DISA rolling out cloud-based web browsing

The Defense Information Systems Agency is moving its cloud-based internet isolation (CBII) pilot into production to better protect Defense Department networks from cyber vulnerabilities introduced from non-government websites accessed by DOD users’ internet browsing.

The CBII transfers internet browsing sessions from desktop browsers to a secure, isolated cloud platform, DISA said. This service separates the threat from direct connections to DOD networks, isolating potential malicious code and content within the cloud platform.

CBII also allows DISA to actively see how much bandwidth a user is taking up and allows for a "much deeper view into the user's interactions with websites and the internet," said Steve Wallace, systems innovation scientist for DISA's Emerging Technology Directorate. It can spot domains or sites that were secure when they were initially visited but which have since developed vulnerabilities.

"If that site goes from good to bad, we will have already isolated that user's interactions with the site," Wallace said.

Besides providing for safe surfing, CBII also helps manage content downloads, with an eye to reducing network congestion. "When a user clicks on a PDF or an Office document or something like that, the CBII renders that document remotely,” Wallace said. Users can then choose whether to download the file to their machine, he said, adding that such downloads to endpoint devices dropped 70% with the CBII.

To measure the program’s success, Wallace said the agency will look at bandwidth savings and the number of cybersecurity vulnerabilities avoided.

DISA previously indicated it wanted to scale the program from the initial 100,000 users to 3.5 million as the DOD embraced telework to cope with COVID-19 pandemic, but it will move DISA users first, Sherri Sokol, CBII's program manager, told reporters Sept. 3. A total of 1.5 million users are planned for migration in the first year of production.

This article was first posted to FCW, a sibling site to GCN.

About the Author

Lauren C. Williams is senior editor for FCW and Defense Systems, covering defense and cybersecurity.

Prior to joining FCW, Williams was the tech reporter for ThinkProgress, where she covered everything from internet culture to national security issues. In past positions, Williams covered health care, politics and crime for various publications, including The Seattle Times.

Williams graduated with a master's in journalism from the University of Maryland, College Park and a bachelor's in dietetics from the University of Delaware. She can be contacted at [email protected], or follow her on Twitter @lalaurenista.

Click here for previous articles by Wiliams.


Featured

  • automated processes (Nikolay Klimenko/Shutterstock.com)

    How the Army’s DORA bot cuts manual work for contracting professionals

    Thanks to robotic process automation, the time it takes Army contracting professionals to determine whether prospective vendors should receive a contract has been cut from an hour to just five minutes.

  • Russia prying into state, local networks

    A Russian state-sponsored advanced persistent threat actor targeting state, local, territorial and tribal government networks exfiltrated data from at least two victims.

Stay Connected