Developing, integrating, and deploying multi-layered, NSA-compliant, COTS-based solutions that enable customers to securely create, share, and protect their classified data within wired or wireless networking environments.
Tribalco is a National Security Agency CSfC Trusted Integrator and has been advising customers on their CSfC efforts since 2016. As a Trusted Integrator, we develop, integrate, and deploy multi-layered NSA-compliant COTS-based solutions that enable customers to securely create, share, and protect their classified data. With nearly two decades of systems integration experience working with the government’s highest-priority data and systems, Tribalco has the proven expertise to develop secure integrated solutions that take advantage of the feature-rich technology and connectivity capabilities available in commercial products. To learn more about Trusted Integrators and the CSfC program, visit NSA’s website.
Tribalco Offers CSfC Solutions Across Four Capability Packages
Capability Packages (CPs) are published by the CSfC program to provide configurations that empower NSA customers to implement secure solutions using independent, layered Commercial Off-the-Shelf (COTS) products. Tribalco creates secure solutions based on each of the four CPs released by NSA as part of the CSfC program. Our CSfC solutions include proof of concept, testing, framework architecture, business process consulting, hardware/software configuration, STIG, NSA artifact preparation and submission, documentation. Our customers benefit from the expertise we’ve gained deploying approved CSfC models to customers around the world.
Multi-Site Connectivity CP
Enables secure data transfer across multiple networks that are untrusted or have different classification levels
The MSC CP provides high-level guidance for solutions that will protect classified information as it travels across either an untrusted network or a network with a different security level. This solution uses encrypted tunnels to connect two or more networks operating at the same security level.
For the MSC CP, Tribalco provides secure VPN solutions to protect classified information as it travels across either untrusted dirty networks or protected networks of different classification levels, e.g., SABI, TSABI, or JWICS. Tribalco’s CSfC offerings under the MSC CP can support multiple sites and/or security levels.
Multi-Site Connectivity CP
Campus Wireless Local Area Network (WLAN) CP
Allows commercial wireless devices to securely access campus wireless networks
The Campus WLAN solution lets users access sensitive data and enterprise services over a campus wireless network using commercial wireless devices. This solution uses two layers of cryptography to protect the confidentiality and integrity of data as it transits an untrusted network. Campus WLAN solutions minimize the risks associated with connecting wireless devices to existing government enterprise networks.
Tribalco’s Campus WLAN solutions protect classified data in transit by using layered encryption between our customers’ enterprise networks and wireless end user devices (EUDs), such as smart phones and laptops. Our solutions enable customers to securely connect their wireless devices to a campus wireless network.
Campus Wireless Local Area Network (WLAN) CP
Mobile Access (MA) CP
Protects classified data while in transit
The MA CP provides guidance and configuration requirements for MA solutions to protect classified data while in transit across wired networks, domestic cellular networks, and trusted wireless networks, including government private cellular networks and government private Wi-Fi networks. This CP protects classified data in transit by encrypting it twice before it is sent across an untrusted network and decrypting it twice before the packet is received.
Tribalco’s MA CP solutions protect the confidentiality and integrity of data, including voice and video, as it transits an untrusted network. By implementing two nested, independent tunnels, Tribalco’s MA CP solutions help customers achieve classified connectivity anyplace, anywhere, at any time using laptops, tablets, smart phones, and other EUDs.
Mobile Access (MA) CP
Data-At-Rest (DAR) CP
Protects data while an End User Device is powered off or in an unauthenticated state
The DAR CP uses Commercial National Security Algorithm Suite algorithms to protect classified data by layering COTS products. This CP provides guidance for implementing two independent layers of encryption to protect classified data stored on an EUD that is turned off or in an unauthenticated state. This redundant protection reduces the vulnerability of classified data in situations where a single encryption layer is compromised or fails.
Tribalco’s DAR CP solutions use NSA-approved commercial encryption technologies to implement two layers of cryptography to protect classified data when a wireless device is unauthenticated or powered off.
Data-At-Rest (DAR) CP