1400 defense pentagon washington, dc … · office of the assistant secretary of defense 1400...

OFFICE OF THE ASSISTANT SECRETARY OF DEFENSE 1400 DEFENSE PENTAGON

WASHINGTON DC 20301-1400

NOV 08 2011 PUBLIC AFFAIRS

MEMORANDUM FOR SECRETARIES OF TIfE MILITARY DEPARTMENTS C6AJRMAN OF THE JOlNT CIDEFS OF STAFF UNDER SECRETARY OF DEFENSE FOR POLICY UNDER SECRETARY OF DEFENSE FOR INTELLIGENCE GENERAL COUNSEL OF THE DEPARTh1ENT OF

DEFENSE DOD CIDEF INFORMATION OFFICER

SUBJECT Online Google Multimedia Veterans Day Tool

Representatives of Google Inc contacted OUSDII to discuss an online multbnedia tool they intend to launch on Veterans Day November 11 2011 Google has given the Department a very short window ofopportunity to convey concerns related to operational security

The tool encourages veterans and service members to use existing Google social media products to tell stories about their individual military experiences including the locations where they were trained stationed or deployed The tool will be featured prominently on Gc)()gle websites as part ofGoogles effort to honor service members A description ofthe tool as provided by Google is located at Tab A

Pursuant to the DTM 09middot026 Responsible and Effective Use of Internet-based Capabilities (TAB B) it is the responsibility ofcomponents to inform their personnel about operational security

Given the short notice oftheir intent we request your review ofthe information and if you have any concerns to provide them by noon ThUISday November 10 2011 Ifyou have any questions please feel free to contact Carl Woog at 703-697-9312

IfJBryan G Whitman Principal DePutY AssiStant Secretary ofDefense for Pablie Affairs

Attachments As stated

o

q

DESCRIPTlON OF SERVICE PROVIDED BY GOOGLE

Google is creating a tool called Tour Builder with Google Earth technology This will allow users to tell stories including about their travels with the backdrop of Google Earths beautiful 3D satellite imagery

Users will be able to identify a list ofplaces in Google Maps tag each ofthese with ttoct photos or video iftheyd like and string them together to create a virtual tour

This has a nice application for veterans who will be able to record the story oftheir military service and share it with loved ones as a legacy

Our own military veterans here at Google are very excited about the tool which will be part ofan online website we launch on 111111 called Google for Veterans and Families

The site showcases the best set offree Google tools for members ofthis community

LINK A demo ofthe service can be found at httpLwwwmiddotYQYtubecom twatchv=2U2qIQDar8s Note please treat this link as sensitive corporate information

-

DEPUTY SECRETARY OF DEFENSE 1010 DEFENSE PENTAGON


February 25 2010 Cfw1Igt 2 Jehmiddotuafv 22 201 I

MEMORANDUM FOR SEE DISTRIBUTION

SUBJECT Directive-Type Memorandum (D1M) 09-026 - Responsible and Effective Use ofInternet-based Capabilities

References See Attachment 1

Purpose This memorandum establishes DoD policy and assigns responsibilities for responsible and effective use of Intemet-based capabilities including social networking services (SNS) This policy recognizes that Intemet-based capabilities are integral to operations across the Department ofDefense This DTM is effective immediately it will be convertoo to a new DoD issuance This DTM shall expire effective 1 Mareh20 I Janumv 2012

Apnlicability This DTM applies to

bull OSD the Military Departments the Office of the Chairman ofthe Joint Chiefs of Staff and the Joint Staff the Combatant Commands the Office ofthe Inspector General ofthe Department ofDefense the Defense Agencies the DoD Field Activities and all other organizational entities within the Department ofDefense (hereafter referred to collectively as the DoD Components)

bull All authorized users ofthe Non-Classified Intemet Protocol Router Network (NIPRNET)

Definitions Unless otherwise stated these terms and their definitions are fhr the putpOse ofthisDTM

bull Intemet-based capabilities All publicly accessible information capabilities and applications available across the Intemet in locations not owned operated or controlled by the Department ofDefense or the Federal Government Internetshybased capabilities include collaborative tools such as SNS social media usershygenerated content social software e-mail instant messaging and discussion forums (eg YouTube Facebook MySpace Twitter Google Apps)

bull extemal )fficial presences Official public affairs activities conduct(Jd on nonshyDoD sites on the Intemet (eg Combatant Commands on Facebook Chairman of the Joint Chiefs of Staffon Twitter)

DTM 09middot026 Feb1fKlry 252010

bull official public affairs activities Defined in DoD Instruction (DoDI) 540013 (Reference (araquo

