Home / Cybersecurity / CIO Dana Deasy Issues DoD’s Action Plan to Protect Public-Facing Web Services

CIO Dana Deasy Issues DoD’s Action Plan to Protect Public-Facing Web Services

Dana Deasy

The Defense Department has announced plans to release by Aug. 17 a task order to facilitate the implementation of cybersecurity practices included in a binding operational directive from the Department of Homeland Security.

Dana Deasy, chief information officer at DoD, wrote a letter dated July 20 to Sen. Ron Wyden, D-Ore., to provide details about the Pentagon’s action plan to implement those cyber measures by the end of this year in order to safeguard public-facing email services and websites.

DoD will also issue a “roll out plan” by Dec. 31 for the implementation of the HTTP Strict Transport Security mechanism for all public-facing websites.

The letter was in response to Wyden’s call in May for DoD to advance the adoption of the Hypertext Transfer Protocol Secure encryption through HSTS on all public web services.

Deasy also offered details about DoD’s implementation plan for the public trust public key infrastructure, Domain-based Message Authentication, Reporting and Conformance and STARTTLS encryption protocol.

Check Also

OMB Directs Phase One Implementation of Evidence Act

The Office of Management and Budget released a memo on Wednesday calling on agencies to implement phase one of the Foundations for Evidence-Based Policymaking Act of 2018. OMB urges agencies to deploy a four-step approach to implementing the Evidence Act which “mandates a systematic rethinking of government data management to better facilitate access for evidence-building activities and public consumption.”

Leave a Reply

Your email address will not be published. Required fields are marked *