The Cybersecurity and Infrastructure Security Agency (CISA) has released finalized versions of two Trusted Internet Connections (TIC) 3.0 use cases that Federal agencies can use to advance their security postures.
The finalized use cases include the “Traditional TIC Use Case,” which describes the architecture and security capabilities guidance for conventional TIC implementation, and the “Branch Office Use Case,” which describes the architecture and security capabilities guidance for remote offices.
CISA said the finalized versions are the first official use cases approved by the Federal Chief Information Security Officer (CISO) Council for TIC 3.0.
TIC Program Office chief Sean Connelly said late last year that finalized versions of the two use cases – which had previously been released in draft form – were in the works for 2021.
There is plenty left to come in the TIC 3.0 use-case pipeline.
Last December, CISA released a draft version of its use case for remote users, which builds upon TIC 3.0 interim telework guidance that the agency issued earlier in 2020.
Waiting in the wings, Connelly has said, are more use cases dealing with infrastructure as a service, software as a service, platform as a service, and email. Potential use cases after that may focus on zero trust and the internet of things.