Success Story: Defense Logistics Agency (DLA)

Axway provides security and digital certificate validation

  • Headquarters

    Fort Belvoir, Virginia, U.S.
  • Industry

  • Challenge

    • Deploy a public key infrastructure (PKI) solution that will ensure the utmost security and trust for its technology infrastructure
    • Align with the DoD’s PKI Program Management Office (DoD PKI PMO) identity validation objectives and plans for enabling expanded use of DoD Common Access Cards
  • Solution

  • Results

    • Enables applications to allow properly credentialed individuals to exchange sensitive information, process high value transactions, and otherwise access the network systems critical to worldwide logistics operations
    • Simplifies certificate validation processing at the application level for the most widely used Secure Web Servers on multiple OS platforms
    • Gives the Defense Logistics Agency a fault tolerant design with robust fail-over support, ensuring the reliability and continuity of system-wide authentication

As DoD’s largest combat support agency, the Defense Logistics Agency (DLA) provides military services and several civilian agencies with nearly every consumable item, whether for combat readiness, emergency preparedness, or day-to-day operations. The DLA has handled more than 45,000 requisitions per day, managed 5.2 million items, and had $28.7 billion in sales and services. The organization processes nearly 8,200 contracts daily and does business with nearly 24,000 different suppliers.

Military-grade security that scales

The U.S. Department of Defense (DoD) Defense Logistics Agency (DLA) deployed the Axway Validation Authority (VA) to provide enterprise-wide digital certificate validation to more than 30,000 users. The VA validates the status of digital certificates in real time using the open standard Online Certificate Status Protocol (OCSP, RFC 2560), ensuring that revoked credentials cannot be used for secure email, smart card login, web access, wireless, VPN, or other electronic transactions that might compromise mission-critical DLA infrastructure. 

With the growing complexity of its operations and information assurance requirements, the DLA sought a public key infrastructure (PKI) solution that could ensure the utmost security and trust for its technology infrastructure. DLA was also looking for a solution aligned with the DoD’s PKI Program Management Office (DoD PKI PMO) identity validation objectives and plans for enabling expanded use of the DoD Common Access Cards. After conducting an extensive technical evaluation of digital certificate validation products, the agency selected Axway VA as the PKI validation solution to support these objectives.

Reliable, continuous authentication

The Axway VA solution enables applications to allow properly credentialed individuals to exchange sensitive information, process high value transactions, and otherwise access the network systems critical to the DLA’s worldwide logistics operations.

“Axway’s technology, JITC certification, and extensive deployments with other DoD services and departments will provide the assurance required for protecting sensitive emails, websites, file transfers, transactions, and facilities from unauthorized access.”

Pat Edwards, Chief, Information Assurance J6R and DLA, PKI Program Manager

 

DLA also deployed the Axway Server Validator to enable digital certificate validation in the most widely used Secure Web Servers on multiple OS platforms, ensuring application level security of mission critical applications. Integrating Axway VA validation technology with the DLA’s Business Systems Modernization initiative delivers a fault tolerant design with robust fail-over support, ensuring the reliability and continuity of systemwide authentication.

Confidence even in disconnected environments

The Axway VA suite of products also satisfied the DLA’s requirement for a configurable out-of-the-box solution that could operate without external connectivity requirements during periods of heightened alert. Axway VA features an innovative Repeater-Responder architecture that is uniquely suited to address the performance and availability requirements of distributed and disconnected operating environments. This enables the agency to maintain system-wide authentication when alert levels require the DLA to restrict all Non-Secure Internet Protocol Router Network (NIPRNET) traffic and continue operations on its enterprise telecommunications network (ETN). The Axway solution provided a robust replication system to mirror the Defense Information Systems Agency’s (DISA’s) generated certificate revocation lists to a location accessible inside the ETN, as well as a monitoring component that tracks the availability of DISA CRLs and automatically notifies DLA personnel of outages.

Meet compliance requirements with Axway Validation Authority

Axway Validation Authority (VA) ensures the validity and integrity of highly valued and trusted transactions. VA is a proven, fourth-generation solution that has been deployed by hundreds of customers worldwide for over six years, including the U.S. Department of Defense and all branches of the U.S. military, U.S. Department of Homeland Security and U.S. intelligence communities, as well as top financial institutions globally. The Axway Validation Authority (VA) product suite offers a comprehensive, scalable, and reliable framework for real-time validation of X.509 digital certificates within diverse Public Key (PKI) operating environments. The VA is CA neutral and supports numerous well accepted international security standards and open technologies. The VA complies with Federal Information Protection Standard (FIPS) 140-l, DOD Joint Interoperability Testing Command, and Identrus standards, and is part of the Identrus, SWIFT Trust Act, BACS and Global Trust Authority financial trust infrastructures. Additionally the Validation Authority is completing Common Criteria (ISO/IEC 15408) Evaluation Assurance Level (EAL-3) by the National Information Assurance Partnership (NIAP), a collaboration between the National Institute of Standards and Technology (NIST) and the National Security Agency (NSA).

Need to protect systems from unauthorized users?

Contact

Email

Share