US CENTCOM is one of nine unified commands in the Department of Defense (DoD). All DoD employees have Common Access Cards (CAC), which are required for network access on the Unclassified but Sensitive Internet Protocol Router Network (NIPRNET). This works fine Continental United States (CONUS), but presents problems for PKIenabled applications working in high-latency /low bandwidth environments, such as systems used in theater. US CENTCOM required a joint framework to support those deployed within the Area of Responsibility (AOR).
InScope created an architectural framework to address this problem using the current common technology including online certificate status protocol (OCSP), cached Certificate Revocation Lists (CRLs), compressed CRLs and some newer proprietary technology including MiniCRLs.
As part of this effort, the team developed policy and technical guidance based on DOD standards including the DOD Architecture Framework. These policies were then used to deploy the following solutions into the Middle East.
As a result of this solution, the U.S. Military has realized significant cost savings and network service improvement in the command and with deployed forces.