Slashdot Mirror

← Back to Stories (view on slashdot.org)

First Android Device Certified For DoD Personnel

Posted by Soulskill on from the handheld-fragmentation-grenade dept.

aneroid writes "The Defense Information Systems Agency (DISA) has certified its first secure mobile device running Android 2.2 — the Dell Streak 5. It is certified for use in the Defense Department's secure but unclassified communications. 'Although the Streak 5 is no longer available commercially, Dell is supplying it to DOD because the military likes the form factor,' said John Marinho, director of Dell enterprise mobility solutions. It 'includes a set of Android application interfaces designed to enhance the security of the device. Besides being able to transmit secure unclassified messages, the device can have its data remotely wiped in the event of loss or theft.' The device also has the ability to lock down after multiple unsuccessful password entries and allows admins to remotely control the peripherals and security policy levels on the device. You may recall that President Obama got an NSA-certified phone-PDA to use instead of his BlackBerry. We also discussed a related article last year about the U.S. Army considering smartphones. So, how soon will we start seeing other smartphone vendors bid for secure-communications-devices contracts?"

79 comments

  1. Re:Herman Cain - molester by leoplan2 · · Score: 0

    Go away troll

  2. Unclassified by Anonymous Coward · · Score: 0

    If it's unclassified info why are they worried about security?

    1. Re:Unclassified by Anonymous Coward · · Score: 1

      For the same reason you care about securely transmitting your credit card info even though it isn't classified?

  3. A transmitter that's secure. by Anonymous Coward · · Score: 0

    HAHAHAHA!

    1. Re:A transmitter that's secure. by X0563511 · · Score: 1

      My friend, meet Mr. OTP.

      --
      For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
  4. Obama's no longer using his Blackberry? by jordanjay29 · · Score: 2

    Since when?

    1. Re:Obama's no longer using his Blackberry? by X0563511 · · Score: 0

      You forgot about the "It is certified for use in the Defense Department's secure but unclassified communications." part of the summary, didn't you?

      Here, I'll highlight the important part, since you seem deficient in sentence parsing.

      --
      For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
    2. Re:Obama's no longer using his Blackberry? by jordanjay29 · · Score: 3, Informative

      You seem deficient in reading post titles. I specifically questioned the article's stated fact that Obama was given a Sectera Edge (the NSA-certified phone-PDA device), which was proven false in my link. Obama's not using a phone-PDA, he's using a juiced-up Blackberry that's been locked down and yeah, probably certified for secure but unclassified communications as well.

    3. Re:Obama's no longer using his Blackberry? by ebs16 · · Score: 0

      That article is over 2 year old. That's half a term, and long enough to for him to have received a new device.

    4. Re:Obama's no longer using his Blackberry? by schnell · · Score: 1

      The Sectera Edge is certified for classified communications... in fact, it's the only "smartphone" that is certified for Top Secret comms. That fact is half of what they're trying to get around here.

      The good news is that the US government takes information assurance really, really seriously. The bad news is that they take it seriously enough that the only mobile device you can read your Top Secret e-mail on is a government-only, multi-thousand dollar Windows PDA that's many years behind the times because it took that long to jump through all the high-level government certification hoops.

      Fortunately, the government has lately caught on to the idea that they will always be behind on mobile technology if they don't find a way to build their requirements on top of consumer platforms rather than trying to build the whole thing government-specific from the ground up. This effort is part of their attempt to stop falling way behind the innovation curve that off the shelf iOS, Android, etc. devices are delivering, and it seems to be working. Good on them.

      --
      "95% of all Slashdot .sig quotes are incorrect or completely fabricated." -Benjamin Franklin
    5. Re:Obama's no longer using his Blackberry? by wshs · · Score: 1

      I'd question the government taking information assurance seriously. Manning obtained hundreds of thousands of classified docs undetected, and was only caught when he bragged to an outsider who ratted him out. If anything, information assurance in the government is pretty much nonexistent.

    6. Re:Obama's no longer using his Blackberry? by slacker001 · · Score: 1

      Check the date on that picture... it's almost 3 years old.

  5. Wait what by masternerdguy · · Score: 0

    What about all that android malware everyone keeps talking about?

    --
    To offset political mods, replace Flamebait with Insightful.
    1. Re:Wait what by MobileTatsu-NJG · · Score: 1

      It's Android and it's a Dell product. That means it'll forever be stuck on 1.6 and all the new malware requires 2.3!

