To effectively safeguard classified data-at-rest (DAR) it is critical to select the appropriate encryption approach that best meets the needs of the target application and platform. Making the best decision requires an understanding of two National Security Agency (NSA) approved methods for protecting DAR: High Assurance Type 1 and Commercial Solutions for Classified (CSfC) encryption.
Curtiss-Wright is a leading developer and manufacturer of network attached storage (NAS) devices with extensive experience deploying NAS systems that utilize Type 1 or CSfC encryption in numerous military applications. This white paper provides an objective and practical comparison of these two NSA-approved DAR encryption options. It is intended to provide decision-makers with the information needed to select the optimal data encryption solution for their unique application requirements.
This white paper, written from a United States (U.S.) vendor or developer perspective, is the fourth in a series that covers various aspects of DAR encryption. The first paper explored the reasons to protect DAR, encryption basics, and possible encryptor options. The second paper focused on CSfC, an option offered by the NSA that uses two layers of commercial off-the-shelf (COTS) encryption to protect classified data. The third paper focused on High Assurance Type 1 encryption, a government off-the-shelf (GOTS) option.