Compliance and Review of Logical Access Control in DoD Processes
DoD Memo - Publish Date: 01/24/07
download PDF
This Department of Defense policy memo requires the review of NIPRNET web sites to ensure proper configuration of mandatory/discretionary access controls on private web servers, web-based applications and web portals. It underscores the need for implementation of access controls for rules-based authorization decisions, in addition to use of Public Key Infrastructure for user authentication.