Transcript Firearms Information System Modernization

Office of Science and Technology
ATF’s Mobility Infrastructure
Now and in the Future
Noah Nason III CTO
(202-648-9326)
18 October 2011
Office of Science and Technology
Current Infrastructure
D/A Information
System Boundary
Remote
Client
Stateful / Stateless
Packet Filtering
Intrusion Detection/
Prevention Services
Authentication /
Authorization
Web Applications
Internal Network Resources
(Data, Printers, etc)
Stateful/Stateless Packet
Filtering
External VLAN
Internal VLAN
D/A Information
System Boundary
Remote
Client
Data Loss Prevention
SSL Cryptographic
Services
Intrusion Detection/
Prevention Services
Stateful / Stateless
Packet Filtering
Virtual Private Network
Concentrator
Data Loss Prevention
Internal Network Resources
(Data, Printers, etc)
Stateful/Stateless Packet
Filtering
Internal VLAN
D/A Information
System Boundary
Remote
Client
Intrusion Detection/
Prevention Services
Stateful / Stateless
Packet Filtering
Virtual Private Network
Concentrator
Virtual Desktop
Provider
Data Loss Prevention
Internal Network Resources
(Data, Printers, etc)
Stateful/Stateless Packet
Filtering
For applications
External VLAN
Internal VLAN
2
Office of Science and Technology
Future Infrastructure
•
All present infrastructure plus:
– Support for more device types
– And
D/A Information
System Boundary
Remote
Client
Stateful / Stateless
Packet Filtering
For applications and desktops
Authentication /
Authorization
Intrusion Detection/
Prevention Services
Cryptographic Services
Data Loss Prevention
Virtual Desktop
Stateful/Stateless Packet
Filtering
External VLAN
Internal Network Resources
(Data, Printers, etc)
Internal VLAN
Diagrams courtesy of DHS/FNS - Telework Reference Architecture Working Group
https://max.omb.gov/community/display/DHS/Mobile+and+Telework+Access
Project Lead - [email protected]
3