Information Sys Security Program

Abstract

The Information Systems Security Program (ISSP) ensures the protection of Navy and joint cyberspace systems from exploitation and attack through the implementation of statutory and regulatory requirements. Cyberspace systems include wired and wireless telecommunications systems, Information Technology (IT) systems, and the content processed, stored, or transmitted therein. The ISSP includes the protection of the Navy's National Security Systems and Information (NSSI). The ISSP must be rapid, predictive, adaptive, and tightly coupled to cyberspace technology. Through modeling and simulation of Department of Defense (DoD) and commercial cyberspace systems evolution, the ISSP provides architectures, products, and services based on mission impacts, information criticality, threats, vulnerabilities, and required defensive countermeasure capabilities. FY16 will focus on efforts that address the risk management of cyberspace, which includes the capabilities to protect, detect, restore, and respond. The ISSP provides the Navy with the following cybersecurity elements: (1) defense of NSSI, including the Nuclear Command, Control, and Communications (NC3) system, naval weapons systems, critical naval infrastructure, joint time and navigation systems, and industrial control systems; (2) assured separation of information levels and user communities, including allied, coalition, non-Governmental, Defense Industrial Base, and other public partners; (3) technologies supporting the Navy's Computer Network Defense (CND) service provider operations to include Task Force Cyber Awakening (TFCA) initiatives, specifically Navy Cyber Situational Awareness (NCSA) and Operation Rolling Tide (ORT)/Cyber Remediation capabilities that will accelerate the Navy's ability to prevent, constrain, and mitigate cyber-attacks and critical vulnerabilities; (4) assurance of the Navy's telecommunications infrastructure and the wireless spectrum; (5) assurance of joint-user cyberspace domains, using a defense-in-depth architecture; (6) assurance of the critical computing base and information store; (7) assurance of mobile and cloud computing; and (8) supporting assurance technologies, including the Public Key Infrastructure (PKI) and Key Management (KM).

Document Details

Document Type

R2 Budgetary Justification

Publication Date

Oct 01, 2016

Source ID

0303140N_7_1319_PB_2016

Change Summary Explanation

The FY 2016 funding request was reduced by $3.0 million to account for the availability of prior year execution balances. Technical: Computer Network Defense (CND): - Additional capabilities to include network vulnerability remediation, security compliance reporting and mapping of Navy networks in order to accelerate advanced Task Force Cyber Awakening (TFCA) initiatives, specifically Navy Cyber Situational Awareness (NCSA) and Operation Rolling Tide (ORT)/Cyber Remediation Navy Cryptography (Crypto): - Intermediary Application (iApp) requirement will be met by Key Management iApp development initiative Key Management (KM): - Operational Test (OT) events changed to Operational Assessment (OA), since Full Rate Production (FRP) follow on tests are informal test events and do not require formal evaluations. - Capability Increment 2 (CI-2) Spiral 2 Spin 1 Full Rate Fielding Decision (FRFD) event changed to a Fielding Decision (FD) since CI-2 FRFD completed in FY13 - Next Generation Fill Device was removed. Requirement will be met by Simple Key Loader (SKL) follow-on efforts. Information Assurance (IA) / Cybersecurity: - Replaced the term "IA" with "Cybersecurity" per Department of Defense Instruction (DoDI) 8500.01 March 14, 2014 update Schedule: Computer Network Defense (CND): - All CND builds were accelerated to include TCFA/NCSA/ORT/Cyber Remediation capabilities - All CND build's "Development, Integration & Test" phase completion time increased from 5 to 6 quarters in order to incorporate new cyber remediation capabilities Navy Cryptography (Crypto): - VINSON/Advanced Narrowband Digital Voice Terminal (ANDVT) Cryptographic Modernization (VACM) Milestone C (MS C) shifted from 2QFY14 to 3QFY14 to reflect actual date milestone was achieved by Air Force (AF). Initial Operational Test and Evaluation (IOT&E) start shifted from 4QFY14 to 1QFY15, Full Rate Production (FRP) decision shifted from 2QFY15 to 3QFY15, and Initial Operational Capability (IOC) shifted from 2QFY16 to 3QFY16, due to (1) QTR shift in MS C. - Link 22 (L22) Technical Readiness Review (TRR) 2 shifted from 3QFY14 to 2QFY15, L22 Full Development Delivery shifted from 4QFY14 to 2QFY15, and L22 Production Readiness Review (PRR) shifted from 4QFY14 to 2QFY15, due to changes in vendor's schedule - Additional Transmission Security (TRANSEC) study and analysis continued to 2QFY15 and initiation of Modern TRANSEC development shifted from 4QFY14 to 3QFY15, due to National Security Agency (NSA) directives Key Management (KM): - Tactical Key Loader (TKL) Full Operational Capability (FOC) accelerated from 2QFY15 to 3QFY14 due to actual date FOC achieved - CI-2 Spiral 2/Spin 1 Development Test (DT) shifted from 2QFY14 to 3QFY14 and CI-2 Spiral 2/Spin 1 OA shifted from 3QFY14 to 4QFY14, due to actual date Full Rate Field Decision (FRFD) achieved - CI-2 Spiral 2/Spin 1 Fielding Decision (FD) shifted from 4QFY14 to 2QFY15 and CI-2 Spiral 2/Spin 3 FD accelerated from 4QFY16 to 3QFY16, in accordance with NSA schedule - Removed Next Generation Field Device testing event. Public Key Infrastructure (PKI): - PKI R-4 removed; under $1M Funding: Computer Network Defense (CND): $7.5M increase in FY16 supports Task Force Cyber Awakening (TFCA), specifically Navy Cyber Situational Awareness (NCSA) and Operation Rolling Tide (ORT)/Cyber Remediation capabilities to include network vulnerability remediation, security compliance reporting and mapping of Navy networks in order to achieve improved network defense and security wholeness.

