New confidential network set to improve security
 Recent government requirements,
to improve confidentiality
and security of data transfer
by mid-2010, have resulted in a
rise in the necessary encryption
levels for information shared
with and between police forces.
The Government’s Communications
Electronics Security Group
standards demand that specific
encryption levels of all internal
police-force networks adhere to
the Government Protective Marking
Scheme caveat of restricted or
higher; Impact Level 3 or above.
Cambridgeshire Constabulary
reviewed its entire network and
with over 70 sites across the region,
the force recognised that a
transition programme would be
necessary if they were to meet the
required classification levels.
Led by Director of ICT Tracey
Hipperson (pictured), the
constabulary commissioned CNS
and started with an audit of the
existing infrastructure. This process
led to the creation of a new
confidential network that will also
meet the strategic requirements
of the constabulary for the next
ten years.
The new requirements demanded
that a certain standard
be met; networks would have to
be accredited as both restricted
and confidential. For many forces
the concern is that meeting the
standard will involve replacing or
outsourcing their entire networks.
The CNS aim was to meet the
encryption requirements without
having to start from scratch with
a completely new network and the
accompanying high costs. It was
also important to work with the
various bodies involved to create
a workable and compliant network
blueprint.
Tracey Hipperson explained:“The network audit resulted in
significant savings on our circuitry
alone, through converting a piecemeal
approach to one single and
effective agreement.
“Our in-house team then worked
with CNS to identify the issues
within the network and we decided
upon a complete revamp.”
Along with force IT teams, CNS
was invited to design a solution
to the problem. This collaboration
created a plan for the Cambridgeshire
Constabulary project,
which is also being considered by
other forces nationwide.
Using a combination of new
Cisco software and upgrading existing
technology, CNS were able to
deploy FIPS encryption to manage
risk without the need for additional
and costly architecture.
CNS deployed a combination of
components, including:
• CESG Manual of Protective
Security
• Encryption levels inherent in
Cisco firewalls
• “ Thin client” technology
• Strong authentication methodologies.
For Cambridgeshire, it was reassuring
to be able to use tried and
tested technology to improve the
network. Not only was this a budget-friendly approach, but it also
meant the integration was less
problematic and time-consuming.
This project has enabled
Cambridgeshire to meet the confidential
and restricted networks
standards. The project came in
under budget and was transparent
to the force’s users, which
meant minimal disruption to dayto-day work during the transition.
The experience of Cambridgeshire
is one that is likely to be
replicated across the country. By leading the way, Cambridgeshire
Constabulary and CNS have
proved that a simple, intelligent
use of existing technology can resolve
the issue efficiently.
Top Back to Technology Home
|
