DOD keeps wireless on hold

DOD wireless security policy

The Defense Department will continue a moratorium on wireless devices in Pentagon-area facilities and networks until "security vulnerabilities can be fully assessed" and a wireless design for the Pentagon is developed, a new memorandum from DOD officials says.

The moratorium, which has been in place since July 30, 2001, comes as DOD issues a wireless security policy for the Pentagon.

The policy "establishes a balanced approach for mitigating vulnerabilities and security risks while supporting the responsible introduction of new technologies into the workplace," the memo says.

The Sept. 25 memo is signed by John Stenbit, DOD chief information officer, and Howard Becker, DOD's acting director of administration and management.

Stenbit and Becker have asked the National Security Agency to develop a database of wireless technology vulnerabilities for the department. "The database will provide an initial assessment of the potential vulnerabilities of specified wireless features and capabilities along with the associated risks and countermeasures recommendations," the memo says.

DOD also will work to promote a departmentwide wireless knowledge management process to promote the sharing of wireless technology capabilities, vulnerabilities and vulnerability mitigation throughout the department, the memo says.

DOD has been working on a wireless policy that will cover the entire department.

The Pentagon policy — which excludes emergency and tactical radios and one-way communication devices — will be reviewed annually to keep up with technological changes.

In addition to the moratorium, it prohibits connectivity to a classified network or computer and does not allow synchronization with devices that are not approved by DOD.