The Defense Department has imposed an immediate ban on the use of thumb drives and other easily portable devices that offer digital memory storage, with some sort of viral intrusion into the military’s worldwide computer networks apparently spurring the move.

The Pentagon would not confirm or deny the ban, although it is spelled out in at least two Air Force directives, one of which sources the order to the Defense Department command that oversees the networks.

Neither directive spells out why the ban was imposed throughout the Defense Department’s Global Information Grid, which includes more than 17,000 local and regional networks and about 7 million individual computers.

But an intrusion or infection is the only explanation, said renowned security expert and author Bruce Schneier.

“Certainly, it’s a propagation problem they’re worried about,” said Schneier, chief security technology officer for BT, a British-based global communications firm. “If it’s preventive, why wasn’t it preventive last week? Something happened, and they’re worried about it propagating.”

The quickest way to stop additional problems, Schneier said, is to disallow the use of all flash media.

“They’ve got something they need to deal with,” Schneier said. “And they can deal with it better if things don’t move in and out of network. The problem with things like USB sticks is that they’re off-line storage.”

One official told Military Times that the latest ban was not related to bandwidth issues that prompted a system-wide May 2007 prohibition on accessing social networking and entertainment sites on military computers.

Neither Air Force directives state explicitly that a Defense Department-wide ban is in place. But one notes that the order to stop using flash media was issued by U.S. Strategic Command, which is responsible for operating and defending the .mil and .smil domains.

That internal Air Force memo, directed at Washington, D.C., Air Force offices and dated Nov. 17, orders “immediate suspension” of the use of such devices on all NIPR and SIPR networks.

A similar message, which did not mention StratCom, was posted online by Whiteman Air Force Base, Mo.

“The Chief of Staff of the Air Force recently implemented a policy prohibiting the use of memory sticks, thumb drives, flash memory cards such as XD, SD, Micro, Mini, CF, MS, cards etc., cameras, portable music players and [Personal Digital Assistants],” the message states. “Excluded are Blackberry devices that do not have the flash memory such as a Micro SD card installed.

“All remaining removable media such as external hard drives, CDs or DVDs, and other various items can be used if the following policies are met: All removable media must be labeled with the appropriate security classification. All other removable media such as external hard drives, CD/DVD reader/writer items must be scanned with a virus scanner prior to use.”

StratCom and its Joint Task Force-Global Network Operations, which manages the Global Information Grid, would not comment, referring all questions to the Pentagon. There, a spokesman responded but said operational considerations prevented any detailed comment.

“Daily, there are millions of scans” of the Global Information Grid, said Air Force Lt. Col. Eric Butterbaugh. “For security reasons, we don’t discuss the number of actual intrusions or attempts, or discuss specific measures commanders in the field may be taking to protect and defend our networks.”

Butterbaugh said the Defense Department “aggressively monitors its networks for intrusions and has appropriate procedures to address threats.”

“To address continuous and constantly changing cyber threats, guidance regularly is provided to the field about current threats and measures for users to take to ensure our information systems remain secure,” he said. “It’s the responsibility of every user to help protect the network.”


Article: http://www.armytimes.com/news/2008/11/military_thumbdrive_ban_112008w/

Does the DoD not realise that 99.99% of all work is moved around on flash drives. What are they thinking, DOIM is going off the charts here what with CAC readers and computers logging off, 10 digit codes for your email that have to get changed every 6 months oh and by the way it can not be the same as the previous 10. Now this might as well just pack all computers up and use a type writter and a runner. I realose that we have viruses out there but give me a break there are a lot of really good off the shelf virus protection packages out there. I for one have quiet using the government computers for these same reasons .....oh and they are sllllllloooooooooooooowwwwww. So DoD stop shutting us out and let us back in.

MiTT Sapper

Definitely gonna be a problem for those hard core powerpoint rangers out there!

http://photos9.flickr.com/15657226_516c716dc2_m.jpg

http://www.fototime.com/FE80D085D421AB8/orig.gif

This is utterly unenforceable.

