DISA modernizes SIPRNet delivery
The Defense Information Systems Agency (DISA) recently completed the Secret Internet Protocol Router Network (SIPRNet) Access Migration Project to improve and modernize the way mission partners connect to the SIPRNet and deliver cost reductions.
The project evolved the network from a point-to-point network to a virtual network, and increased the bandwidth capacity from 1G to 10G. It also reduced the size of the network, resulting in increased network efficiency, increased capacity, and improved survivability.
The completion of this project positions the agency and its mission partners to leverage Secret-Joint Regional Security Stacks (S-JRSS), as the network now meets joint information environment standards to virtualize customer access and increase survivability.
“This transition makes mission partners ready for S-JRSS transport,” said Mark Williams, DISA’s Classified Internet Protocol (IP) Portfolio manager. “The transport utilizes Advanced Crypto Compliant (ACC) encryptors, so when mission partners are ready for S-JRSS, they will only need to make router changes.”
The simplified virtual routing reduces the time needed to align the network to accept new or changing mission partner connections. The virtualized transport will also support future initiatives, such as S-JRSS, converged access, time-division multiplexing (TDM) elimination, and software defined networking.
Mission partners are required to pay for all aspects of their connection to the SIPRNet in order to obtain access to the classified network, including encryption on both ends of the circuit. However, through a tech refresh, DISA now offers enterprise encryption devices at the SIPRNet node. As a result, customers only need to acquire the encryption at their local site.
The modernized encryption devices — enterprise HAIPE encryptors — allow users to take advantage of the new network model, which requires significantly fewer DISA routers and customer encryptors, dramatically lowering customer costs.
“DISA is taking advantage of efficiencies found in multi-protocol label switching (MPLS) and its network expanding technology and is aggregating costs to the virtual local access network (VLAN),” said Williams. “This means that more than 10,000 users can connect virtually to one router on the DISA side. The new encryption devices allow this connection to happen.”
DISA made the initial investment by upgrading mission partner encryption devices. Mission partners will now be responsible for replacing or upgrading those devices during their natural lifecycle.