Information Sys Security Program

Abstract

The Information Systems Security Program (ISSP) ensures the protection of Navy and joint cyberspace systems from exploitation and attack. Cyberspace systems include wired and wireless telecommunications systems, Information Technology (IT) systems, and the content processed, stored, or transmitted therein. The ISSP includes the protection of the Navy's National Security Systems and Information (NSSI). The ISSP must be rapid, predictive, adaptive, and tightly coupled to cyberspace technology. ISSP provides architectures, products, and services based on mission impacts, information criticality, threats, vulnerabilities, and required defensive countermeasure capabilities. FY17 will focus on efforts that address the risk management of cyberspace, which includes the capabilities to protect, detect, restore, and respond. The ISSP provides the Navy with the following cybersecurity elements: (1) defense of NSSI, including the Nuclear Command, Control, and Communications (NC3) system, naval weapons systems, critical naval infrastructure for Command, Control, Communications, Computers, & Intelligence (C4I) Afloat and Shore Networks, joint time and navigation systems, and industrial control systems using modern cryptographic solutions; (2) assured separation of information levels and user communities, including allied, coalition, non-Governmental, Defense Industrial Base, and other public partners; (3) technologies supporting the Navy's Computer Network Defense (CND) service provider to include Task Force Cyber Awakening (TFCA) and Operation Rolling Tide (ORT)/Cyber Remediation capabilities that will accelerate the Navy's ability to prevent, constrain, and mitigate cyberattacks and critical vulnerabilities, as well as Navy Cyber Situational Awareness (NCSA) technologies that will provide greatly improved cyber threat intelligence and situational awareness, from external boundaries to tactical edge infrastructures; (4) assurance of the Navy's telecommunications infrastructure and the wireless spectrum; (5) SHARKCAGE provides the mechanisms to sense cyber threats across all Navy shore and afloat networks to reduce the complexities of monitoring, assessing, and detecting adversary activities across multiple enclaves (e.g. Non-secure Internet Protocol (IP) Router Network (NIPRNET), Secret Internet Protocol Router Network (SIPRNET), C4I, Combat Systems, Hull Mechanical & Electrical (HM&E), etc.); (6) assurance of joint-user cyberspace domains, using a defense-in-depth security architecture and its alignment with the Joint Regional Security Stack (JRSS); (7) assurance of the critical computing base and information store; (8) assurance of mobile and cloud computing; and (9) supporting assurance technologies, including the Public Key Infrastructure (PKI) and Key Management (KM).