      --

      "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)

    2. Re:Wait what by Synerg1y · · Score: 1

      In regards to OP, they probably lock down install rights, the government's giving you a phone to borrower while in service, it's not your phone to do w/e with is the different.

      Mobile: that's security through obscurity as a real world example for you!

    3. Re:Wait what by X0563511 · · Score: 1

      Er, the summary itself said "running Android 2.2" - where did 1.6 come from?

      --
      For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
    4. Re:Wait what by HarrySquatter · · Score: 1

      It's this new thing called a joke.

    5. Re:Wait what by h4rr4r · · Score: 1

      I am going to bet they won't be installing pirated apps from Chinese third party markets. Stick to amazon and google and you will do just fine.

    6. Re:Wait what by ackthpt · · Score: 1

      Er, the summary itself said "running Android 2.2" - where did 1.6 come from?

      Probably the joke is: Dell was wrapping them up on the commercial market when the DoD procurement office called and said they'd like to buy 1.6 million of them. At which point the sales department head at Dell picked up his/her jaw and then called their plant in China and told them to keep making them.

      --

      A feeling of having made the same mistake before: Deja Foobar
    7. Re:Wait what by garyebickford · · Score: 1

      Just a point of interest - one of the problems DoD has had for a long time (since early 1980s, from my own indirect experience) is that the time it takes to get through certification is generally longer than the modern device release cycles. Five to ten years is not uncommon. So for example, most of the chips used in most of the electronics in most of the DoD's planes, vehicles and tools have the capabilities and features of stuff that you gave to Goodwill five years ago. IIRC DoD funded some special fabs to continue making licensed copies of old chips, partly for security reasons but also because the original makers were not making those chips any more. And the same is true of entire units - radios based on 10 or 20 year old technology, for instance. I think it was in the early 1980s (as mentioned) that DoD started relaxing the requirements for the certification process, and allowing some makers to self-certify some of the stuff, just so DoD could use it before it was obsolete.

      --
      It's easier to be a result of the past, but more fun to be a cause of the future! http://www.spacefinancegroup.com/
    8. Re:Wait what by Niomosy · · Score: 1

      My Streak was shipped from Dell with 2.2 (2.2.2, I believe). They upgraded some time back.

    9. Re:Wait what by Sparrow1492 · · Score: 1

      A 5 year cycle for safety of flight issues and major weapons system is not uncommon. Handheld stuff like this is off the shelf tech (albeit old for this example). You'll find DoD folks using brand new Blackberries today as an example fo the other way.

  6. All kinds of smart phones by Anonymous+Cowar · · Score: 3, Insightful

    for a semi-complete list of smart phones that DISA is looking at, check here: http://iase.disa.mil/stigs/net_perimeter/wireless/smartphone.html (A simple google search takes you right there).

    That being said, IT infrastructure needs to expand and accommodate smart phones, both in the commercial and military world. You can only say NO for so long before everyone starts hearing "640K should be enough for anybody".

    1. Re:All kinds of smart phones by jeffmeden · · Score: 2

      for a semi-complete list of smart phones that DISA is looking at, check here: http://iase.disa.mil/stigs/net_perimeter/wireless/smartphone.html (A simple google search takes you right there).

      Interesting that their iPhone and iPad risk assessment document comes up as "access denied"... Maybe I need one of those Dell Streak thingys to see it?

    2. Re:All kinds of smart phones by MobileTatsu-NJG · · Score: 1

      That looks more like a webmaster oops than a "DENIED" message . Even so, I doubt the iPhone assessment would be very interesting. I mean, seriously, I cannot picture the prospect of involving iTunes making anybody's eyes light up.

      --

      "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)

    3. Re:All kinds of smart phones by NatasRevol · · Score: 1

      Actually, it's just bad security setup on that server. See the pki for Blackberry - same thing.

      --
      There are two types of people in the world: Those who crave closure
    4. Re:All kinds of smart phones by Anonymous Coward · · Score: 0

      You just need a DoD PKI which is usually acquired via a CAC login on a .mil system.

      It's actually a pretty interesting read about the vulnerabilites of the iOS devices. Nothing that most people on this site wouldn't already know or have guessed though.

    5. Re:All kinds of smart phones by ColdWetDog · · Score: 1

      That looks more like a webmaster oops than a "DENIED" message . Even so, I doubt the iPhone assessment would be very interesting. I mean, seriously, I cannot picture the prospect of involving iTunes making anybody's eyes light up.

