viruses it can be placed on the hard drive. If the software will not fit on a floppy disk then the only option is the hard disk. The software must be scanned before use (executed).

l Mandatory vulnerability and risk assessment of existing gateways is required at annual intervals. Initial assessment should be completed within nine (9) months of the issuance of this policy.

m Agencies should conduct weekly or monthly reviews of audit trails of gateway software for breaches of security.

n USDA personnel, and contractor personnel working for USDA while using the Internet:

o USDA sponsored Internet connections are to be used for official USDA business.

p Host computers should be regularly scanned to ensure compliance with USDA security guidelines.

a The Director, OIRM, will:

b Agencies and Staff Offices That Have or Are Planning a Gateway to the Internet will:

c Agency Information Security Program Manager is responsible for:

a OIRM, Guide To The USDA Internet

b The following source documents may be obtained through the NIST Bulletin Board Service (BBS). To access the BBS, you need a computer with communications capability and a modem. For modems at 2400 bits per second (BPS) or less, dial (301) 948-5717. For 9600 BPS, dial (301) 948-5140. Modem settings for all speeds are 8 data bits, no parity, 1 stop bit.

c Internet users with telnet or ftp capability may telnet to the BBS at cs-bbs.nist.gov (129.6.54.30). To download files, users need to use ftp as follows: ftp to csrc.nist.gov (129.6.54. 1 1), log into account anonymous, use your Internet address as the password, and locate files in directory pub; an index of all files is available for download. For users with Internet-accessible e-mail capability, send e-mail to docserver@csrc.nist.gov with the following message: send filename, where filename is the name of the file you wish to retrieve. Send index will return an index of available files.

d Hard copy of NIST publications can be obtained by contacting National Institute of Standards and Technology at the following address:

NIST, Building 225

Room A-216

Gaithersburg, Maryland 20899-0001

Telephone No. (301) 975-3359

Fax No. (301) 948-0279

Application Protocol. Protocol used by applications that are invoked by the user (example: E-mail).

Backdoor. A term used to describe an entry to a network or computer. Usually a hidden logon identification (ID) and password are used to gain access through the backdoor. The hidden logon ID and passwords may be placed on the system by a hardware or software manufacture as a way for their technician to gain access for repair. Computer hackers/crackers may use these hidden logon IDs and passwords or use trojan horses to establish illegal and unauthorized logon IDs and passwords on systems. These IDs and passwords become the backdoor entry point to the computer system or network. The main illegal use of backdoors is to get around computer system or network security.

Computer Crackers. A name given by computer hackers to persons who break into systems and abuse the systems they break into. No matter what name is used, the unauthorized access of computers by the computer hacker or the cracker is a criminal act by law.

Computer Hacker. A person or group of persons using computers to illegally break into other computers. These persons normally have interest only in the ability to break into another system. This term also describes computer "whiz kids" who push their knowledge of computers and programming to its limits. The unauthorized access of computers by the computer hacker is a criminal act by law.

Computer Virus. A program designed to infect computer systems in much the same way as a biological virus infects humans. The typical virus reproduces by making copies of itself when inserted into other programs. Computer viruses normally infect either systems software or application programs.

Demilitarized Zone (DMZ). A screened "sub-net" configured such that both the Internet and the private network have access to hosts on the screened subnet, but traffic across the screened "subnet" is blocked. The subnet network is setup between the private "protected" network and the Internet [so that] to all hosts on the "subnet" are reachable from the outside."

Finger Command. A command which displays information about a user. This command will also display the contents of a file named in the users home directory.

Firewalls. An approach to security; it is a policy that defines the services and access to be permitted, and an implementation of that policy in terms of a network configuration, one or more host systems and routers, and other security measures such as advanced authentication in place of static passwords. The main purpose of a firewall system is to restrict access to or from a protected network (i.e., a site). It implements a network access policy by forcing connections to pass through the firewall, where they can be examined and evaluated.

Logic Bomb. A computer code that is preset to cause a malfunction when a specified set of logical conditions occur. For example, when a specific social security number in a payroll system is processed, the logic bomb is activated. The logic bomb will then cause an improper amount of money to be printed on the check.

