SCL provides tougher internet security

  • Published
  • By Senior Airman Leticia Hopkins
  • 347th Rescue Wing Public Affairs
MOODY AIR FORCE BASE, Ga. --  The 347th Communications Squadron recently began enabling Smart Card Logon for all Moody computer users. 

The SCL-enabling process, mandated by the Department of Defense to enhance network security, is set to continue until June 7. 

While DOD requires each base to be SCL enabled by June, a date for mandatory Common Access Card login has not been set. Computer users will have the option to login to their computers as usual or through the use of their CAC until a date is given. 

“The process has gone fairly smoothly,” said Master Sgt. Stuart McAuley, 347th CS operations controller. “Users have been helpful in getting their information in correctly and we’re completing the process quickly.” 

Although CAC login is not mandatory yet, users must have the capability to use the login, said Sergeant McAuley. Users will be notified when the mandatory date is set by the Air Force. 

The 347th CS already enabled 40 percent of the base for SCL and is running ahead of the scheduled deadline. 

“We try to enable SCL for users every Friday,” said Staff Sgt. David Mumbulo, 347th CS network administration technician. 

By enabling SCL, a more resilient two-part security procedure is created. The current login procedure is also two-part, but only requires a username and password. 

For the most, part usernames are standard, so in order to get into an account someone would only need to figure out the account password. 

The new system requires the CAC and a pin number. For that account to be compromise,d both would be needed, making it harder to access, said Sergeant McAuley. 

In order for the SCL to work, Moody computer users must have a CAC, which is issued by 347th Military Personnel Flight customer service. 

The CAC replaced the traditional identification cards for active-duty military members, current Reserve and Guard members, DOD civilians and contractors. 

The CACs contain a computer chip with three bits of information stored in them called certificates, said James Petersen, 347th MPF site manager. The three certificates are the user’s identity, e-mail address and e-mail encryption. 

“If you use your card in a reader, put in your pin and send someone an e-mail, they can use that e-mail as an official document,” said Mr. Petersen. “It is similar to physically signing the document because the only way the e-mail can be sent is to have access to the card and pin.” 

To access computer systems using the CAC, users must provide the pin number given with the card upon issue. Pin numbers can be reset at the MPF if forgotten or compromised. 

“Once Smart Card Logon is enabled, the changes take effect immediately,” said Sergeant Mumbulo. “When the users log onto the network they will be directed through a series of windows. The whole process takes the user approximately five minutes.” 

While users will use their CAC pin number to log into Moody’s network, current user-name and password requirements are still needed. They are required for access to Moody’s Web-mail, Virtual Private Network and Remote Access Servers. 

If users encounter problems during the switchover, Sergeant Mumbulo recommended checking if Active Card 2.2 and 3.0, the two card-reading programs, are both installed. If they are, uninstall both programs and reinstall the 3.0 version. 

He also recommended ensuring the user’s e-mail address is correct. Multiple accounts should only have one associated with the CAC.