      Apples, certainly. Have a few DOD iTunes account would be just swell.....

      --
      Faster! Faster! Faster would be better!
    6. Re:All kinds of smart phones by Anonymous Coward · · Score: 0

      You have to have a DoD CAC with the proper PKI key to access the file. Hence the "*PKI" next to the document title and the "*PKI = DoD PKI Certificate Required" at the top...

  7. Smart Phone - Military by ackthpt · · Score: 1

    Ob: Oxymoron comment

    Non-secure, meaning: Do not leave sitting in your car with the records of 500,000 service personnel on it.

    --

    A feeling of having made the same mistake before: Deja Foobar
    1. Re:Smart Phone - Military by jeffmeden · · Score: 2

      Ob: Oxymoron comment

      Non-secure, meaning: Do not leave sitting in your car with the records of 500,000 service personnel on it.

      Clearly the Military wouldn't pay for a redundant device that allows them to lose 500,000 private records (get it, omg military puns) at a time, when the DAT tapes they have now work just fine...

    2. Re:Smart Phone - Military by Anonymous Coward · · Score: 0

      I assume you use an 'app' thats connected to a hightly encrypted 'cloud' so the records never get stored on the phone and get wiped from RAM pretty fast.

      But then there is better than 50 percent for the sake of covenence that they won't do something like this or better.

  8. secure but unclassified - correct term? by starless · · Score: 1

    secure but unclassified
    I thought the term was "sensitive but unclassified"...

    1. Re:secure but unclassified - correct term? by oodaloop · · Score: 1

      Sensitive But Unclassified is a classification for documents. Secure But Unclassified refers to the network. Surely you can see the difference in meaning in the words secure and sensitive.

      --
      Tic-Tac-Toe, Global Thermonuclear War, and relationships all have the same winning move.
    2. Re:secure but unclassified - correct term? by aneroid · · Score: 1

      (My $0.02 as the summarizer)

      I understood it as:
      Secure --> Network ...and... Classified --> Document/Content sensitivity+visibility

      So they're referring to both - secure network yes but no using it to get your covert mission orders via video conf on the device, for example. They probably still expect their personnel to use previously established procedures/devices. Could be a bit of a grey area though.

    3. Re:secure but unclassified - correct term? by Anonymous Coward · · Score: 0

      You are correct, it's sensitive but unclassified use on the NIPRNet -- http://en.wikipedia.org/wiki/NIPRNet

  9. Locked down, no installing apps by perpenso · · Score: 1

    What about all that android malware everyone keeps talking about?

    The device is probably locked down and the user can not install apps. These are highly specialized **work related** devices.

  10. iPhone anyone? by stanlyb · · Score: 0

    Why there is no certified iPhone? WHY? Are not they superior and hyperior than any other youPhone device!!!

    1. Re:iPhone anyone? by atrain728 · · Score: 1

      This is actually a tablet, not a phone.

    2. Re:iPhone anyone? by Anonymous Coward · · Score: 0

      There is and an iPad as well. But thanks for playing.

      http://iase.disa.mil/stigs/net_perimeter/wireless/smartphone.html

      Now go cry to mommy and ask her for a cookie and a nice glass of milk.

    3. Re:iPhone anyone? by barry99705 · · Score: 1

      The Streak 5 makes a perfectly good phone. Makes an awesome on dash gps as well.

    4. Re:iPhone anyone? by Falconhell · · Score: 1

      Also very popular for users of XCSoar the excellent open source glide/nav program

  11. Terminology by Anonymous Coward · · Score: 0

    So a smartphone is now an "Android Device" and an android is now a humanoid. Check. When this is weaponized, you can control the humanoid with the android!

  12. Why not Blackberry instead/also? by acoustix · · Score: 2

    BlackBerry has had all of these security features since 2004/2005. Remote wipe, policy enforcement, encryption, etc. Why not use a product that was secure off the shelf? Was it not expensive enough???

    --
    "A plan fiendishly clever in its intricacies"- Homer Simpson
    1. Re:Why not Blackberry instead/also? by Drakonik · · Score: 2

      Because it's not secure enough unless they can put a "DoD home grown and raised" sticker on it.

    2. Re:Why not Blackberry instead/also? by PolygamousRanchKid+ · · Score: 4, Funny

      "CNN - Due to a glitch in Research In Motion's infrastructure, all combat operations for this week have ceased. Now to our correspondent in the field . . . what's going on down there on the field, Nic?"