Service Agency Name

Navy

Entities

Tags

Related Documents

• Child Project: Communications Security R&D
• Child Accomplishment: Computer Network Defense (CND)
• Child Accomplishment: Navy Cryptography (Crypto)
• Child Accomplishment: Key Management (KM)
• Child Accomplishment: Public Key Infrastructure (PKI)
• Child Accomplishment: Cybersecurity Services
• Child Cost Item: 393b9544b0ebe764afefa0463d2889e5
• Child Cost Item: b104e1d0ee663aa8cf7550a64cc28f3d
• Child Cost Item: 775fc842d7aff7a9b2e8fd1b2359ecb8
• Child Cost Item: 9b125701209efa6e63d88a242bc4d4ce
• Child Cost Item: a7ba4f43f60924d9729fe0a6755fa855
• Child Cost Item: bd2cbc0c2abd083169a38da13d8f910b
• Child Cost Item: 69ea5fe878506a015bde854beaf5c412
• Child Cost Item: 4431d046e3061ed99885d66d49e54e6f
• Child Cost Item: 936731765792696d1b98b8a12044f0d7
• Child Cost Item: 97795401bd28abe4e98615bd57057e2b
• Child Cost Item: 6cae559399c2e9a75cc20047ae69f4c9
• Child Cost Item: 71f95f389b9c919a5de2f0db04b4bc82
• Child Cost Item: 5db545d43b0b6f170528913b9e7e59ce
• Child Cost Item: eceaf80f4e244dfcb2d33c8d4cc27850
• Child Cost Item: 718b4e579b4b00acf4d2ef698f3aec12
• Child Cost Item: 664f81721566d87d274f131847a5c885
• Child Cost Item: 0990ba7a7a90090f995584531214b3e1
• Child Cost Item: 42001c6cb3a85bd6a6ab63989863bcef
• Child Cost Item: 0d8ed8c71b0533aa58cc4639bdd9db93
• Child Cost Item: 5aa58a93f2195eef8c83a01d2643dfbf
• Child Cost Item: 03f495723b18346f6212401ce60bc074
• Child Cost Item: 5a21088746c3361e667bd71c8f008766
• Child Cost Item: 04af7e57509d61fca93ef8688b3134e0
• Child Project: Information Assurance
• Child Accomplishment: Information Assurance (IA)
• Child Cost Item: 4a59e1d545f01ac1c944c5f3dd7c7b48