CSfC Series: Inner vs. Outer LayerDownload PDF
The National Security Agency (NSA) established the Commercial Solutions for Classified (CSfC) program to enable commercial encryption products to be used in layered solutions, leveraging industry innovation in order to protect classified National Security Systems (NSS) data. Solution-level specifications called Capability Packages (CP) have been developed, approved, and published on the CSfC website. When combining CPs with the published product-level requirements in U.S. Government Protection Profiles (PPs), suppliers can develop encryption products that can be combined in solutions that to protect classified data in months, not years. Because CSfC terminology is very specific, it is worth reviewing when considering purchasing, or developing, a secure data-at-rest (DAR) storage solution.
CSfC Inner and Outer Layers of Encryption
This white paper is the second in a series that is aimed at providing those involved in developing DAR encryption solutions a better understanding of the CSfC program and its unique terminology. The first white paper, CSfC Series: Data-at-Rest Capability Package 4.8, reviews the latest updates to the capability package.
Read the full white paper.