Coast Guard Report

Shipmates,

As I have discussed with you in the past, we operate in a complex and dynamic environment. To maximize our effectiveness and service to the public, we have to simultaneously be as open and transparent as we can, while maximizing the integrity and security of our data networks and sensitive information. This puts us, and particularly our IT experts, in a very complicated position as described by our CIO below.

As an organization, we will continue to exercise creativity and flexibility while finding ways to serve both transparency and security. For example, though twitter is now blocked from use on the Coast Guard Data Network, we recognize the value of that and similar applications in keeping the public informed during critical incidents. Our public affairs program, working with CG-6, will find ways to maintain that capability for specific purposes that support operations without increasing the vulnerability of our network. The use of YouTube is a great example of this. Our release of the video of the “Miracle on the Hudson” through that channel has resulted in an amazing 760,000 views, making it the most viewed video of the day.
Guest Post from RDML David Glenn (CG-6), Chief Information Officer:

Since my last post regarding social media websites, I have received comments and reviewed the Coast Guard policy on blocking internet websites and would like to provide an update.

As the Coast Guard Chief Information Officer (CIO), I have the responsibility of balancing a computer user’s freedom and flexibility with information assurance policies that restrict this access and flexibility in order to manage the risk associated with these activities to ensure data confidentiality and network availability with the Coast Guard networks (CGDN, SIPRNET, etc.). Access and security must be managed and maintained at acceptable levels.

In addition, I have the responsibility to ensure the Coast Guard Information Technology (IT) policies are in accordance with all Federal laws, regulations and policies, including those of the Department of Homeland Security (DHS) and the Department of Defense (DoD). While the Coast Guard is a part of DHS, our computer networks connect to DoD networks too, therefore, the Coast Guard IT polices must align with both departments.

We have Coast Guard policies in place that prohibit access to non-operational internet websites because unhindered access exposes the Coast Guard computers and networks to unnecessary avenues of attack. Cyber security is dynamic and continually evolving because people with malicious intent continually seek new ways to exploit vulnerabilities in computers and networks. Therefore, the Coast Guard is continually monitoring and taking necessary actions to protect our computers and networks. In some instances, these actions may be immediate and without any notification to enable the Coast Guard to contain, minimize, or prevent impact to our computers and networks. Malicious media (viruses, malware, phishing, etc.) are constantly being launched from many of the most common and popular recreational websites. Blocking specific recreational websites is a proactive measure to address these threats and provides the Coast Guard a way to enforce our policy on prohibitive activities outlined in COMDTINST 5375.1(Series), Limited Personal Use of Government Office Equipment, and ALCOAST 091/07. Even with the current policy restrictions, we quarantine and reformat many computers each month due to infections or malware. We will continually address access and security in equal measures and strive to maintain an acceptable balance.

It should be noted that we did review and verify the DHS and the DoD policies on this matter. Our Coast Guard policies are aligned with their prohibited activities. In fact, DHS recently updated the prohibited activities to specifically include restricting social networking websites.

In the near future, the Coast Guard will be deploying the CG Portal. The CG Portal will replace CG Central and the uscg.mil information systems. It will enhance your ability to share information, collaborate and communicate. With CG Portal, you will have many of the internet features available at commercial websites, such as blogs, wikis, discussion forums, feed readers, chat, instant messaging, etc., but in a secure environment that will protect the critical information needed to complete the Coast Guard missions. An ALCOAST announcing the CG Portal deployment will be sent in the coming months.