Reference document

NATO Directive for the Use of Internet Services

The NATO Directive for the Use of Internet Services supports the NATO Policy for the use of Internet Services. It identifies the detailed scenarios, conditions and actions to be taken to implement the NATO policy. Based upon the Policy, this directive provides supplementary procedures and rules for a common interoperable approach to the use of Internet services within NATO while providing for the protection of NATO information up to NATO Restricted. At a minimum, NATO Restricted information over the Internet shall be protected in accordance with the NATO Security Policy and its supporting Directives. Public Key Enabled (PKE) applications may be used to provide confidentiality, integrity, and authenticity of NATO Restricted Information over the Internet. The preferred solution is PKE using NPKI certificates. However, it is recognized that not all applications in use in NATO CIS are Public Key Enabled (PKE). Therefore it is anticipated that other cryptographically based security mechanisms may continue to be supported, on a case-by-case basis. An application is considered Public Key Enabled if it accepts and processes asymmetric key pairs in order to use security services such as confidentiality, authenticity or integrity. A PKE application may also collect, store and maintain data required to support digital signature and data encryption. This directive shall apply to all NATO Networks or CIS storing, processing or transmitting NATO information. Interconnection of NATO Networks or CIS with NATO Member Nations, non-NATO CIS or the Internet or similar networks in the public domain is governed by INFOSEC Technical and Implementation Directive for the Interconnection of CIS.

C3 Policies and Directives