CSfC Series: Inner vs. Outer Layer

CSfC Series: Inner vs. Outer Layer
CSfC Series: Inner vs. Outer Layer
White papers
May 21, 2020

CSfC Series: Inner vs. Outer Layer

The National Security Agency (NSA) established the Commercial Solutions for Classified (CSfC) program to enable commercial encryption products to be used in layered solutions, leveraging industry innovation to protect classified National Security Systems (NSS) data. Solution-level specifications called Capability Packages (CP) have been developed, approved, and published on the CSfC website. When combining CPs with the published product-level requirements in U.S. Government Protection Profiles (PPs), suppliers can develop encryption products combined in solutions that protect classified data in months, not years. Because CSfC terminology is particular, it is worth reviewing when considering purchasing, or developing, a secure data-at-rest (DAR) storage solution.

This white paper is the second in a series to provide those involved in developing DAR encryption solutions with a better understanding of the CSfC program and its unique terminology. The first white paper, CSfC Series: Data-at-Rest Capability Package 4.8, reviews the latest updates to the capability package. The What's New white paper reviews capability package 5.0.

Login and download the white paper to learn more.