Block 1 Unit 6: Mission Assurance
Integrity - ✔️✔️Principle that guarantees data is not arbitrarily changed.
Tools to Ensure Integrity (3) - ✔️✔️Anti-Virus (AV) Software: prevents viruses, Trojans,
worms that allow authorized user access to system & performs hash checks.
Change Control Management: formal process to ensure changes to info or info systems
are introduced in controlled & coordinated manner.
Digital Signatures: utilizes Public Key Infrastructure (PKI)
Availability - ✔️✔️Info, computing systems used to process info, IA controls & security
controls to protect info are all available & functioning correctly when info is needed.
Tools to Ensure Availability (4) - ✔️✔️Network Equipment: routers, switches, other
network devices to ensure data is transmitted to only authorized recipients.
Power Backup: equipment connected to uninterruptable power supply (PUS) to ensure
systems stay running when power lost.
Data Backups: redundant servers, tape drives, hard drives (Redundant Array of
Independent Disks (RAID) - store off site.
Web Services: provide ability to make data available via World Wide Web - present
vulnerabilities that can be exploited to access data on internal non-public systems.
AF Tools Sets & Methods for Ensuring CIA - ✔️✔️Identification & Authentication:
procedure required both possession & knowledge-based tokens ensure dual level
security.
Host Based Security System (HBSS): provides second line of defense inside network
perimeter.
Assured Compliance Assessment Tool (ACAS): automatically identifies config
vulnerabilities that could threaten the security of DoD's computer systems.
Goals of Information Operations (IO) - ✔️✔️Achieve & maintain info superiority for US
& allies.
Be free from adversary attack.
Be free to attack at will.
Freedom to maneuver appropriately.
Establish decision superiority.
Information Superiority - ✔️✔️Ability to collect, process, disseminate an uninterrupted
flow of info.
Maintains operational advantage.
Denies adversary to do the same.
, Observe, Orient, Decide, Act (OODA) - ✔️✔️Leverage tech to achieve air, space, info
superiority & be able to operate in faster decision cycle (decision superiority) than
adversary.
Decision Superiority - ✔️✔️Improve ability to OODA faster & more effectively than
adversary.
Information Environment - ✔️✔️Pre-industrial/Industrial Age Warfare: commands atop
hill surveying battlespace.
Information Age Warfare: tech-centric.
CIA Triad - ✔️✔️Confidentiality
Integrity
Availability
Degree of emphasis on each determined by type of info processed & mission of org
responsible for data.
Confidentiality - ✔️✔️Assurance that info is not disclosed to unauthorized individuals,
processes, devices.
Access is granted/denied based upon rights/permissions.
Right - action you have to perform
Permission - like to a folder
DoD Classifications (5) - ✔️✔️Unclassified
Sensitive but unclassified
Confidential
Secret
Top Secret
Tools to Ensure Confidentiality (3) - ✔️✔️Encryption: algorithm converts plaintext to
cipher-text so data can't be read by unintended users.
Secure Sockets Layer (SSL): method of encrypting transmission control
protocol/internet protocol (TCP/IP) transmission en route between client & server using
public key encryption tech.
Firewalls: gateway devices selectively blocks/filters traffic between networks.
Legal Considerations - ✔️✔️Military Necessity: what is military gain?
Discrimination or Distinction: don't target civilians.
Proportionality: don't kill fly with cannon.
Unnecessary Suffering: limit effect to only what is needed.
Joint Info Ops - ✔️✔️Guidance for JFC:
plan
Integrity - ✔️✔️Principle that guarantees data is not arbitrarily changed.
Tools to Ensure Integrity (3) - ✔️✔️Anti-Virus (AV) Software: prevents viruses, Trojans,
worms that allow authorized user access to system & performs hash checks.
Change Control Management: formal process to ensure changes to info or info systems
are introduced in controlled & coordinated manner.
Digital Signatures: utilizes Public Key Infrastructure (PKI)
Availability - ✔️✔️Info, computing systems used to process info, IA controls & security
controls to protect info are all available & functioning correctly when info is needed.
Tools to Ensure Availability (4) - ✔️✔️Network Equipment: routers, switches, other
network devices to ensure data is transmitted to only authorized recipients.
Power Backup: equipment connected to uninterruptable power supply (PUS) to ensure
systems stay running when power lost.
Data Backups: redundant servers, tape drives, hard drives (Redundant Array of
Independent Disks (RAID) - store off site.
Web Services: provide ability to make data available via World Wide Web - present
vulnerabilities that can be exploited to access data on internal non-public systems.
AF Tools Sets & Methods for Ensuring CIA - ✔️✔️Identification & Authentication:
procedure required both possession & knowledge-based tokens ensure dual level
security.
Host Based Security System (HBSS): provides second line of defense inside network
perimeter.
Assured Compliance Assessment Tool (ACAS): automatically identifies config
vulnerabilities that could threaten the security of DoD's computer systems.
Goals of Information Operations (IO) - ✔️✔️Achieve & maintain info superiority for US
& allies.
Be free from adversary attack.
Be free to attack at will.
Freedom to maneuver appropriately.
Establish decision superiority.
Information Superiority - ✔️✔️Ability to collect, process, disseminate an uninterrupted
flow of info.
Maintains operational advantage.
Denies adversary to do the same.
, Observe, Orient, Decide, Act (OODA) - ✔️✔️Leverage tech to achieve air, space, info
superiority & be able to operate in faster decision cycle (decision superiority) than
adversary.
Decision Superiority - ✔️✔️Improve ability to OODA faster & more effectively than
adversary.
Information Environment - ✔️✔️Pre-industrial/Industrial Age Warfare: commands atop
hill surveying battlespace.
Information Age Warfare: tech-centric.
CIA Triad - ✔️✔️Confidentiality
Integrity
Availability
Degree of emphasis on each determined by type of info processed & mission of org
responsible for data.
Confidentiality - ✔️✔️Assurance that info is not disclosed to unauthorized individuals,
processes, devices.
Access is granted/denied based upon rights/permissions.
Right - action you have to perform
Permission - like to a folder
DoD Classifications (5) - ✔️✔️Unclassified
Sensitive but unclassified
Confidential
Secret
Top Secret
Tools to Ensure Confidentiality (3) - ✔️✔️Encryption: algorithm converts plaintext to
cipher-text so data can't be read by unintended users.
Secure Sockets Layer (SSL): method of encrypting transmission control
protocol/internet protocol (TCP/IP) transmission en route between client & server using
public key encryption tech.
Firewalls: gateway devices selectively blocks/filters traffic between networks.
Legal Considerations - ✔️✔️Military Necessity: what is military gain?
Discrimination or Distinction: don't target civilians.
Proportionality: don't kill fly with cannon.
Unnecessary Suffering: limit effect to only what is needed.
Joint Info Ops - ✔️✔️Guidance for JFC:
plan
