The Defense Information Systems Agency (DISA) on August 15 launched the Department of Defense (DoD) Secure Access File Exchange (SAFE), to provide users with an enterprise-wide ability to safely transfer files within the DoD network.
DOD SAFE, a replacement for the U.S. Army Aviation and Missile Research Development and Engineering Center (AMRDEC) Safe Access File Exchange (SAFE) slated to be retired in August, will provide to users at no cost, a DOD enterprise-wide method of securely transferring files, according to DISA.
The file exchange will support transfer of files up to 8 gigabytes, an increase from the current 2 gigabyte limit, on the Non-classified Internet Protocol Router Network (NIPRNet). The service can be used to securely transfer unclassified data to include: For Official Use Only (FOUO), Personally Identifiable Information (PII) and Protected Health Information (PHI).
“The service provides exceptional functionality to our active and reserve service members, DOD civil servants, eligible DOD contractor personnel, and even our federal mission partners,” said Brian Hermann, director, SDD. “Now when a DOD team member needs to send or receive a large file, they have a simple and secure method in which to do so.”
In addition to being able to transfer large files, DOD SAFE offers other upgrades, such as users being able to access their files for seven days, as opposed to the current two-day time limit with AMRDEC.
According to DISA, users are also able to download the files multiple times and send up to 25 files at once.
In addition to package level encryption, DOD SAFE is also improving security by requiring authenticated Common Access Card (CAC) users, who are the main user base of DoD SAFE, to initiate all file transfers.
“Files from those who do not hold a CAC cannot be sent unilaterally,” said Jeanelle Holder, an electronics engineer with DISA’s Emerging Technologies Division.
“Guest users can only send solicited packages, which means that someone who does have a CAC has requested they send the file. This prevents files and systems from being corrupted by someone nefariously, or accidentally, sending a virus or something similar,” she added.