      "Well, both sides have laid down their arms, and are gaming with each other instead . . . not much to report here . . . you got some old Lindsay Lohan footage to show instead . . . ?"

      --
      Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
    3. Re:Why not Blackberry instead/also? by garyebickford · · Score: 1

      Same reason we don't all use blackberries - some users or groups at DoD wanted other capabilities or just like Android or something, and they asked DISA to find or get something that was or could be certified.

      --
      It's easier to be a result of the past, but more fun to be a cause of the future! http://www.spacefinancegroup.com/
    4. Re:Why not Blackberry instead/also? by Drathos · · Score: 1

      Probably because most of what makes a Blackberry a Blackberry requires going through RIM's servers.

      --
      End of line..
    5. Re:Why not Blackberry instead/also? by LWATCDR · · Score: 1

      Well those that run their won BES systems are not supposed to be taken down by things like this but the outage seemed to get them as well.

      --
      See my blog http://ilovecookes.blogspot.com/ for light hearted technical information.
    6. Re:Why not Blackberry instead/also? by LWATCDR · · Score: 1

      Probably too dependent on RIM for the server. If RIM goes out of business and the BlackBerry was the standard then the DOD might have to spend even more keeping them alive and using outdated equipment.
      And no I am not suggesting that they would have to go us RIMs servers but they would depend on RIM for BES support, updates and installs.

      --
      See my blog http://ilovecookes.blogspot.com/ for light hearted technical information.
    7. Re:Why not Blackberry instead/also? by AHuxley · · Score: 1

      The NSA and CIA love you using their servers. DoD has its own network to track/set up leakers and spies ..
      Different crypto needs for different areas and legal needs.

      --
      Domestic spying is now "Benign Information Gathering"
    8. Re:Why not Blackberry instead/also? by nixman99 · · Score: 1

      Maybe because RIM is a foreign company?

    9. Re:Why not Blackberry instead/also? by Prune · · Score: 1

      Please don't spread misinformation. For those that run their own BES servers--which is any big business and obviously government--RIM is not in the loop and the other side of the encryption tunnel is at your own servers, not RIM's.

      --
      "Politicians and diapers must be changed often, and for the same reason."
    10. Re:Why not Blackberry instead/also? by tehcyder · · Score: 1

      Sounds like a huge improvement all round to me.

      --
      To have a right to do a thing is not at all the same as to be right in doing it
  13. I wonder if Dell has to pay for a Windows license by schwit1 · · Score: 0

    Wasn't it a while back that Dell paid Microsoft for a Windows license on all computers even if it didn't ship with Windows?

  14. Locations for one by ace37 · · Score: 1

    Not everything useful is classified--especially when you get large amounts of easily categorized data.

    For one, you could monitor a soldier's location using a tracker. Infect some statistically significant number of phones, and you have extremely useful logistical data.

    This won't fix it, but at least they can make it less trivial to compromise.

  15. battery by ace37 · · Score: 2

    One of the primary issues was that if the battery runs out of juice, a soldier can't swap it out for a fresh battery. They brought it up, and Apple basically said "we don't care." So they looked harder at Android.

  16. Re:parent is a twerp by garyebickford · · Score: 1

    In at least a sense he/she's right - several Android makers do pay MS a license fee for every Android they ship. I don't recall if Dell is one of them.

    --
    It's easier to be a result of the past, but more fun to be a cause of the future! http://www.spacefinancegroup.com/
  17. What U'd Really Like to Know by YetAnotherBob · · Score: 1

    What I'd really like to know is when can we get something like this secure phone at Verizon?

    Of course, then we would need a secure Market..

    --
    Everybody knows 3 people with my name.
    1. Re:What U'd Really Like to Know by ColdWetDog · · Score: 1

      What I'd really like to know is when can we get something like this secure phone at Verizon?

      Of course, then we would need a secure Market..

      Why do you want a secure phone? What are you hiding, citizen?

      --
      Faster! Faster! Faster would be better!
    2. Re:What U'd Really Like to Know by narcc · · Score: 1

      You can already get a secure phone at Verizon. It's called the "Blackberry 9930".

      --
      Required reading for internet skeptics
    3. Re:What U'd Really Like to Know by Lunix+Nutcase · · Score: 1

      The Streak is not a phone.

