|
|
|
|
|
Security
NFC secures access to the data residing in PPS. Multiple layers of stringent security measures are in place to secure data on NFC's mainframe. The data residing on the mainframe is protected using CA-Top Secret Security software.
System access is controlled to provide protection for software and data resources. The security and integrity of the PPS database are supported through the use of user identification (ID) numbers and passwords. Access authority must be requested from the Agency's security officer.
NFC is responsible for securing not only the data residing on the mainframe computer, but also the connectivity to the mainframe computer. Connectivity to NFC's mainframe computer is either local or remote. Remote access includes any access through a line not physically connected to the mainframe computer. NFC supports the following types of remote access:
- Transmission Control Protocol/Internet Protocol (TCP/IP)
- Connect/Direct
- Web Server
- Point-to-Point Leased Lines
- NFC USDA Intranet
- X.25 Connection
Remote access to sensitive data must be made through a secure connection using encryption technology. NFC supports the following secure connections:
- Firewall to Firewall
- Gateway to Gateway
- SecuRemote Client to Checkpoint Firewall
- Entrust/SecuRemote Client to NFC
- Direct Connect (Line/Router)
The PPS database contains "sensitive data" (i.e., data that requires special or extra protective measures); therefore, all remote connections to NFC for the purpose of accessing the PPS database will be required to connect using a secure connection.
For more information about access security, including user IDs, passwords, and obtaining access to a specific system, contact your Agency Security Officer.
See Also |