Reference document

Org
NSA
Pubnum
MSCCP v1.0
Date
2017-02-23
Version
1.0
Title
CSfC Multi-Site Connectivity Capability Package

Applicability

The Commercial Solutions for Classified (CSfC) program within the National Security Agency (NSA) Directorate of Capabilities uses a series of Capability Packages (CPs) to provide configurations that will allow customers to independently implement secure solutions using layered Commercial Off-the-Shelf (COTS) products. The CPs are vendor-agnostic and provide high-level security and configuration guidance for customers and/or Solution Integrators.

The NSA is delivering the CSfC Multi-Site Connectivity (MSC) CP to meet the demand for data in transit solutions using approved cryptographic algorithms and National Information Assurance Partnership (NIAP) evaluated components. These algorithms, known as the Commercial National Security Algorithm (CNSA) Suite, are used to protect classified data using layers of COTS products. MSC CP Version 1.0 enables customers to implement layered encryption between two or more sites.

This Capability Package describes how to protect classified data in transit across an untrusted network using multiple encrypted tunnels implemented with Internet Protocol Security (IPsec), Media Access Control Security (MACsec), or both encryption protocols.

Responsible Party

Name
FMN CPWG

Status

URI
https://www.nsa.gov/resources/everyone/csfc/capability-packages/#multi-site

History

Flag Date RFC Version
added 2018-10-31 11-57 12.0
UUID
7610997d-53cf-4e46-857a-ffdae5e61beb

Relationships

This standard is used by the following service profiles: