Information Operations Condition

From Wikipedia, the free encyclopedia

Information Operations Condition (INFOCON) is a threat level system in the United States similar to that of FPCON. INFOCON is a defense system based primarily on the status of information systems and is a method used by the military to defend against a computer network attack.

[edit] Descriptions of INFOCONs

There are five levels of INFOCON, which recently changed to more closely correlate to DEFCON levels. They are:

INFOCON 5 describes a situation where there is no apparent terrorist activity against computer networks. Operational performance of all information systems is monitored, and password systems are used as a layer of protection.

INFOCON 4 describes an increased risk of attack. Increased monitoring of all network activities is mandated, and all Department of Defense end users must make sure their systems are secure. Internet usage may be restricted to government sites only, and backing up files to removable media is ideal.

INFOCON 3 describes when a risk has been identified. Security review on important systems is a priority, and the Computer Network Defense system's alertness is increased. All unclassified dial-up connections are disconnected.

INFOCON 2 describes when an attack has taken place but the Computer Network Defense system is not at its highest alertness. Non-essential networks may be taken offline, and alternate methods of communication may be implemented.

INFOCON 1 describes when attacks are taking place and the Computer Network Defense system is at maximum alertness. Any compromised systems are isolated from the rest of the network.