Information operations condition

Description

There are five levels of INFOCON, which recently changed to more closely correlate to DEFCON levels. They are:

• INFOCON 5 describes a situation where there is no apparent hostile activity against computer networks. Operational performance of all information systems is monitored, and password systems are used as a layer of protection.
• INFOCON 4 describes an increased risk of attack. Increased monitoring of all network activities is mandated, and all Department of Defense end users must make sure their systems are secure. Internet usage may be restricted to government sites only, and backing up files to removable media is ideal.
• INFOCON 3 describes when a risk has been identified. Security review on important systems is a priority, and the Computer Network Defense system's alertness is increased. All unclassified dial-up connections are disconnected.
• INFOCON 2 describes when an attack has taken place but the Computer Network Defense system is not at its highest alertness. Non-essential networks may be taken offline, and alternate methods of communication may be implemented.
• INFOCON 1 describes when attacks are taking place and the Computer Network Defense system is at maximum alertness. Any compromised systems are isolated from the rest of the network.

Similar concepts in private-sector computing

ThreatCon (Symantec)

Symantec's ThreatCon service no longer exists. Broadcom has acquired Symantec.

In popular culture

In the TV Series, Crisis, the US government goes to INFOCON 2 when Francis Gibson has a massive cyber attack initiated upon the United States, nearly bringing it to war with China.

References

References

1. Iyengar, Clare Duffy,Rishi. (2019-08-08). "Broadcom to acquire Symantec's enterprise security software business {{!}} CNN Business".