Communications Security (COMSEC) Equipment

Abstract

Information Assurance Development supports the implementation of the National Security Agency (NSA) developed Communications Security (COMSEC) technologies within the Army by providing COMSEC system capabilities through encryption, trusted software or standard operating procedures, and integrating these mechanisms into specific systems in support of securing the Army Tactical and Enterprise Networks. This entails architecture studies, system integration and testing, developing installation kits, and certification and accreditation of Automation Information Systems. The program assesses, develops and integrates Cyber Security (CS)/COMSEC tools (hardware and software) which provide protection for fixed infrastructure post, camp and station networks as well as tactical networks. The cited work is consistent with Strategic Planning Guidance and the Army Modernization and Strategy Plan. Information Assurance Development funding implements and establishes functional and technical boundaries of cryptographic, key management and Information Assurance (IA) capabilities in coordination with the NSA, the Defense Information Systems Agency (DISA), and Joint Services, to secure National Security Systems (NSS), and National Security Information (NSI). Technical evaluations assess the security, operational effectiveness and network interoperability of advanced concept technologies to develop policies, standards, and fundamental building blocks for Army COMSEC capabilities that reduce the risk of future material solutions that could underperform and disrupt classified operations. Develop and publish the COMSEC Implementation Planning Guidance to identify, standardize, and govern the insertion of CS capabilities to bridge operational gaps and support the Department of Defense (DoD) and NSA mandated requirements to enhance network capacity while providing for secure information exchange of voice, video, and data in accordance with the Army Network Campaign Plan. This will be accomplished by interoperability evaluation, standards testing, and CS, System of System Network Vulnerability Assessments (SoS NVA) for Army Capability Sets for CS/COMSEC capabilities that provide protections for tactical and fixed infrastructure post, camp, and station networks. The Defensive Cyberspace Operations (DCO) program provides initial capabilities that enable passive and active cyberspace defense operations to preserve friendly cyberspace capabilities and protect data, networks, net-centric capabilities, and other designated systems. Big Data Pilot provides an advanced analytics capability capable of ingesting structured, semi-structured, and unstructured data from multiple data sources (e.g., Joint Regional Security Stacks (JRSS), intrusion detection systems, intrusion prevention systems, network device log files, trouble tickets, firewalls, proxies, web and applications server log files, etc) and proves situational awareness of cyberspace battlefield. It provides the computer network defense provider with common analytic platform which informs and reduces risk associated with future material solutions and forms a blueprint for future Big Data Analytics. Big Data (analysis-of-all DoD Information Network sensor data) provides two optimized and accredited clusters deployed in support of JRSS and Defense Research and Engineering Network (DREN) with a tools suite accessible to Cyber Mission Forces via secure remote access. The Army's DCO activities are a construct of active cyberspace defenses which provide synchronized, real-time capability to discover, detect, analyze, and mitigate threats to and vulnerability of DoD networks and systems. The Army Key Management Infrastructure (AKMI) is the Army's implementation of the NSA KMI ACAT IAM program, automating the functions of COMSEC electronic key management, control, planning, and distribution. AKMI supports the Army's ability to communicate and distribute Cryptographic data on the Army's tactical and strategic networks by limiting adversarial access to, and reducing the vulnerability of, Army Command, Control, Communications, Computers, Intelligence (C4I) systems. The AKMI System of Systems (SoS) systems components are the Management Client (MGC), Automated Communications Engineering Software (ACES) and Next Generation Load Device Family of fill devices. The NSA Key Management Infrastructure (KMI) Program replaced NSA EKMS program. AKMI has replaced Army Key Management System. The transition from AKMS to AKMI started in FY12. The AKMS System of Systems (SoS) systems components are the Local COMSEC Management Software (LCMS), Automated Communications Engineering Software (ACES) and Simple Key Loader (SKL). The Army COMSEC program supports using NSA developed COMSEC technologies within the Army providing encryption, trusted software, or standard operating procedures, and integrating these mechanisms into specified systems in support of securing the Army network (which is made up of tactical and enterprise networks). This entails architecture studies, system integration and testing, developing installation kits, and certification and accreditation of Automation Information Systems. The program assesses, develops and integrates emerging COMSEC tools (hardware and software) which provide protection for fixed infrastructure post, camp, and station networks as well as tactical networks. The cited work is consistent with Strategic Planning Guidance and the Army Modernization and Strategy Plan. Embedded Cryptographic Modernization Initiative (ECMI) is an upgrade activity that will ensure Army radios remain secure by operating with modern cryptographic algorithms. Tactical radios using legacy embedded cryptographic systems will no longer be able to communicate securely after cease key dates documented in the Chairman of the Joint Chiefs Staff instruction (CJCSI) 6510. In order to ensure Warfighters continue to have secured communications (i.e., encrypted data and voice), Army tactical radios are required to support modern cryptographic capabilities by implementing modern algorithms. If cease key dates are not met, the Army will be forced to communicate at risk. User activity monitoring (UAM) automation/analytics will provide technical capability to enhance Army UAM analysis effectiveness and efficiency. The UAM mission is to observe and record the actions and activities of an individual, at any time, on any device accessing Army information on classified networks in order to detect insider threats and to support authorized investigations. Army UAM is a component of the Army Insider Threat (InT) Program. Army's InT Program and UAM are conducted in accordance with the National Defense Authorization Act for Fiscal Year 2012, section 922., Insider Threat Detection; Presidential Memorandum, National Insider Threat Policy and Minimum Standards for Executive Branch Insider Threat Programs, dated 21 November 2012; Executive Order 13587, Structural Reforms to Improve the Security of Classified Networks and the Responsible Sharing and Safeguarding of Classified Information, (Reference b) dated 7 October 2011, and Army Directive 2013-18 (Army Insider Threat Program), 31 July 2013. Innovative enhancements are required to improve UAM analysis productivity, data visualization, and workflow management. The analysis productivity objective is to develop and implement user behavior models that use UAM and other network data to identify anomalous user behavior over time, and to integrated new data sources into the UAM analytical data store and processing system. Data visualization advances will present UAM analysts behavior model processing results in an intuitive format that reduce the time required to review the results. Workflow management improvements will add new capabilities to the UAM workflow management system with the objective of enhancing analysis reporting productivity and metrics collection.