Network File System (NFS). A system that allows you to work with files on a remote host as if you were working on your own host.

Network Information Services. Allows multiple systems to share databases, e.g., the password file, to permit centralized management.

Internet. A collection of world-wide "network of networks" that use the TCP/IP protocol suite for communications.

Internet Subnet. A USDA owned network which has been connected to the Internet.

Packet Filters. A router designed to screen packets as they pass between the router's interfaces. Filtering can be used to block connections from or to a specific host or network, and to block connections to specific ports.

Protocol. A set of rules that defines how computers transmit information to each other, allowing different types of computers and software to communicate with each other.

Router. A system used to transmit data between two computer systems or networks using the same protocol.

Risk Assessment. A process which analyzes and identifies current system value assets, existing security safeguards, vulnerabilities and determines impacts associated with an automated system or network. The risk assessment also identifies potential security safeguards.

Scan. A method used to examine computer coding/programs sequentially, part by part. Scans are made for virus signatures or potentially unsafe practices. (For example: scan for changes made to an executable file, or search for direct writes to specific disk sectors, etc.)

Sensitive Information. Information for which loss, unauthorized modification, or unauthorized disclosure would be detrimental to agency operations. Examples: information that is personal, proprietary, financial, National Security-related, or critical to agency plans and operations.

Shareware. Software that has been developed and placed in public domain or in general circulation for general public use. The developer of this software may requests a small fee ($1.00 - $20.00) for use and future updates.

Spoofing. A method of tricking system security into permitting normally disallowed network connections.

Subnet Security. Security provided at the USDA agency level network which has been connected to the Internet.

TCP/IP Protocol. A suite of rules (protocols) that define how data is transported among computers on the Internet.

Time Bomb. A computer code that is preset to cause a malfunction after a specific date, time, or number of operations. The "Friday the 13th" computer virus is an example. The system is infected for several days, or even months, and the virus lies dormant until the date reaches "Friday the 13th."

Trap Door. A set of instruction codes embedded in a computer operating system that permits access while bypassing security controls.

Trojan Horse. A set of unwanted embedded computer instructions inside a program. The instructions cause unexpected results when the program is executed. It may create logon ID's and passwords for later intrusion by hackers. Further, Trojan horses allow persons to create or gain access to the source code of common or frequently used programs. These programs may be modified to perform a harmful function in addition to its normal function. A Trojan horse can alter, destroy, disclose data, or delete files.

Virus Detection Software. Software written to scan machine readable media on computer systems. There are a growing number of reputable software packages available that are designed to detect and/or remove viruses. In addition, virus checkers programs can search text files for virus signatures or potentially unsafe practices.

Virus Signature. A unique set of characters which identify a particular virus. This may also be referred to as a virus marker.

Worm. A complete program that propagates itself from system to system, usually through a network or other communication facility. A worm is similar to a virus and can infect other systems and programs. A worm differs from a virus in that a virus replicates itself, and a worm does not. A worm copies itself to a person's workstation over a network or through a host computer and then spreads to other workstations. It can easily take over a network as the "Internet" worm did. Unlike a Trojan horse, a worm enters a system uninvited.

TFTP. A protocol used for booting diskless workstations, terminal servers and routers.

Unix. A computer operating system developed by Bell Laboratories. This system was developed originally for Bell Laboratories' internal use. The computer world learned of its portability and the system expanded into universal use. Unix runs on a variety of computer hardware.

USDA Internet. Is comprised of an interconnection of networks "owned" and operated by the USDA. It is not the same as "The Internet"; however it relies upon "The Internet" to interconnect with many other important networks. The USDA Internet uses FTS2000 circuits and The Internet does not use FTS2000 facilities. This is an important distinction since FTS2000 mandates the USDA use network 'A' circuits whenever intra-USDA business is conducted across Local Access and Transport Areas.... [The USDA Internet] is not a public network. [Nor is it a] network which comprises the core of the Internet [like some networks such as NSFNet]."

UUCP. Unix-to-Unix copy protocol. A system by which files can be transferred between Unix computers.

UUCP network. A network of Unix computers sites, that communicates via modems and phone lines using the UUCP protocol.