National Policy Governing the Use of High Assurance Internet Protocol Encryptor (HAIPE) Products [open pdf - 164KB]
"The U.S. Government's communication infrastructure is becoming more reliant upon network communications. Legacy government owned and operated circuit switched communication channels are being replaced with packet switched infrastructures. National Security Systems (NSS) users are also starting to leverage commercial and foreign public Internet Protocol (IP) infrastructures. These networks will provide a converged transport infrastructure for data applications, as well as real-time services. Communication channels that were often implemented to support a single application over a link will now rely on a shared infrastructure that supports multiple applications operating over a mesh network. As this transition occurs, legacy link encryptors must be incrementally replaced with network encryption products. The interoperability of network-layer encryption devices is vital to enabling net-centric capabilities, while maintaining end-to-end protection of NSS traffic. The High Assurance Internet Protocol Encryptor (HAIPE) Interoperability Specification (IS) defines requirements for a modular suite of traffic protection, networking, and management features that provide secure interoperability between users, content repositories, and net-centric enterprise services. This policy is being issued to provide governance for the procurement of IP encryption products for Fiscal Year (FY) 2009 and beyond. The intent of this policy is to ensure that all IP products procured after FY 2008 are compliant with the appropriate version of the HAIPE IS. In accordance with the Federal Information Security Management Act (FISMA) of 2002, the Committee on National Security Systems (CNSS) Secretariat has initiated an Issuance Compliance Process for reporting annual status of Department and Agency implementation of new/revised CNSS Issuances. The first report for the attached policy is due six months following its issuance. This policy can be located in the library on the CNSS website: www.cnss.gov."
CNSS Policy No. 19
Committee on National Security Systems: http://www.cnss.gov/