New Department of Homeland Security draft guidance on an updated version of the federal government’s external network security program takes a new approach to trust, moving toward a more “nuanced” view to allow for flexibility across different agencies’ mission areas.
The draft guidance, released for public comment Dec. 20 by Homeland Security’s Cybersecurity and Infrastructure Security Agency, outlines significant changes to the Trusted Internet Connections program, which secures federal agencies’ external network connections, as federal agencies continue to add remote users and move parts of their network into the cloud. The draft documents, released in five volumes, are out for comment from Dec. 23 to Jan. 31, 2020.
CISA wrote in the draft that, under the new TIC, the government is ditching old documents that established a “strictly-defined” approach to trust.