Defense Data Network (DDN)
The Defense Information Systems Agency (DISA) operated the Defense Data Network (DDN) for the purposes of supporting wide area data communications requirements of the Department of Defense. Because the packet switch nodes (PSN) of the DDN were not trusted to simultaneously support traffic of different classification levels, four worldwide sub-networks were deployed. The PSNs of different classifications are physically separated. The classified circuits are encrypted so they may share a common trunking infrastructure.
The four sub-networks of the DDN are:
Defense Secure Network (DSNET)
While MILNET and DSNET 1 were common user networks, DSNET 2 was dedicated to supporting the Worldwide Military Command and Control System (WWMCCS) and DSNET 3 was dedicated to supporting the DoD Intelligence Information System (DODIIS). All networks were operationally controlled by DISA. However, for the sake of convenience, DISA had an Memorandum of Agreement (MOA) with DIA to physically manage the day-to-day operations of DSNET 3.
- Military Network (MILNET) for Unclassified traffic
- Defense Secure Network One (DSNET 1) for Secret traffic
- Defense Secure Network Two (DSNET 2) for Top Secret traffic
- Defense Secure Network Three (DSNET 3) for Top Secret/Sensitive Compartmented Information (TS/SCI)
In September 1991, OSD directed DISA to implement the Defense Information Systems Network (DISN). In addition to consolidating all service agency transmission multiplexor infrastructures, it called for the consolidation of all service and agency Internet Protocol (IP) router networks. The transmission infrastructures would be consolidated by converting all service and agency multiplexor networks to the same hardware base, the NET IDNX. While the specifics of consolidating the router networks vary between DISA and the various router network managers, DISA is centrally operating at least two worldwide IP router networks, one for the sensitive but unclassified (N) environment, NIPRNET, and one for the secret (S) environment, SIPRNET.
The NIPRNET is comprised of the former DLA Corporate Network (DCN) in the CONUS, the former DDN Pilot Network, also in the CONUS and extensions into the Pacific and Europe. The former Pilot Network portion of the NIPRNET has been renamed the Joint Interconnection Service (JIS) because it serves as a central network with which routes are available to facilitate reachability with the various router networks to include the Global Internet.
As the SIPRNET was being deployed, there did not appear to be a sufficient subscriber population to warrant a TS IPRNET. The TS/SCI requirements were integrated in the DIA sponsored Joint Worldwide Intelligence Communications System (JWICS). Ultimately, the JWICS will come under DISA control.
All circuits to the maximum extent possible are routed over the IDNX multiplexor infrastructure. Line speeds for the IP router networks vary from 9.6 kbps to T-1. Interfaces supported include all primarily serial and ethernet connections. The networks are managed by centers located in Columbus OH, Vaihingen, GE, and Wheeler AAF, HA. The networks offer Domain Name Service and will support GOSIP protocols. The Defense Message System is supported on the IPR router networks. All classified networks are appropriately protected with a combination of physical protection at the router and KG encryption for exposed circuits.
In Fall of 1992, a study was conducted and it was determined that the DDN should be phased out and its requirements be satisfied by IPR router networks. As a result, DISA orchestrated an effort to phase out the four sub-networks of the DDN to be completed by October 1995.
- MILNET By and large, the services and agencies removed their systems and reconnecting them in other fashions. Often, they simply concentrated them and in some cases, rehoming them to alternate networks.
- DSNET 1 The population of DSNET 1, for the most part, rehomed to the SIPRNET during FY 95. Most Air Force systems reconnected to the unclassified IPR router environment by way of the BLACKER end to end encryption system.
- DSNET 2 The WWMCCS community is dependent upon the PSN to support their unique Protocols. The Global Command and Control system (GCCS) is targeted to assume all WWMCCS functionality and is deployed in the Secret environment on the SIPRNET. Additionally, the WWMCCS system was downgraded to Secret. With the downgrade of WWMCCS to Secret and the assumption of WWMCCS functionality by GCCS, the majority of the TS requirement no longer existed.
- DSNET 3 DIA deployed the JWICS and rehoming the DSNET 3 subscribers simultaneously.
Sources and Methods
Created by John Pike
Maintained by Steven Aftergood
Updated Friday, February 11, 2000 5:40:06 AM