    4. Re:What U'd Really Like to Know by coredog64 · · Score: 1

      That's strange. I use my Streak 5 to make voice calls all the time and have since the moment I pulled it out of the box.

      The Streak 7, although still an Android device, makes you work harder to unlock the phone capabilities.

    5. Re:What U'd Really Like to Know by tehcyder · · Score: 1

      That's strange. I use my Streak 5 to make voice calls all the time and have since the moment I pulled it out of the box.

      The Streak 7, although still an Android device, makes you work harder to unlock the phone capabilities.

      Using a tablet to make phone calls may be technically possible, but it still makes you look like a twat.

      --
      To have a right to do a thing is not at all the same as to be right in doing it
  18. First Android Device NOT Certified For DoD by cetroyer · · Score: 1
    The Dell Streak with Android 2.2 is NOT certified for use by DoD personnel.

    All that DISA has issued is an "Interim Security Configuration Guide" (see: http://iase.disa.mil/stigs/net_perimeter/wireless/u_android_2.2_dell_iscg_v1r1_20111020.zip), which is for "limited deployment, pilots and demonstrations" (see: http://iase.disa.mil/stigs/net_perimeter/wireless/u_android_iscg_release_memo.pdf). An approved device would have a "Security Technical Implementation Guide" (see: http://iase.disa.mil/stigs/net_perimeter/wireless/smartphone.html), such as BlackBerry and Windows Mobile.

    cetroyer

  19. Linux DOD Accreditation by gatkinso · · Score: 1

    Redhat is accredited to run on classified networks, so I guess it will be easier to get Android in the door.

    --
    I am very small, utmostly microscopic.
    1. Re:Linux DOD Accreditation by Lunix+Nutcase · · Score: 1

      Except that Android is radically different than Red Hat? Sure they share a kernel base to some degree, but that's about it.

    2. Re:Linux DOD Accreditation by hitmark · · Score: 1

      The Android "fork" holds a task scheduler that is quite peculiar, and tho i have not payed attention as of late i think their attempts at having it pulled into the main source was resisted because of how extensive it was.

      --
      comment first, facts later. http://chem.tufts.edu/AnswersInScience/RelativityofWrong.htm
  20. Remotely wiping by future+assassin · · Score: 1

    Thanks for the heads up. If I find one I'll be sure to not connect it to network untill I copy everything off the hd.

    --
    by TheSpoom (715771) Uncaring Linux user here. I have nothing to add to this but please continue. *munches popcorn*
  21. huge mistake by Anonymous Coward · · Score: 0

    tremendous mistake, period. dont come crying to me when all sh!t hits the fan.

  22. Already happening... by LoadWB · · Score: 1

    > So, how soon will we start seeing other smartphone vendors bid for secure-communications-devices contracts?"

    Was at the N.S.A. Trusted Computing Conference last month in Orlando. Saw at least one vendor with smart phones for secure use. I'm not going to dig out the paperwork to find names right now, but one company is offering secure and rugged phones. A lot of other interesting stuff there, as well -- multi-domain systems in the same box with full RF shielding between compartments, "cloud" printing for printing across domains, and a mess of other stuff.

  23. FOR THE LOVE OF GOD AND COUNTRY by Anonymous Coward · · Score: 0

    require that these be produced in the USA.

  24. Motorola Defy by Neil+Boekend · · Score: 1

    Wouldn't the military be more interrested in something durable? Something like the Motorola Defy? Don't think most devices would like how a soldier would treat them (no offence. Mud/dust/water is not something you can always avoid).

    --
    Well, I might have a way, but it only works on a semi spherical planet in a vacuum.
    1. Re:Motorola Defy by coredog64 · · Score: 1

      My guess is that this is for people in the "Chair Force", not those at the sharp end. Even if AT&T offers 3G in Kandahar, how far do you think the coverage area is? ;)

    2. Re:Motorola Defy by hitmark · · Score: 1

      http://www.otterbox.com/Dell-Streak-Defender-Series-Case/DEL2-STRK1,default,pd.html?dwvar_DEL2-STRK1_color=20&start=1&cgid=dell-streak-cases

      --
      comment first, facts later. http://chem.tufts.edu/AnswersInScience/RelativityofWrong.htm
  25. I think I must have a military grade streak by Anonymous Coward · · Score: 0

    my dell streak must be a military one because it has locked it's self down and doesn't let me to boot it any more.