COMSEC Fundamentals Course

Communications Security (COMSEC) is used to prevent unauthorized access to telecommunications while still allowing its users access and falls under Information Security (INFOSEC).

The goal of COMSEC is to maintain the confidentiality, integrity and availability of DoD classified and unclassified information that has not been approved for public release during transmission.

COMSEC protects traffic on military communications networks, including voice, video, and data and is used for both analog and digital applications, and both wired and wireless links. COMSEC includes:

• • Cryptographic security:Encrypts data and represents it unreadable until the information is decrypted
  • Emission Security:Blocks the release or capture of equipment emissions to prevent information from illegal interception
  • Physical security:Assures the safety of, and avoids unauthorized access to a network’s cryptographic data, documents and equipment
  • Transmission security:When data is tangibly transferred to stabilize the issues such as service interruption, it defends illegal access

COMSEC is usually further broken down into the procedure and process linked with transmitting a message from its inception to its reception. The purpose of this is so every aspect is directed at blocking an enemy’s unambiguous attempt to penetrate the security at any assumed stage of the message-sending activity.

It’s easiest to think of COMSEC as a discipline consisting of specialized technical, operational, physical and personnel safeguards that are applied to telecommunications and other automated electronic information handling systems.

In other words, COMSEC is the term identifying the safeguards used to protect information of intelligence value that can be derived from the possession and study of telecommunications, or even to mislead unauthorized persons in the interpretations of this realm.

COMSEC Fundamentals Course by Tonex

Communications Security Fundamentals, COMSEC Fundamentals is a 5-day practical training course focuses on structured analysis to establish a solid foundation for any communications security skillset and to amplify existing skills. The course will help practitioners from across the communications security spectrum. Communication professionals, security analysts, individual who manages the Communications Security (COMSEC) resources of any organization or key custodian for a Crypto Key Management System (CKMS), will benefit from this course.

Communications Security (COMSEC) Modules:

Communications Security (COMSEC) Overview

• Overview of Telecommunications networks (L2, L3, ad PHY including radio and microwaves)
• Security surrounding the use of communication devices
• High level overview of Secret Internet Protocol Router Network (SIPRNet)
• Security principles behind a system of interconnected computer networks used by the U.S. Department of Defense and the U.S. Department of State to transmit classified information
• Firewalls and intrusion detection systems (IDS)
• Authenticity and measures taken to deny unauthorized access
• National security policies
• Methods to prevent uncontrolled distribution of secure information
• Use of cryptographic security measures

Transmission Security (TRANSEC)

• Mode of Transmission
• Overview of Spread Spectrum and CDMA
• Principles of Reed-Solomon Encoding, Interleaving, DSSS and Frequency Hopping
• Electromagnetic Transmission
• Electromagnetic Transmission
• Non-Electromagnetic Transmission

COMSEC Policies and Procedures

• Cryptographic Security
• Encryption systems to secure data and voice communications over Internet Protocol (IP) networks
• Link and Trunk Encryption systems
• Secure data and voice communication over point-to-point wideband data links
• Secure Voice and limited data communications over unsecured IP and public-switched telephone networks
• Encryption systems to secure data encryption capabilities for data at rest
• Embedded Cryptographic Modernization Initiative

Overview of Emissions Security (EMSEC)

• Tools and methods to protect classified information and control the radiation of electromagnetic signals
• Emissions security
• Transmission security
• Hardware used to encrypt and protect sensitive or classified communications

Physical Security of COMSEC

• Storage Of Classified Or Sensitive Materials
• Secret And Confidential
• Handling And Using Materials
• Control Access Area (CAA)
• Access Authorization
• Methods Of Identification

Principles of Telecommunications and Electrical Machinery Protected from Emanations Security (TEMPEST)

• Overview of TEMPEST and TEMPEST Countermeasures
• U.S. National Security Agency (NSA) specification and NATO TEMPEST certifications
• Overview of TEMPEST shielded facilities
• Housing sensitive equipment and information in a Tempest shielded room
• Electronic devices, computers and computer screens radiated electromagnetic emissions
• TEMPEST certification testing
• Security of information systems by the elimination of “leaking emanations”, including unintentional radio or electrical signals, sounds, and vibrations
• Shielding standards
• NSA TEMPEST Certification Program (TCP)
• Certified TEMPEST Products Program (CTPP)
• Certified TEMPEST Test Services Program (CTTSP)
• NSA Certified TEMPEST Test Services List (CTTSL)