Policy It is DoD policy that

bull The NIPRNET shall be configured to provide access to Internet-baset capabilities across all DoD Components

bull Commanders at all levels and Heads ofDoD Components shall continue to defend against malicious activity affecting DoD networks (eg distributed denial of service attacks intrusions) and take immediate and commensurate actions as required to safeguard missions (eg temporarily limiting access to the Internet to preserve operations security or to address bandwidth constraints)

bull Commanders at all levels and Heads ofDoD Components shall continue to deny access to sites with prohibited content and to prohibit users from engaging in prohibited activity via social media sites (eg pornography gambling~ hate-crime related activities)

bull All use ofIntemet based capabilities shall comply with paragraph 2-3010fChapter 2 of the Joint Ethics Regulation (Reference (b) and the guidelines set forth in Attachment 2

Responsibilities See Attachment 3

Releasability UNLIMITED This DTM is approved for public release and is available on the Internet from the DoD Issuances Website at httpwwwdticmillwhsldirectives


(umgtl ((12 ]01 f 2

-DTM09-026 Febuary25 2010

DISTRIBUTION SECRETARIES OF THE MILITARY DEPARTMENTS CHAIRMAN OF TIlE JOINT CHIEFS OF STAFF UNDERSECRETARIES OF DEFENSE DEPUTY CHIEF MANAGEMENT OFFICER CO~ERSOFTHECOMBATANTCOMMANDS ASSISTANT SECRETARIES OF DEFENSE GENERAL COUNSEL OF THE DEPARTMENT OF DEFENSE DIRECTOR OPERATIONAL TEST AND EVALUATION DIRECTOR COST ASSESSMENT AND PROGRAM

EVALUATION INSPECTOR GENERAL OF THE DEPARTMENT OF DEFENSE ASSISTANTS TO THE SECRETARY OF DEFENSE DIRECTOR ADMINISTRATION AND MANAGEMENT DIRECTOR NET ASSESSMENT DIRECTORS OF THE DEFENSE AGENCIES DIRECTORS OF THE DoD FIELD ACTIVITIES

3

DTM 09-026 FebruaJ 252010

ATTACHMENT 1

REFERENCES

(a) DoD Instruction 540013 Public Affairs (PA) Operations October 152008 (b) DoD 55007-R Joint Ethics Regulation Augustl 1993 (c) DoD Directive 85000IE Information Assurance (IA) October 24 200~ (d) DoD Instruction 85002 Information Assurance (IA) Implementation

February 6 2003 (e) DoD Directive 540011 DoD Privacy Program May 82007 (f) DoD Directive 523009 Clearance ofDoD Information for Public Release

August 22 2008 (g) DoD Manual 520502M DoD Operations Security (OPSEC) Program Manual

November 3 2008 (h) DoD Directive 50152 DoD Records Management Program March 62000 (i) DoD 52001-R Information Security Program January 14 1997 (j) DoD 52401-R Procedures Governing the Activities ofDoD Intelligence

Components That Affect United States Persons December 1 1982 (k) DoD Instruction 0-85302 Support to Computer Network Defense (CND)

March 9 2001 (I) Unified Command Plan Unified Command Plan 2008 (UCP)n December 17 2008

Attachment 1 ( ulIIge ] II 4

DTM09-026 Februay 252010

ATTACHMENT 2

GUIDELINES FOR USE OF INTERNET-BASED CAPABILITIES

1 GENERAL Thisattachment applies to the official andor authorized use of Internetshybased capabilities by DoD personnel and all authorized users ofthe NIPRNET Examples include but are not limited to

a SNS

b Image- and video-hosting web services

c Wikis

d Personal corporate or subject-specific blogs

e Data mashups that combine similar types ofmedia and information fiom multiple sources into a single representation

f Similar collaborative~ information sharing-driven Internet-based capabilities where users are encouraged to add andor generate content

2 OFFICIAL PRESENCES External official presences shall comply with Rtference (a) and clearly identifY that the DepartmentofDefense provides their content In addition external official presences shall

a Receive approval from the responsible OSD or DoD Component HeMi Approval signifies that the Component Head concurs with the planned use and has assessed risks to be at an Ilcceptable level for using Internet-based capabilities

b Be registered on the external official presences list maintained by the Assistant Secretary ofDefense for Public Affairs (ASD(PAraquo on wwwDefensegov

c Comply with References (a) and (b) as well as DoD Directive (DoDD) 850001E DoDl 85002 00005400110000523009000 Manual 5205u2-M DoDD 50152 DoD 5200l-R and DoD 52401-R (References (c) through G) respectively)

d Use official DoD and command seals and logos as well as other offilial command identifYing material per ASD(PA) guidance