Open PDF

Document Details

Document Type
R2 Budgetary Justification
Publication Date
Oct 01, 2017
Source ID
0303140N_7_1319_PB_2017
Change Summary Explanation
Technical: Computer Network Defense (CND): - Additional capabilities to provide cyber security and Navy Cyber Situational Awareness (NCSA) for the Navy's portion of the Nuclear Command and Control Communications (NC3-N) system of systems. - SHARKCAGE provides mechanisms to sense cyber threats across all Navy shore and afloat networks. Navy Cryptography (Crypto): - Advanced Cryptographic Capability (ACC) replaces legacy and combines legacy requirements with additional security enhancements. Key Management (KM): - KMI CI-3 Spiral 3 also referred to as KMI Tech Refresh. - Intermediary Application (iApp) Development and Product Testing to extend through FY21 to incorporate KMI CI-3 Spiral 3 capabilities. Schedule: Computer Network Defense (CND): - Due to the dynamic nature of cyber security CND builds were adjusted to include various Cyber Remediation capabilities to include: Operation Rolling Tide (ORT)/ Task Force Cyber Awakening (TFCA) / Navy Cyber Situational Awareness (NCSA). Navy Cryptography (Crypto): -VINSON/Advanced Narrowband Digital Voice Terminal (ANDVT) Cryptographic Modernization (VACM) Initial Operational Test and Evaluation (IOT&E) was completed in 2QFY15, Full Rate Production (FRP) decision shifted from 3QFY15 to 2QFY16 due to revised Air Force schedule. Initial Operational Capability (IOC) shifted from 3QFY16 to 4QFY16 due to revised estimated lead times from contract award to delivery. - Link 22 (L22) Technical Readiness Review (TRR) 2 was completed in 2QFY15. L22 Full Development Delivery and L22 Production Readiness Review (PRR) shifted from 2QFY15 to 4QFY15 due to changes in vendor's schedule. - Transmission Security (TRANSEC) studies and analysis continued through 4QFY16 and initiation of Modern TRANSEC development shifted from 3QFY15 to 3QFY16 to establish system of systems strategies across multiple Program of Records (PORs), due to support for Navy-wide and DoD-wide efforts. TRANSEC Development and Product Testing and Advanced Cryptographic Capability (ACC) Solutions Development and Product Tests ending 4QFY19 to meet fielding requirements for national mandates. Key Management (KM): - Key Management Infrastructure (KMI) Capability Increment-2 (CI-2) Spiral 2 Spin 1 Fielding Decision (FD) shifted from 2QFY15 to 3QFY15, to reflect actual date FD achieved. - KMI CI-2 Spiral 2/Spin 2 Developmental Testing (DT) shifted from 2QFY15 to 2QFY16, CI-2 Spiral 2/Spin 2 Operational Assessment (OA) shifted from 3QFY15 to 2QFY16, and CI-2 Spiral 2/Spin 2 FD shifted from 4QFY15 to 4QFY16, in accordance with NSA schedule. - KMI CI-2 Spiral 2/Spin 3 DT shifted from 2QFY16 to 4QFY16, CI-2 Spiral 2/Spin 3 OA shifted from 3QFY16 to 1QFY17, and CI-2 Spiral 2/Spin 3 FD shifted from 3QFY16 to 3QFY17, in accordance with NSA schedule. - KMI CI-2 Spiral 2/Spin 4 DT shifted from 4QFY16 to 2QFY17, CI-2 Spiral 2/Spin4 OA shifted from 1QFY17 to 2QFY17, CI-2 Spiral 2/Spin 4 FD shifted from 2QFY17 to 3QFY17, in accordance with NSA schedule. - KMI CI-2 Spiral 2/Spin 4 Full Operational Test and Evaluation (FOT&E) and Full Deployment Decision (FDD) included in 4QFY17, in accordance with NSA schedule. - KMI CI-3 Spiral 3 / Technical Refresh Contract Award added in 2QFY19. - Extended Intermediary Application (iApp) development effort out to FY21 to incorporate KMI CI-3 capabilities. - KMI CI-3 Spiral 3/Spin 2 OA included in 1QFY21 and FD included in 2QFY21. Funding: Computer Network Defense (CND): Increase in FY17 supports cyber security system development for the Navy's portion of the Nuclear Command and Control Communications (NC3-N) system of systems; Navy Cyber Situational Awareness (NCSA) Common Operational Picture and other analytic development for NC3-N; Development of SHARKCAGE, which provides the mechanisms to sense cyber threats across all Navy shore and afloat networks to reduce the complexities of monitoring, assessing, and detecting adversary activities across multiple enclaves. FY 2017 decrease in Information Systems Security Program RDTEN by $1.61M as required for the Department of the Navy to comply with the Bipartisan Budget Act of 2015. The FY 2017 funding request was also reduced by $0.55M to account for the availability of prior year execution balances.
Service Agency Name
Navy

Entities

Organizations

  • United States Navy

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Command And Control
  • Communication Systems
  • Computer Network Security
  • Computer Networks
  • Computer Security Techniques
  • Cross Domain
  • Cyberattacks
  • Cybersecurity
  • Cyberspace Operations
  • Data Links
  • Information Systems
  • Mobile Phones
  • Network Protocols
  • Risk Analysis
  • Systems Engineering
  • Test And Evaluation
  • Warfare

Fields of Study

  • Computer science

Readers

  • Cybersecurity.

Technology Areas

  • Cyber
  • Fully Networked C3
  • Fully Networked C3 - Command and Control

Related Documents