Document Details

Document Type

R2 Budgetary Justification

Publication Date

Oct 01, 2019

Source ID

0303140A_7_2040_PB_2019

Change Summary Explanation

FY 2017 decrease of $1.388 million for FFRDC and SBIR/STTR adjustments. FY 2019 decrease of $21.475 million based on requirement adjustments.

Service Agency Name

Army

Entities

Tags

Related Documents

• Child Project: Information Assurance Development
• Child Accomplishment: Assessing emerging COMSEC hardware and software systems and products (PL Net E)
• Child Accomplishment: Oversight and implementation guidance of emerging Cryptographic and CS capabilities to ensure interoperability to maintain compliance with DoD, NSA, and Army policies and regulations. (CIO/G6)
• Child Cost Item: 92f7b4982d031591e9695794a282a548
• Child Cost Item: 595bf35e97a49c53c4865b0173a3f93e
• Child Cost Item: ba2285f7ea4bea7ea4c460592ca29f33
• Child Cost Item: 69f491d665f2f1b06e954855784ee367
• Child Cost Item: bc4551f6cfedcefcd1192499bbc8b329
• Child Cost Item: d40fbcdc39b03ee5f864cbbce6fbd248
• Child Cost Item: bd5ce47e2f55c4cb70d70295fba80e3e
• Child Cost Item: 48b47a726d422c9e7e1e346140f69b13
• Child Cost Item: ad0ff36bf75d08ce6881b3bbc10d9e56
• Child Cost Item: 91e00705d99e7f3ca062de39a2ae940d
• Child Cost Item: e361f28c5443368a0aedab5a821e96a8
• Child Cost Item: 633f3650a0826abfce1adefa8faf8f13
• Child Project: Key Management Infrastructure (KMI)
• Child Accomplishment: Key Management Infrastructure (KMI) Awareness (RESCUE / KOV-21 Replacement Effort)
• Child Cost Item: 2ec281a20cd277c0dcd89ca24ee1c350
• Child Cost Item: f3e4bea815b1fb0190d41bdaeb87ac7f
• Child Cost Item: 386379d9586f79b90f248d47bb9f1a91
• Child Project: Crypto Modernization (Crypto Mod)
• Child Accomplishment: VINSON/ANDVT (Advanced Narrowband Digital Voice Terminal) Cryptograph Modernization (VACM) program
• Child Accomplishment: Cryptographic Systems Test and Evaluation
• Child Accomplishment: High Assurance Internet Protocol Encryption (HAIPE) extension manager
• Child Accomplishment: Embedded Cryptographic Modernization Initiative (ECMI)
• Child Cost Item: ad80cfeede9ae3b20a0d66ddb3ac97fd
• Child Cost Item: a72e0651f67c733ed005222fe9091d4b
• Child Cost Item: 2203f559be2b0d3aaf73b588e4fd246a
• Child Cost Item: b49c7d3629440be7a0a2642c59a9d314
• Child Cost Item: 26fd5e3c6a4404af6e3a83096e2255f2
• Child Cost Item: f4a50d5054319c400a0e0876ed8abf54
• Child Project: Embedded Crypto Modernization (CRYPTO MOD)
• Child Accomplishment: Embedded Cryptographic Modernization Initiative (ECMI) Development Contracts
• Child Cost Item: 6571dfd1f2a11e7442b2d48e20d04211
• Child Cost Item: 3ea3c6df0a6a57d7220952c4c8897806
• Child Cost Item: 441be1f9a5229b56dd7de4c1d2a8b45c
• Child Cost Item: 49dc15c10940c83da762023ee0982ada
• Child Project: Unit Activity Monitoring (UAM)
• Child Accomplishment: Unit Activity Monitoring
• Child Cost Item: a6086a7c45ea11f37f2c634ea8f71b54