Attachment 2 5

DTM09-026 Feb1U4Jr)1 252010

e Clearly indicate the role and scope ofthe external official presence

f Provide links to the organization~s official public website

g Be actively monitored and evaluated by DoD Components for comp] iance with security requirements and for fraudulent or objectionable use (References (d) ~ g) and (iraquo

3 OFFICIAL USE Official uses ofInternet-based capabilities unrelated to public affairs are permitted However because these interactions take place in a public venue personnel acting in their official capacity shall maintain liaison with public affhirs and operations security staff to ensure organizational awareness Use ofIntemet-based capabilities for official purposes shall

a Comply with References (b) through G)

b Ensure that the information posted is relevant and accurate and provides no information not approved for public release including personally identifiable information (Pll) as defmed in Reference (e)

c Provide links to official DoD content hosted on DoD-owned -operated or -controlled sites where applicable

d Include a disclaimer when personal opinions are expressed (eg This statement is my own and does not constitute an endorsement by or opinion of the Department ofDefense)

4 RECORDS MANAGEMENT Internet-based capabilities used to transact husiness are subject to records management policy in accordance with Reference (h) A U users of these Internet-based capabilities must be aware of the potential record value of their content including content that may originate outside the agency

5 LIMITED AUTHORIZED PERSONAL USE Paragraph 2-301 ofReferene (b) permits limited personal use ofFederal Government resources when authorized by the agency designee on a non-interference basis When accessing Internet-based clpabilities using Federal Government resources in an authorized personal or unofficial caJlacity individuals shall employ sound operations security (OPSEC) measures in accordance with Reference (g) and shall not represent the policies or official position ofthe Department ofDefense

Attaclunent 2 6

DTM09-026 Februry 252010

ATTACHMENT 3

RESPONSmILITIES

1 ASSISTANT SECRETARY OF DEFENSE FOR NETWORKS AND INFORMATION INTEQRATlONDoD CHIEF INFORMATION OFFICER (ASDltNIIlDoD CIO) The ASD(NII)lDoD CIO in addition to the responsibilities in section 4 of this attachment shall

a Establish and maintain policy and procedures regarding Intemet-basl~d capabilities use risk management and compliance oversight

b Provide implementation guidance for responsible and effective use of Internet-based capabilities

c Integrate guidance regarding the proper use of Internet-based capabi1 ities with information assurance (IA) education training and awareness activities

d Establish mechanisms to monitor emerging Internet-based capabilities in order to identify opportunities for use and assess risks

e In coordination with the Heads ofthe OSD and DoD Components dovelop a process for establishing enterprise-wide terms ofservice agreements for InternlJt-based capabilities when required

2 UNDER SECRETARY OF DEFENSE FOR INTELLIGENCE (USP(D) The USD(I) in addition to the responsibilities in section 4 ofthis attachment shall

a Develop procedures and guidelines to be implemented by the OSD and DoD Components for OPSEC reviews ofDoD information shared via Internet-based capabilities

b Develop and maintain threat estimates on current and emerging Internet-based capabilities

c Integrate guidance regarding the proper use ofInternet-based capabil ities into OPSEC education training and awareness activities

d Ensure that all use of Internet-based capabilities that collect user or other information is consistent with DoD 52401-R (Reference 0raquomiddot

j ( ~ 1middot0 I I 7h11igt ~ ~ -

DTM 09-026 February 25 2010

3 ASD(PA) The ASD(PA) in addition to the responsibilities in section 4 ofthis attachment shall

a Maintain a registry ofexternal official presences

b Provide policy for news infonnation photographs editorial community relations activities and other materials distributed via external official presence~

c Provide guidance for official identifiers for external official presences

4 HEADS OF THE OSD AND DoD COMPONENTS The Heads ofthe OSD and DoD Components shall within their respective Components

a Approve the establishment of external official presences

b Ensure the implementation validation and maintenance ofapplicable IA controls information security proceduresand OPSEC measures

c Ensure that computer network defense mechanisms that provide adequate security for access to Internet-based capabilities from the NIPRNET are in placo effective and compliant with DoD Instruction 0-85302 (Reference (k))

d Educate train and promote awareness for the responsible and effective use of Internet-based capabilities

e Monitor and evaluate the use ofInternet-based capabilities to ensure compliance with this DTM

f Coordinate with USD(I) regarding the use of all Internet-based capabi lities that collect user or other infonnation to ensure compliance with Reference (j)

5 DoD COMPONENT CHIEF INFORMATION OFFICERS (CIOs) The DoD Component CIOs shall

a Advise the ASD(Nn)lDoD CIO and ensure that the policies and guid~dlce for use ofIntemet-based capabilities issued by ASD(Nll)lDoD CIO are implementlxi within their Component

b In coordination with Component OPSEC and Public Affairs offices provide advice guidance and other assistance to their respective Component Heads and other

