CSIAC’s In-house Software Development – Binary File Application Scanner (BFAS)

CSIAC’s In-house Software Development - Binary File Application Scanner (BFAS)

CSIAC SUCCESS STORY

Customer

375th Communications Squadron (375 CS)/Base Communications Support

Challenge

The growth of Big Data and new technologies brings an ever-increasing amount of Personally Identifiable Information (PII) data stored all over different networks. The escalation of security breaches involving PII data contributed to the loss of millions of records over the past few years, jeopardizing both individual and organizational security. 375 CS requested CSIAC’s assistance to preserve the security and confidentiality of PII residing on network systems as well as ensure regulatory compliance.

Approach

PII protection begins with identifying the location of PII on computers and servers. However; because PII is often hidden in such diverse files as text or word processing documents, Portable Data Format (PDF) documents, as well as Excel Files, Database Files and Statistical Analysis Software (SAS) Files; the traditional method of manually scouring the network for PII is a highly resource intensive and ineffective process. To automate the search for PII, CSIAC developed an open source software (OSS) prototype known as the Binary File Application Scanner (BFAS). Based on a set of pre-defined parameters, the BFAS scans large batches of email and hundreds of other binary file types to capture both the location and the before/after context of the targeted information. After the scan BFAS produces a list of files which appear to contain PII in an easily customizable format. Additionally, BFAS also provides a layer of protection for PII by allowing system administrators to take immediate actions for remediation including secure deletion or redaction. Robust testing by the 375 CS showed that the BFAS prototype can successfully operate in all anticipated environments with the required usability and security.

Value

CSIAC’s BFAS is capable of efficiently identifying and protecting PII data residing across network enclaves to prevent potential exploitation without impeding the operational mission. BFAS also provides a means for safeguarding sensitive but unclassified operational data and keeping adversaries from discovering critical information other than PII. As a DoD Research, Development, Test and Evaluation (RDT&E) proof-of-concept effort, in the form of software development assessed through maturity of the design and technology readiness level, BFAS could serve as a valuable capability with a wide-range of potential application useful throughout the Large-Scale Department of Defense (DoD)/Mission Assurance/Information System Owners (ISOs).

The Cyber Security and Information Systems Information Analysis Center (CSIAC) is operated by a team led by Quanterion Solutions Incorporated under Contract FA8075-12-D-0001.Distribution Statement A: Approved for public release; distribution unlimited..