COINS/DODIIS MEETING - 2/5/85

Document Type: 
Collection: 
Document Number (FOIA) /ESDN (CREST): 
CIA-RDP87M00220R000500530060-3
Release Decision: 
RIPPUB
Original Classification: 
K
Document Page Count: 
3
Document Creation Date: 
December 22, 2016
Document Release Date: 
October 7, 2009
Sequence Number: 
60
Case Number: 
Publication Date: 
January 31, 1985
Content Type: 
MEMO
File: 
AttachmentSize
PDF icon CIA-RDP87M00220R000500530060-3.pdf138.12 KB
Body: 
Approved For Release 2009/10/14: CIA-RDP87M0022OR000500530060-3 DIRECTOR OF CENTRAL INTELLIGENCE Intelligence Information Handling Committee WASHINGTON, DC 20505 rnt MEMORANDUM FOR: Distribution SUBJECT: COINS/DODIIS Meeting - 2/5/85 IHC/MM 85-10 31 January 1985 1. Arrangements have been completed for us to meet wit on the question of DNSIX and the COINS/DODIIS gateway at CHB at 0930 on e . 5th. 2. 1 am enclosing a memorandum summarizing the results of our last meeting. Please review this with particular care as I am not certain that I captured all of the pertinent discussion from a technical standpoint. Please make suggested corrections or additions if required to document the substance of our discussions. Attachment: MFR IHC/MM 85-09 STAT STAT STAT STAT Approved For Release 2009/10/14: CIA-RDP87M0022OR000500530060-3 Approved For Release 2009/10/14: CIA-RDP87M00220R000500530060-3 DIRECTOR OF CENTRAL INTELLIGENCE Intelligence Information Handling Committee WASHINGTON. DC 20505 MEMORANDUM FOR THE RECORD SUBJECT: Meeting of 1/23/85 on COINS/DODIIS MOU Revision IHC MM 85-09 31 January 1985 1. A meeting was held on January 23, 1985 to discuss proposed revisions 2. The minutes of the previous meeting were approved. COINS PMO had previously provided the participants with copies of proposed language for incorporation into the MOU dealing with the gateway functions and design issue and on proposed JOIN operating procedures. DIA representatives initially expressed the opinion that the proposed MOU language on the gateways was too detailed and that implementation issues raised thereby should more properly be addressed in the JOIN forum. strongly dissented saying that details of the design involved fundamental policy issues which could only be addressed at the current level. A resolution of these issues is critical to the attainment of the fundamental goals of the MOU. In his opinion no further progress could be made without their solution. stated that, aside from this fundamental question, he was of the opinion that previous meetings had resulted in agreement on most of the other issues before the group and that it might be helpful to put together a new draft incorporating the previously agreed chap es while the group proceeded to consider this final and fundamental issue. stated that he disagreed, and that the solution to this issue should take precedence over all other activity, because without it no MOU was possible. 3. The group then turned to the gateway proposal. stated that to maintain security and system integrity the information specified in the COINS proposal should be incorporated in the IP header. This will permit both the network and server hosts to do access authorization checking and maintain the required audit information without unduly complicating the software required and adversely impacting the capacity of the gateways. DODIIS representatives stated that this would not be possible without running a strong risk that DODIIS protocols would depart from DOD standards and would entail large expenditures of resources on the part of the operators of DODIIS hosts in developing system specific software. In their opinion this would be unnecessary because under the proposed implementation of DNSIX all of the required information would be available elsewhere. stated that his technical advisors were of a different opinion and they could not reach the same conclusion based on their study of the DNSIX documentation. 4. DODIIS representatives proposed that if DNSIX were implemented on the DODIIS side of the gateway the functionality being proposed by COINS could be STAT STAT STAT STAT STAT STAT STAT STAT Approved For Release 2009/10/14: CIA-RDP87M00220R000500530060-3 Approved For Release 2009/10/14: CIA-RDP87M0022OR000500530060-3 achieved and the adverse effects of trying to additionally provide all of the required information in the IP header could be avoided. responded that this would make the gateway implementation too muc o a kludge and would probably limit its throughput. 5. The question was raised as to whether or not it was intended that the gateway do the checking and logging functions in respect to each packet or only at the time of the initial session connection. tated that the intention was that this would only be required in order to establish the initial connection and that thereafter the packets associated with that connection would pass through the gateway unimpeded. 6. After some further discussion it was agreed that DODIIS would arrange for f MITRE to brief the group and any technical advisors anyone desired to be present on the details of how DNSIX is structured to provide the required information and would prepare a paper on their proposal to utilize DNSIX on the DODIIS side of the gateway. agreed to provide a paper detailing how he proposed to use the optional fields in the DOD standard IP protocol. proposed to try to set up the briefing by La arrangements on Monday, Jan. 28. 7. The group then discussed the proposal to include certain items of information in a security preamble to the TELNET, SMTP, and FTP protocols. DODIIS representatives again stated the position that this would be unnecessary under DNSIX and would involve an unacceptable resource cost on the part of DODIIS hosts. will also address this issue. 8. also pointed out that the 1822 link protocol should be added to the list of agreed standard protocols. There was a general consensus that this should be done. 9. agreed to handle the arrangements for the next meeting and provide notice to all parties after being notified of availability. STAT STAT STAT STAT STAT STAT STAT STAT STAT STAT STAT STAT Approved For Release 2009/10/14: CIA-RDP87M0022OR000500530060-3