Chal1ge n20 j I 8


Component senior management personnel to ensure that Internet-based capabilities are used responsibly and effectively

c Assist their respective Component Head to ensure effective implementation of computer network defense mechanisms as well as the proper use ofInternet-based capabilities through the use ofexisting IA education training and awareness activities

d Establish risk assessment procedures to evaluate and monitor curren1 and emerging Component Internet-based capabilities in order to identifY opportunities for use and assess risks

e In coordination with the Component Public Affairs Office assist thelr respective Component Head in evaluating external official presences intended use

6 COMMANDER UNITED STATES STRATEGIC COMMAND (CDRUSSTRATCOM) The CDRUSSTRATCOM in addition to the responsibilities in section 4 ofthis attachment shall

a In accordance with Unified Command Plan 2008 (Reference (Iraquo direct the defense and operation ofthe DoD Global Information Grid (GIG)

b Assess risks associated with the use oflntemet-based capabilities identifY operational vulnerabilities and work with the ASD(NII)lDoD CIO to mitigate risks to the GIG

( jlang ~ - _ (J11 9

q

COORDINATION SHEET


Name Signature Date Coordination

SECARMY ConcurNn-Concur

SECNAV ConcurNonmiddotConcur

SECAF ConcurNon-Concur

OCJCS ConcurN()n-Concur

OUSD(P) ConcurNon-Concur

OUSO(J) ConcurN(n-Concur

OGC ConcurNon-Concur

OCIO ConcurNon-Concur

q








-
























(umgtl ((12 ]01 f 2




3


ATTACHMENT 1

REFERENCES









ATTACHMENT 2



a SNS


c Wikis









Attachment 2 5

DTM09-026 Feb1U4Jr)1 252010











Attaclunent 2 6


ATTACHMENT 3

RESPONSmILITIES




























Chal1ge n20 j I 8









( jlang ~ - _ (J11 9

q

COORDINATION SHEET


















-
























(umgtl ((12 ]01 f 2




3


ATTACHMENT 1

REFERENCES









ATTACHMENT 2



a SNS


c Wikis









Attachment 2 5

DTM09-026 Feb1U4Jr)1 252010











Attaclunent 2 6


ATTACHMENT 3

RESPONSmILITIES




























Chal1ge n20 j I 8









( jlang ~ - _ (J11 9

q

COORDINATION SHEET


































(umgtl ((12 ]01 f 2




3


ATTACHMENT 1

REFERENCES









ATTACHMENT 2



a SNS


c Wikis









Attachment 2 5

DTM09-026 Feb1U4Jr)1 252010











Attaclunent 2 6


ATTACHMENT 3

RESPONSmILITIES




























Chal1ge n20 j I 8









( jlang ~ - _ (J11 9

q

COORDINATION SHEET














3


ATTACHMENT 1

REFERENCES









ATTACHMENT 2



a SNS


c Wikis









Attachment 2 5

DTM09-026 Feb1U4Jr)1 252010











Attaclunent 2 6


ATTACHMENT 3

RESPONSmILITIES




























Chal1ge n20 j I 8









( jlang ~ - _ (J11 9

q

COORDINATION SHEET












ATTACHMENT 1

REFERENCES









ATTACHMENT 2



a SNS


c Wikis









Attachment 2 5

DTM09-026 Feb1U4Jr)1 252010











Attaclunent 2 6


ATTACHMENT 3

RESPONSmILITIES




























Chal1ge n20 j I 8









( jlang ~ - _ (J11 9

q

COORDINATION SHEET












ATTACHMENT 2



a SNS


c Wikis









Attachment 2 5

DTM09-026 Feb1U4Jr)1 252010











Attaclunent 2 6


ATTACHMENT 3

RESPONSmILITIES




























Chal1ge n20 j I 8









( jlang ~ - _ (J11 9

q

COORDINATION SHEET











DTM09-026 Feb1U4Jr)1 252010











Attaclunent 2 6


ATTACHMENT 3

RESPONSmILITIES




























Chal1ge n20 j I 8









( jlang ~ - _ (J11 9

q

COORDINATION SHEET












ATTACHMENT 3

RESPONSmILITIES




























Chal1ge n20 j I 8









( jlang ~ - _ (J11 9

q

COORDINATION SHEET


























Chal1ge n20 j I 8









( jlang ~ - _ (J11 9

q

COORDINATION SHEET



















( jlang ~ - _ (J11 9

q

COORDINATION SHEET











q

COORDINATION SHEET











COORDINATION SHEET











1400 defense pentagon washington, dc … · office of the assistant secretary of defense 1400...

Documents