DAOD 6002-6, Wireless Networking

Table of Contents

1. Introduction
2. Definition
3. Overview
4. Requirements
5. Consequences
6. Responsibilities
7. References

1. Introduction

Date of Issue: 2012-07-25

Date of Last Modification: 2015-01-26

Application: This DAOD is a directive that applies to employees of the Department of National Defence (DND employees) and an order that applies to officers and non-commissioned members of the Canadian Armed Forces (CAF members).

Approval Authority: Assistant Deputy Minister (Information Management) (ADM(IM)) / Chief Information Officer (CIO)

Enquiries: Director Information Management Engineering and Integration (DIMEI)

2. Definitions

operational authority (autorité opérationnelle)

The person who has the authority to define requirements and operating principles, set standards and accept risk within their area of responsibility. (Defence Terminology Bank record number 43435)

3. Overview

Context

3.1 A wireless local area network (WLAN), or Wi-Fi network as they are more commonly known, is typically implemented as either an extension to, or as an alternative for, a wired local area network. Within DND and the CAF, WLANs are usually found within small client groups or in limited geographic areas where a traditional network cannot be deployed for logistical reasons.

Note – Wi-Fi is the abbreviation for "Wireless Fidelity" and is a commercial trademark name of the Wi-Fi Alliance.

3.2 WLANs can be used to leverage business and operational requirements, including:

1. the extension of existing networks into areas where the installation of network cable is not possible or practical, or where connectivity is required for a limited period of time, e.g. a single use training facility or ship-to-jetty;
2. the provision of network or Internet access for wireless devices in common or public areas; and
3. video and audio streaming.

3.3 Within the DND and the CAF, the implementation of a WLAN requires the application of proper risk and change management processes to ensure the continuity and security of business and operations.

3.4 This DAOD should be read in conjunction with the DND and CF IM and IT Policy Framework and other relevant ADM(IM) policies, instructions, directives, standards and guidance.

Objective

3.5 The objective of this DAOD is to establish the responsibilities for the effective and secure management and use of WLANs.

Expected Results

3.6 The expected results of this DAOD are:

1. increased use of WLAN technologies to provide flexible network infrastructure and reduce costs;
2. increased efficiency of WLANs through the use of common configurations; and
3. improved standardization of WLAN software and hardware configurations.

4. Requirements

Radio Frequency Spectrum Management

4.1 The Institute of Electrical and Electronics Engineers (IEEE) 802.11 series is a set of internationally-developed telecommunications industry standards for WLAN communication in the 2.4 and 5 GHz frequency bands.

4.2 Wi-Fi branded products are certified for interoperability using specific IEEE 802.11 standards, but these products may also include additional operating modes that may interfere with other 802.11-based networks operating in the same geographic area.

4.3 Different parts of the radio spectrum are used for different types of commercial applications, such as WLAN, cellular telephone and television broadcasting, in addition to specific operational communications. Depending on the geographic location of a WLAN, conflicts may arise with the use of a specific frequency.

4.4 The DND Frequency Spectrum Management section head in J6 Coordination is responsible for the management and resolution of radio frequency conflicts for the DND and the CAF. All WLANs must be managed in compliance with DAOD 6002-4, Radio Frequency Spectrum Management and implemented and configured in compliance with the Communications Security Establishment Canada’s COTS Security Guidance (CSG) Program Overview.

Managing WLAN Risks

4.5 Risk management is a systematic approach to selecting the best course of action under uncertainty by identifying, assessing, understanding, communicating and making decisions on risk issues.

4.6 A WLAN has the potential to introduce security and reliability risks, these risks must be properly analyzed, understood and mitigated in accordance with applicable direction and guidance, including DAOD 6003-2, Information Technology Security Risk Management.

5. Consequences

Consequences

Non-compliance with this DAOD may have consequences for both the DND and the CAF as institutions, and for DND employees and CAF members as individuals. Suspected non-compliance will be investigated. The nature and severity of the consequences resulting from actual non-compliance will be commensurate with the circumstances of the non-compliance.

Note – In respect of the compliance of DND employees, see the Treasury Board Framework for the Management of Compliance for additional information.

6. Responsibilities

Responsibility Table

6.1 The following table identifies the responsibilities associated with this DAOD:

7. References

Acts, Regulations, Central Agency Policies and Policy DAOD

• Framework for the Management of Compliance, Treasury Board
• DAOD 6002-0, Information Technology

Other References

• DAOD 6002-4, Radio Frequency Spectrum Management
• DAOD 6003-2, Information Technology Security Risk Management
• COTS Security Guidance (CSG) Program Overview, Communications Security Establishment Canada
• Defence Wide Area Network (DWAN) Information Systems (IS) Security Orders
• DND and CF IM and IT Policy Framework
• IEEE Standard for Information technology – Telecommunications and information exchange between systems Local and metropolitan area networks – Specific requirements Part 11: Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications, IEEE Standards Association (available in English only)