CIO Dana Deasy Issues DoD’s Action Plan to Protect Public-Facing Web Services

Dana Deasy

The Defense Department has announced plans to release by Aug. 17 a task order to facilitate the implementation of cybersecurity practices included in a binding operational directive from the Department of Homeland Security.

Dana Deasy, chief information officer at DoD, wrote a letter dated July 20 to Sen. Ron Wyden, D-Ore., to provide details about the Pentagon’s action plan to implement those cyber measures by the end of this year in order to safeguard public-facing email services and websites.

DoD will also issue a “roll out plan” by Dec. 31 for the implementation of the HTTP Strict Transport Security mechanism for all public-facing websites.

The letter was in response to Wyden’s call in May for DoD to advance the adoption of the Hypertext Transfer Protocol Secure encryption through HSTS on all public web services.

Deasy also offered details about DoD’s implementation plan for the public trust public key infrastructure, Domain-based Message Authentication, Reporting and Conformance and STARTTLS encryption protocol.

Check Also

Cybersecurity Strategy

Updated CISA Federal Cybersecurity Strategy Directs Improved CDM Scores Through FY 2021

The Cybersecurity and Infrastructure Security Agency (CISA) has released an update to its action plan for strengthening federal cybersecurity in fiscal years 2020 through 2021. The initiative was led by Matthew Travis, the deputy director of CISA. CISA also cited evolving threat landscapes and limitations in cloud, network and encryption capabilities as challenges.

Leave a Reply

Your email address will not be published. Required fields are marked *