MARINE CORPS ENTERPRISE DATA AT REST (DAR) ENCRYPTION SOLUTION FOR MOBILE COMPUTING DEVICES AND REMOVABLE STORAGE MEDIA
Date Signed: 8/4/2009 | MARADMINS Number: 0461/09
MARADMINS : 0461/09
R 041402Z AUG 09
UNCLASSIFIED//
MARADMIN 0461/09
MSGID/GENADMIN/CMC WASHINGTON DC C4//
SUBJ/MARINE CORPS ENTERPRISE DATA AT REST (DAR) ENCRYPTION SOLUTION FOR MOBILE COMPUTING DEVICES AND REMOVABLE STORAGE MEDIA//
REF/A/MSGID:GENADMIN/CMC WASHINGTON DC C4/142229Z//
REF/B/MSGID:GENADMIN/CMC WASHINGTON DC C4/091256Z//
NARR/REF A IS PREVIOUS MARINE CORPS POLICY ON PURCHASE OF DAR SOLUTIONS; DTG 142229ZDEC07. REF B IS THE DEPARTMENT OF THE NAVY GUIDANCE ON DTG 091256ZOCT07.//
POC/MARK R. SCHAEFER/LTCOL/UNIT:HQMC C4 IA/NAME: 703-693-3490 /EMAIL:MARK.R.SCHAEFER@USMC.MIL//
POC/JOSEPH PETTO/CIV/UNIT:MCNOSC/NAME: 703-784-4156 /EMAIL:JOSEPH.PETTO@MCNOSC.USMC.MIL//
GENTEXT/REMARKS/1. THIS MESSAGE CANCELS REF A. THE ABILITY TO EFFECTIVELY AND EFFICIENTLY PROTECT SENSITIVE DATA ON MOBILE COMPUTING DEVICES AND REMOVABLE STORAGE MEDIA HAS SEEN INCREASED ATTENTION DUE TO COMPROMISES OF PERSONALLY IDENTIFIABLE INFORMATION (PII) THROUGH THE LOSS OF LAPTOPS, FLASH DRIVES AND PORTABLE ELECTRONIC DEVICES (PED).  
2. DUE TO INTEROPERABILITY, MAINTENANCE AND PROCURMENT CONCERNS, THE MARINE CORPS WILL IMPLEMENT AN ENTERPRISE SOLUTION SET FOR DATA AT REST ENCRYPTION IAW REF B.  THIS SOLUTION SET WILL APPLY TO ALL MCEN DEVICES ATTACHED TO NMCI, LEGACY, PROGRAM OF RECORDS (POR), AND TACTICAL NIPR NETWORKS.  FOR PURPOSES OF THIS MARADMIN, SENSITIVE UNCLASSIFIED DATA AT REST IS DEFINED AS ANY INFORMATION THAT HAS NOT BEEN APPROVED FOR PUBLIC RELEASE.  ADDITIONALLY, DAR INFORMATION IS ONLY THAT INFORMATION WHICH IS STORED AND NOT IN TRANSIT (I.E., EMAIL).  DATA IN TRANSIT WILL CONTINUE TO BE PROTECTED THROUGH THE USE OF TECHNOLOGIES SUCH AS PUBLIC KEY INFRASTRUCTURE (PKI) ENCRYPTION, SECURE SOCKET LAYER (SSL) PROTOCOL, ETC., AND IS NOT APPLICABLE TO THIS POLICY.  MOBILE COMPUTING DEVICES AND REMOVABLE STORAGE MEDIA ARE DEFINED IAW REF B.
3. POLICY. 
A. ALL SENSITIVE UNCLASSIFIED DATA AT REST ON MOBILE COMPUTING DEVICES AND REMOVABLE STORAGE MEDIA MUST BE ENCRYPTED WITH THE MARINE CORPS ENTERPRISE NETWORK (MCEN) DAR ENCRYPTION SOLUTION SETS.
B. PURCHASE AND IMPLEMENTATION OF DAR ENCRYPTION TECHNOLOGIES WILL BE FACILITATED AND IMPLEMENTED AS A MCEN SOLUTION WITH MCNOSC OVERSIGHT.  UNTIL THE MCEN SOLUTION SETS ARE IMPLEMENTED, WINZIP 9.0, MICROSOFT ENCRYPTING FILE SYSTEM (EFS), OR ANY PREVIOUSLY APPROVED PRODUCT THAT MEETS THE REQUIREMENTS FOR ENCRYPTION TECHNOLOGIES IAW REF B IS AUTHORIZED FOR DAR ENCRYPTION.  ONCE THE MCEN SOLUTION SET IMPLEMENTATION IS COMPLETED, ALL OTHER MEANS OF DAR ENCRYPTION WILL NO LONGER BE AUTHORIZED.
C. MARINE CORPS COMMANDS AND UNITS ARE PROHIBITED FROM PURCHASING DAR SOLUTIONS OUTSIDE THE ENTERPRISE SOLUTION SETS WITHOUT HQMC APPROVAL.  SHOULD A COMMAND OR UNIT, THROUGH OPERATIONAL NECESSITY, REQUIRE A DAR ENCRYPTION SOLUTION PRIOR TO THE MCEN SOLUTION SETS IMPLEMENTATION, SUBMIT REQUESTS TO HQMC, C4 VIA EMAIL TO HQMC_C4IA_IDMGT@USMC.MIL INDICATING NEED, PROPOSED SOLUTION, AND NUMBER OF DEVICES.
D. ALL NEWLY PROCURED COMPUTER ASSETS (DESKTOPS, LAPTOPS, PEDS, SERVERS, ETC.) MUST INCLUDE A TRUSTED PLATFORM MODULE (TPM) VERSION 1.2 OR HIGHER.  THIS POLICY APPLIES TO ALL POR AND NON-POR DEVICES.
4. IMPLEMENTATION GUIDANCE, INCLUDING SCHEDULE AND REQUIRED REPORTING, WILL BE PUBLISHED VIA SEPCOR BY MCNOSC.
5. REQUEST WIDEST DISSEMINATION OF THIS MESSAGE.
6. THIS MARADMIN, UNLESS SUPERSEDED, IS CANCELLED 1 AUGUST 2010.
7. RELEASE AUTHORIZED BY BGEN G.J. ALLEN, DIRECTOR, COMMAND, CONTROL, COMMUNICATIONS, AND COMPUTERS//