An official website of the United States government
A .mil website belongs to an official U.S. Department of Defense organization in the United States.
A lock (lock ) or https:// means you’ve safely connected to the .mil website. Share sensitive information only on official, secure websites.

AMC to improve network security

  • Published
  • By Kevin Nettrour
  • Air Mobility Command Public Key Infrastructure
SCOTT AIR FORCE BASE, Ill. --  Every day, thousands of computers are used in the day-to-day operations of Air Mobility Command. These networks are essential to the success of its warfighting missions.

However, networks are under daily attack by hackers, saboteurs, and terrorists, who can compromise the integrity of the network and put critical information systems at risk through unauthorized access, fraud, email tampering, eavesdropping and data theft.

A key weakness of the network is the use of passwords that are vulnerable because they are stored on and transmitted over the network and are easily hacked. Adversaries know how to capture passwords and use them to access systems at will, posing as legitimate users from the safety of their own base of operations.

To prevent this, the Air Force is migrating away from using passwords to logon to unclassified networks. By mid-September, the primary method for logging on to AMC unclassified accounts will be by Smart Card logon. For most people, the smart card is the standard DoD identification card, the Common Access Card. To logon to the AMC network the user will insert the CAC into the reader attached at the workstation and enter the associated six to eight digit personal identification number created when the card was issued.

Using the CAC for logon greatly increases network security through two factor authentication - the CAC and associated PIN. Both are required to gain access to the unclassified network.

Since a PIN works differently than a password, it doesn't have to be changed unless the user believes it has been compromised. You must not share your PIN with anyone. If your CAC is lost or stolen and another person tries to guess your PIN, the CAC will be locked after three consecutive unsuccessful attempts.

Initially, not all users will be able to use a smart card for logon. The first step is instituting SCL from traditional work places. Later phases will include fielding alternatives where use of the DoD ID card is not practical, personnel are not eligible for DoD ID card, enabling applications for secure remote access, and implementing SCL in deployed environments.

SCL represents a change in our business processes that affects every member of the Air Force community. However, it is a necessary change required to protect critical information and systems and ensure they are available to the warfighter where and when needed.