U.S DISA overhaul plans to eliminate Firewalls

U.S DISA overhaul plans to eliminate Firewalls

No Comments


                                     U.S DISA overhaul plans to eliminate Firewalls


In a comment to the armed forced media, the U.S Defense Information Systems Ageny (DISA) is planning an overhaul that could mean the end for conventional firewalls.

US Airforce Lt General Ronnie Hawkins Jr. was quoted as saying that that the US military’s IT service wanted to move from a mesh of firewalls towards a design based on protecting data instead of packets.

In the past, we’ve all been about protecting our networks—firewall here, firewall there, firewall within a service, firewall within an organization, firewalls within DISA. We’ve got to remove those and go to protecting the data. You can move that data in a way that it doesn’t matter if you’re on a classified or unclassified network, depending on someone’s credentials and their need to know,” he declared.

“We want to be able to normalize our networks to where you can have the collaboration and information moving over our networks and you don’t have to have the different firewalls, the separate networks, to get those things done,” he added. Additionally, the department can realize significant savings in instrumentation—for example, by moving from “hard phones” to “soft phones,” he said.

“Yes, firewalls are important. They help solve network security problems by creating barriers that prevent unwanted network access. But they do not control data access,” he said.

That’s why I find DISA’s new approach so fascinating. It’s based on the realisation that the threats have changed. Hackers want data like IPs, PINs, credentials, proprietary information, and more. And it’s very easy for them to steal data due to poor security controls or outright mismanagement.

Shteiman said he believed that DISA would most likely move to role-based data access, and content control, auditing and monitoring.