As the Department of Defense (DoD) and other US federal agencies seek to better protect themselves from pervasive and growing cyber threats, how can they maintain a security-oriented mindset when sourcing commercial off the shelf (COTS) products from outside vendors for use on sensitive networks?
The answer: take advantage of a rigorous product testing, validation, certification, and selection process already in place. In order to be listed on the Department of Defense Information Network Approved Products List (DoDIN APL), vendors must architect products that meet the highest security and interoperability specifications. In selecting COTS products from the DoDIN APL, decisionmakers and network administrators across DoD ensure the products they use have been specifically designed with security as a top priority – all without sacrificing operability.
In contrast, other approval processes and lists – like Navy DADMS, Army CON, the Air Force APL, and authority to operate (ATO) designations – tend to select products based on functionality and utility. Vendors are not required to make security-enhancing adjustments to their products in order to be included; instead, their products are tested as is. As a result, reliance on these determinations undermines the intention and effectiveness of the DoDIN APL, as well as the overall cyber safety of the DoD and our nation.
Led by Acronis SCS’ Vice President of Research and Engineering and Vice President of Sales, this webinar explores the high security standards required by the DoDIN APL from the perspective of a company undergoing the certification process. Viewers will learn the ins and outs of this labor of love – and why selecting COTS products from the DoDIN APL is of utmost importance for enabling the mission and securing DoD systems and networks.