Air Force

August 1, 2014

Existing tools help users reduce PII breaches

1st Lt. Meredith Hein
JB San Antonio-Lackland, Texas

New buttons will show up on Outlook e-mails as part of the new Digital Signature Enforcement Tool roll out. DSET helps users protect personally identifiable information by flagging possible PII in e-mails and attachments.

 
Members of 24th Air Force are refurbishing an old e-mail tool to help Air Force users reduce breaches of personally identifiable information.

The Digital Signature Enforcement Tool, which currently prompts users to provide a digital signature when an e-mail contains an active hyperlink or attachment, is being reconfigured to scan e-mails and attachments for PII. DSET was first introduced to Outlook in 2009 by the Air Force Life Cycle Management Center.

“DSET was originally designed to mitigate risk from socially-engineered e-mail or phishing attacks. Now, it provides some protection of messages transmitting PII,” said Alonzo Pugh, cyber business system analyst for 24th AF. “The tool provides awareness for users of risks before the e-mail leaves the workstation, giving users the chance to correct the identified risk.”

PII includes items such as an individual’s social security number, driver’s license information and financial information. Breaches occur when this information is inadvertently released. User awareness is one of the biggest issues associated with PII breaches, according to Pugh.

“When users release PII that is not protected, that puts information at risk for being intercepted by adversaries. These adversaries can then use that information to target users to gain access the network,” said Pugh. “Air Force network users must do their due diligence when sending an e-mail containing PII. They need to make sure the information is protected.”

DSET capability should encourage users to be more involved in the process of preventing PII breaches, said Pugh. “The user is afforded the ability to take action in checking their e-mails to make sure they are not inadvertently releasing PII, and given the opportunity to protect it. DSET makes users more aware that they need to double check their e-mails and ensure that they are in accordance with policy; the responsibility for preventing breaches ultimately falls on them.”

The tool itself is straightforward to use, said Pugh, and will give users simple prompts to follow in sending e-mails. In addition, there is a function allowing information which was falsely identified as PII to still be sent.

“While our software solution will support the Air Force’s efforts to reduce PII breaches, it is still important for personnel to be aware and vigilant with their handling of documents containing PII,” said Col. Eric Oliver, 24th AF director of cyber systems.

The tool’s new usage is still in its initial stage, focusing on social security numbers. Developers hope that DSET will ultimately be able to scan for a variety of PII to prevent future breaches.

“It is imperative that we protect one another as we move each Air Force mission forward,” said Maj. Gen. J. Kevin McLaughlin, 24th Air Force commander. “Avoiding the release of PII is part of being a good wingman, but it is also part of protecting the network and accomplishing the Air Force mission.”

In preparation for the release of DSET, you can access training for the new tool using the following link https://afpki.lackland.af.mil/assets/files/OE-15-40-064_QRG-DSET_v0001.pdf.

Additional training on how to encrypt Microsoft Office documents can be accessed at www.24af.af.mil/shared/media/document/AFD-140701-064.pdf.

Users have multiple tools at their disposal to protect PII if encrypting e-mail is not feasible, but if electronic transmission of sensitive PII is operationally required, users can leverage approved Department of Defense file exchange services at https://safe.amrdec.army.mil/safe/.




All of this week's top headlines to your email every Friday.


 
 

 

Through our character – an opportunity to reflect on important issues in our community

- Less than one percent of today’s U.S. population has ever served in the military, and that one percent has carried the weight of America’s longest military engagement.¬†Starbucks CEO Howard Schultz wrote in a recent book that “for too long too many of us have paid scant attention to the commitment of the brave few...
 
 

News Briefs May 29, 2015

SAPR annual training The next SAPR annual training class, “Respect the Red Line,” is 2 p.m., June 1 at 2.p.m. at the base theater. This training is mandatory for all active duty personnel and DOD civilians. Plan ono arriving early as everyone must sign-in to get credit. Unit training managers will be responsible for tracking...
 
 
base-lab1

For good measure, base precision lab passes biannual evaluation

Air Force photograph by Rebecca Amber Maj. Gen. Arnold Bunch Jr., Air Force Test Center commander, presents the biannual Air Force Metrology and Calibration Laboratory Evaluation certificate to Daniel Tibayan, Test Measurement ...
 

 
Lockheed Martin photograph by Chad Bellay

F-16 test pilots hit the ‘road’ to help train USAFE pilots

Lockheed Martin photograph by Chad Bellay An F-16 from the 416th Flight Test Squadron parked at Nellis Air Force Base, Nev., during a Red Flag exercise in 2012. Two F-16 test pilots from the 416th Flight Test Squadron recently ...
 
 
Air Force photograph by Rebecca Amber

YF-22A brings in $25,000 for museum move

Air Force photograph by Rebecca Amber Bechtel Corporation presented a check for $25,000 to the Flight Test Historical Foundation at the Air Force Flight Test Museum May 21 to sponsor the YF-22A. (Left to right) Dr. David Smith,...
 
 
historian1

Edwards historian awarded for study of deployed flight test

Air Force photograph by Rebecca Amber Dr. Stephanie Smith received the Robert F. Futrell Award for Excellence in historical publications for her special study, “Deployed Flight Test of the Iraqi Air Force Comp Air 7SLX (C...
 




0 Comments


Be the first to comment!


Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>