spacer    On This Site:

The Threat
Investment Areas
SPI Successes
SPI Brochure
Encryption Wizard
Lightweight Portable    Security
RE Training Course
RE Workshop
Product Datasheets

  By Popular Demand:

The SPI Show

   Latest utility versions:

LPS - v1.5.6
EW - v3.4.5

gratuitous military people

Lightweight Portable Security
Remote Access Edition

A Government Telework Solution

  • Secure end-node for remote desktop access
  • Low-cost "virtual GFE" telework solution
  • Use on almost any x86 Mac or PC; nothing to install
  • Customized for your DoD network and mission needs
  • Certified by AFNIC to connect to the GIG for general telecommuting use
  • On the Air Force Evaluated/Approved Products List
  • US Army Certificate of Networthiness

Virtual GFE Secure End-Node Technology

Booting from a CD and installing nothing, the Lightweight Portable Security (LPS) family of products creates a temporary, RAM-based, secure end-node for secure telework. The LPS-Remote Access edition provides secure, low-cost desktop virtualization via remote access. This customized version of LPS was created with only minimal, necessary capabilities for more secure remote access to DoD networks. With only a LiveCD and a CAC reader, LPS creates a trusted "virtual GFE" (Government-Furnished Equipment) environment within minutes on almost any x86 Mac or PC.

In 2009, LPS was evaluated by NSA and approved by ASD NII (DoD CIO) for DoD-wide use during pandemic emergencies, and was certified by AFNIC/EV for the AF-GIG for emergency use. In 2011, it was given a Certificate of Networthiness by the US Army. It is the only DoD-approved remote access solution using non-GFE. Compared to other solutions, LPS-Remote Access is faster to deploy and cheaper to maintain. To maximize effectiveness and security, each build is customized for one specific network. In 2011, AFNIC revised the certification to include general telecommuting use.

A High-Security, Tightly-Focused Solution

The AT Program Office designed LPS-Remote Access for maximum security, focusing specifically on providing temporary remote access only. LPS-Remote Access connects to Juniper or Cisco VPN infrastructure, authenticated by the user's CAC (or login/password), to your network. Users view their server-side desktop using Citrix, VMware View or Microsoft Remote Desktop Protocol.

The baseline build is small in size and holds only a tightly-configured Firefox browser and the remote access tools and clients necessary for enterprise network access. It intentionally lacks drivers for hard drives, printers, and most USB items. It can be configured to restrict general web browsing.  Its firewall can be customized to allow only outbound connections to authorized addresses.

Once customized for your organization, the build becomes For Official Use Only (FOUO). Initial deployment and support documents are provided with the customized ISO image. The files and Tier 2 support is free; organizations incur the costs of deployment and sustainment.

Your Custom Build

We will create a custom LPS-Remote Access build for your specific connectivity and remote desktop instructure. Our team will work with you to hone your build by setting specific ports, protocols and services, and by adding any optional application software. Identify any specific requests in the remarks section of the Request Form. This solution is free to DOD organizations. For non-DOD federal organizations, there is a one-time $10K customization fee and an annual $2K maintenance fee. We are currently investigating how to provide this solution to state and local governments and the private sector. The public version of LPS remains free for all users.

Support Organization Pre-Requisites

  • Ability to burn ISO images and to customize user documentation
  • Ability to deploy CDs, USB CAC readers and user materials
  • Sufficient network resources to support remote users
  • Tier 1 Help Desk infrastructure to support your custom LPS build

User System Requirements for LPS-Remote Access

  • x86 PC or Mac, bootable CD-ROM drive
  • 1 GB RAM
  • Wired, wireless or cellular broadband Ethernet connection to Internet
  • USB smart card reader

Click here for a printer-friendly version of this information.

Click here to request your custom LPS build.

Related Sites:

Air Force Research Laboratory

DoD Anti-Tamper Program

High Performance Computing Modernization Program

Director, Defense Research & Engineering

24th AF