DoD Consulting Services

We are well qualified in defense electronics, and knowledgeable with reference to government policies and procedures, as well as Military Specifications (MILSPECS). Having successfully completed many government contracts and having received security clearances for those projects in the past, our company welcomes the opportunity to service military and government classified or declassified computer systems. We can accept third party agency W-2 and 1099 contracts, or Corp-2-Corp.

We face new challenges with the advent of enemy forces which seems to be quite elusive, technically educated, and computer literate. We need to improve and expand electronic battlefield and Cyber warfare capabilities to include real time monitoring and surveillance of airborne and ground force threats as well as threats to our digital networks and communication infrastructure. Cyber warfare will become the battlefield of the future. A war which at present, we as a nation, are not prepared to defend against.

IDS/RNA and SAS 70 Certification

Most military networks do not have adequate intrusion detection systems in place and are vulnerable to malware attacks. Malware detection and intrusion detection or prevention alone, will not be sufficient as a form of system security. Malware detection by signature, is not the answer to system security. Why code for the unknown malware signature, and set off alarms after the infection and damage has occurred, when it would be wiser to authenticate applications and files already known to the system. Writing file and application authentication rules and system policies, which would give applications and files permission to run, or authenticating applications and files by checksum, would be more likely to succeed. Using a signature-based IDS alone has limitations and works best if it can be integrated with another mechanism of attack detection. Overlaying RNA against the IDS definitely gives a much higher level of confidence that a potential attack is being properly identified and poses an actual risk to the target environment. SAS 70 certification demonstrates that adequate controls and safeguards are in place to process and protect the data.

We use Department of Defense standards to insure erasure of all storage system data before the system is disposed of, or otherwise destroyed. The patterns we use for overwriting data are based on Peter Gutmann's paper "Secure Deletion of Data from Magnetic and Solid-State Memory" and they are selected to effectively remove the magnetic remnants from the storage system making it impossible to recover the data. Other methods we use include those defined in the National Industrial Security Program Operating Manual of the US Department of Defense and overwriting with pseudorandom data.

We would be interested in future government contracts servicing military and government classified or declassified computer systems, and have the ability to acquire and maintain a D.O.D. security clearances. Previous clearances were granted through NIPS, JPAS and DISCO.