AF Defensive Cyberspace Operations

Abstract

AF Defensive Cyberspace Operations (AF DCO) consists of Air Force Defensive Cyber Systems (AFDCS) and Firestarter to provide defensive cyber capabilities that protect the AFNET and DoD network enclaves, to include their associated computer systems, software applications and sensitive operational information against unauthorized intrusion, corruption, and/or destruction. The emphasis of the program is directed toward defensive cyberspace capabilities, computer and network systems security, damage assessment and recovery, cyber threat recognition, attribution, and mitigation, and active response methodologies in response to evolving threats and changes to cyber environment. These areas of emphasis are realized through research and development, test and acquisition in the areas of proactive defense, defensive counter cyberspace, cyberspace intelligence, surveillance and reconnaissance, command and control situational awareness, persistent network operations, as well as decision support, recovery, and digital forensics. Firestarter utilizes cyber and Information Assurance (IA) technology investments by US Cyber Command, the Defense Advanced Research Projects Agency (DARPA), the National Security Agency (NSA), Director of National Intelligence (DNI), Intelligence Advanced Research Projects Activity (IARPA), the Department of Homeland Security (DHS), and various government research laboratories, to jump-start its development of solutions to existing Air Force cyber and IA requirements. This program supports AF Cyberspace strategic direction in support of Cyber Defense which provides capabilities to 16th AF, as AF component to US Cyber Command (USCYBERCOM), Defense Information Systems Agency (DISA), National Security Agency (NSA), and other services to ensure Global Information Grid (GIG) cyber and IA requirements are being met. Activities performed include those designed to identify, analyze, test, rapidly acquire, and integrate emerging IA and cyber technology and defensive cyberspace weapons systems and capabilities into all regions of the GIG - terrestrial, airborne, and space systems. In addition, this effort will support implementation of DoD Enterprise-wide IA & Computer Network Defense (CND) Solutions Steering Group (ESSG) solutions. Current Air Force systems, such as the AFNET NIPRNet Gateways, SIPRNet Modernization program, and Host Based Security System leverage this technology to meet their information assurance and defensive cyberspace needs/requirements. In FY23, the DAF realigned $240.9M from Program Element (PE) 0208088F AF Defensive Cyberspace Operations (AFDCO) to PE 0308605F AF Defensive Cyber Systems (AFDCS) in order to consolidate efforts under a single Budget Activity 8 (BA08) Software and Digital Technology Pilot Program. This consolidation helps accelerate integration and modernization required to address the evolving cyber threat. Prior to FY23, funding was contained in PE 0208088F Projects 677821; 677822; 677823; Operations & Maintenance (O&M) AG/SAGs 12D/11V, and Other Procurement Line Item 834320. The FY18 NDAA Sections 873/874 directed OSD to streamline software development. The Air Force Defensive Cyber Systems (AFDCS) effort is an OSD pilot initiative in which all lifecycle funding will be tracked under BA08, Software and Digital Technology Pilot Programs. Pilot programs will allow the DAF to execute modern software development practices encompassing development, procurement, modification and maintenance activities within a single appropriation. Air Force Defensive Cyber Systems (AFDCS) sustains, enhances, and integrates three defensive cyber weapon systems: Cyberspace Vulnerability Assessment/Hunter (CVA/H); Cyber Defense Analysis (CDA); and AFCERT (ACD). AFDCS provides and equips USAF operational units, predominantly Cyber Protection Teams, Mission Defense Teams, and network defenders with the capabilities required to protect USAF networks and systems. End users comprise over 2,000 operators across the country from across the Total Force - Active Duty (AD), Air National Guard (ANG), and Air Force Reserve Command(AFRC). AFDCS coordinates and executes resources needed to assess, analyze, and respond to Air Force network security incidents, intrusive activity, malicious logic (i.e., viruses) and vulnerabilities. AFDCS provides continuous monitoring and defense of Cybersecurity Service Provider (CSSP) assigned to the Department of Defense (DoD), AF classified, and unclassified computer networks. AFDCS conducts defensive cyberspace operations by monitoring, collecting, analyzing, and reporting on sensitive information released from friendly unclassified systems, such as computer networks, telephones, email, and USAF websites. AFDCS conducts vulnerability assessments, network intrusion analysis, systems vulnerability analysis, and protects against the advanced persistent threat through fielded Hunter teams. Hunter teams provide worldwide defensive cyberspace operations on AF classified and unclassified networks. This program element may include necessary civilian pay expenses required to manage, execute, and deliver weapon system capability. The use of such programs funds would be in addition to the civilian pay expenses budgeted in program element 0605827F, 0605828F, 0605829F, 0605832F, 0605833F, 0605898F, 0606398F. In PY $0.103M was expended for civilian pay expenses in this program element and in CY $0.228M is forecasted for civilian pay expenses in this program element. This program is in Budget Activity 7, Operational System Development because this budget activity includes development efforts to upgrade systems that have been fielded or have received approval for full rate production and anticipate production funding in the current or subsequent fiscal year.

Document Details

Document Type

R2 Budgetary Justification

Publication Date

Oct 01, 2023

Source ID

0208088F_7_3600_PB_2023

Change Summary Explanation

The FY 2022 President's Budget submittal did not reflect FY 2023 through FY 2026 funding. Therefore, an explanation of the change between the two budget positions for FY2023 cannot be made in a relevant manner. FY23, PE 0208088F, BPAC 677821, BPAC 677822, BPAC 677823, Transfer to PE 0308605F Air Force Defensive Cyber Systems (AFDCS), Project Number 682001, AFDCS Continuous Capability Development, to participate in the DoD's Software & Digital Technology Pilot Program.

Service Agency Name

Air Force

Entities

Tags

Related Documents

• Child Project: Computer Security RDTE: Firestarter
• Child Accomplishment: Cyber Forensic Tools & Methodologies
• Child Accomplishment: Cyber Threat Recognition
• Child Accomplishment: Cyber Threat Attribution & Mitigation
• Child Accomplishment: Transition of Cyber and Information Assurance Technologies
• Child Cost Item: 6e14f9bbf556037fb4809677c17caf66
• Child Cost Item: 5c2b52934efc25bc9e6a1c8e0b7e74ce
• Child Cost Item: ac3b14fb6742c69d843487dd2461802a
• Child Cost Item: 1486ada3f66616959e3d4149e7e1dfc2
• Child Project: Cyberspace Vulnerability Assessment
• Child Accomplishment: Cyber Threat Mitigation
• Child Accomplishment: Defensive Next Generation Development
• Child Accomplishment: Test & Evaluation Description: Test and Evaluation
• Child Cost Item: a67766537bd8ce5e9b3c0e4aaaa37cc0
• Child Cost Item: 2c044d1b79474a045653b3d96a9f5cf2
• Child Cost Item: 724976eecea972749948934558c81bf8
• Child Cost Item: b415217bf8760d68b3ef738de1a06040
• Child Cost Item: 76e7c789da5fd258b33ccf5c586e2304
• Child Cost Item: 39684b3d44eebbe2c762bccffd72ed8d
• Child Cost Item: d7b0c13846b0954a143978149eed04ba
• Child Cost Item: b897d39f3c5a7812364f2cb619d9c26c
• Child Cost Item: ac07b99f31ac54c99df1652b8db4428e
• Child Project: Cyber Defense Analysis
• Child Accomplishment: Cyber Defense Analysis
• Child Cost Item: 1724194c3240e291519e12eab4dd0174
• Child Project: AFCERT
• Child Accomplishment: Cyberspace Defense Development
• Child Cost Item: 80ecc20f096f60f35612f524e0574e2a