It's not just affecting powerpoint warriors, either. There are a lot of jobs that require USB and other devices that are now banned. Cameras and survey equipment (GPS) comes immediately to mind, and I'm sure there are more.

We got told a work around was in progress for mission critical systems and would be up in 24 hours. We'll see.

There is a workaround. Check with your local 6 shop (J6, G6, S6).

This is utterly unenforceable.

Unfortunately, it is... in our command, they just disabled the USB ports and you have to be an admin to access them. Enforcement issue solved. :mad:

Unfortunately, it is... in our command, they just disabled the USB ports and you have to be an admin to access them. Enforcement issue solved. :mad:

There goes the CAC reader!

The Defense Department confirmed Friday that a virus has infected some of its computer networks but declined to identify the infection, say whether it was a direct attack on the networks or confirm published directives that ban the use of portable storage media such as thumb drives.

“We are aware of a global virus for which there are some public alerts,” said Bryan Whitman, Pentagon spokesman. “And we’ve seen some of this on our networks. We’re taking steps to identify and mitigate the virus.”

Whitman wouldn’t characterize the infection further except to call it a “global issue” that also is affecting worldwide networks outside the Defense Department.

He also declined to confirm a ban on the use of thumb drives, although the ban was spelled out in at least two recent Air Force directives, one of which says the order comes from the Defense Department command that oversees the military computer domains shared by all the services.

Whitman also would not comment on whether officials think the infection may have been transmitted to the military’s networks by way of a thumb drive or other flash media.

“We don’t discuss specific defensive measures that we’re taking or may be taking to protect and defend our networks,” Whitman said.

He called cyberspace a “warfighting domain that’s critical to our operations. And we have to protect it.”

He said military computer network intruders range from recreational hackers to “cyber vigilantes,” ideologically motivated attackers and “transnational actors and national states” that probe the department’s networks “millions” of times daily.

Neither Air Force directive details why the ban on portable digital media was imposed throughout the Defense Department’s Global Information Grid, which includes more than 17,000 local- and regional-area networks and approximately 7 million individual computers.

But the thumb drive ban outlined in the directives was clearly in reaction to a network intrusion, one computer security expert said.

“If it’s preventive, why wasn’t it preventive last week?” said Bruce Schneier, renowned security expert and chief security technology officer for BT, a British-based global communications firm. “Something happened, and they’re worried about it propagating.”

“They’ve got something they need to deal with,” Schneier said. “And they can deal with it better if things don’t move in and out of network. The problem with things like USB sticks is that they’re off-line storage.”

The Internet security firm Symantec reported Nov. 19 that it has noticed an increase in malicious applications that use USB flash drives to spread. The malicious code most commonly being spread in this manner, the firm says, is the SillyFDC worm.

Worms are similar to viruses. According to the Web site 2Spyware.com, the SillyFDC worm is relatively harmless, “designed only to spread and … does not contain any destructive payload.”

Neither of the Air Force directives stated explicitly that a department-wide ban is in place. But one noted that the order to stop using flash media was issued by U.S. Strategic Command, which is responsible for operating and defending the .mil and .smil domains.

That memo, directed at Washington, D.C., Air Force offices and dated Nov. 17, ordered “immediate suspension” of the use of such devices on all NIPR and SIPR networks.

A similar message, which did not mention StratCom, was posted online by Whiteman Air Force Base, Mo.

“The Chief of Staff of the Air Force recently implemented a policy prohibiting the use of memory sticks, thumb drives, flash memory cards such as XD, SD, Micro, Mini, CF, MS, cards etc., cameras, portable music players and [Personal Digital Assistants],” the message states. “Excluded are Blackberry devices that do not have the flash memory such as a Micro SD card installed.

“All remaining removable media such as external hard drives, CDs or DVDs, and other various items can be used if the following policies are met: All removable media must be labeled with the appropriate security classification. All other removable media such as external hard drives, CD/DVD reader/writer items must be scanned with a virus scanner prior to use.”

StratCom, and its Joint Task Force-Global Network Operations, which manages the Global Information Grid, would not comment.


Article: http://www.militarytimes.com/news/2008/11/military_thumbdrives_computerworm_112108w/