Information Sys Security Program

Abstract

The Information Systems Security Program (ISSP) ensures the protection of Navy and Navy hosted joint telecommunication and Information Technology (IT) systems from cyber exploitation and attack. The ISSP extends cybersecurity to ensure confidentiality, integrity, and availability of these systems and content processed, stored, or transmitted therein by performing the acquisition, modernization and sustainment of cybersecurity platforms and systems; cyberspace operations include both defensive and offensive measures, which preserve the ability to protect data, networks, net-centric capabilities, and other designated systems while projecting power by the application of force in or through cyberspace. The ISSP includes the protection of the Navy's National Security Systems (NSS). The ISSP must be rapid, predictive, adaptive, and tightly coupled to cyberspace technology. The ISSP provides cybersecurity systems and infrastructure based on mission impacts, cybersecurity threats, information criticality, vulnerabilities, and required defensive countermeasure capabilities. The ISSP focuses on efforts that address the risk management of cyberspace, which provides capabilities to protect, detect, restore and respond. The ISSP provides the Navy with the following cybersecurity elements: (1) defense of NSS, including the Nuclear Command, Control, and Communications, Navy (NC3-N) system, naval weapons systems, critical naval infrastructure for Command, Control, Communications, Computers, & Intelligence (C4I) afloat and shore networks, joint time and navigation systems, and industrial control systems, using modern cryptographic solutions and cyber security tools; (2) technologies for the Navy's Computer Network Defense (CND) service provider that accelerates the Navy's ability to prevent, constrain, and mitigate cyber attacks and critical vulnerabilities; (3) Navy Cyber Situational Awareness (NCSA) technologies that provides the operational context for cyber threat intelligence and Situational Awareness (SA), from external boundaries to tactical edge infrastructures; (4) assurance of the Navy's Cryptography (Crypto) telecommunications infrastructure and the wireless spectrum; (5) sensing cyber threats across all Navy shore and afloat networks to expand the capabilities of monitoring, assessing, and detecting adversary activities across multiple enclaves through the collection of tools in SHARKCAGE; (6) assurance of joint-user cyberspace domains, using a Defense-In-Depth (DiD) security architecture and its alignment with the Joint Information Environment (JIE)/Joint Regional Security Stack (JRSS); (7) assurance technologies, including Key Management (KM) and Public Key Infrastructure (PKI).

Document Details

Document Type

R2 Budgetary Justification

Publication Date

Oct 01, 2021

Source ID

0303140N_7_1319_PB_2021

Change Summary Explanation

TECHNICAL: Key Management (KM): - Capability Increment (CI)-2 Spiral 2 Full Deployment Decision (FDD) renamed to CI-2 Maintenance Revision (MR)-2 Milestone FDD. SCHEDULE: Computer Network Defense (CND): - Starting in FY21, schedule updated to reflect CND Inc 2's migration from specific "capability builds" to a continuous capability enhancement strategy. This strategy specifically addresses end of life and end of support components. The Cybersecurity tools fielded in the Fleet are commercial off-the-shelf (COTS) products that are regularly improved with the latest technologies. CND designs, integrates, tests, and fields these products to protect the Navy's tactical networks from the evolving cyber threat. Navy Cryptography (Crypto): - All KGV-11M milestones shifted due to change in developmental contract award schedule; no impact to programmatic schedule. Advanced Cryptographic Capability (ACC) schedule updates are a result of a change in NSA software release date. - Added ACC NSA Software Certification to Q3FY19. Key Management (KM): - CI-3 Spiral 3 Spin 1 Milestone Full Rate Production Decision (FRPD)/Fielding Decision (FD) shifted from Q3FY21 to Q1FY23 in accordance with NSA schedule. - CI-3 Spiral 3 Spin 2 Development, Integration and Test start shifted from Q1FY20 to Q1FY21 in accordance with NSA schedule. - Key Management Infrastructure (KMI) Tech Refresh initial delivery shifted from Q3FY20 to Q1FY21 in accordance with NSA schedule. SHARKCAGE - Rapid Deployment Capability (RDC) and related milestone completion shifted from Q2FY19 to Q3FY19 to allow for the development of additional capabilities per the RDC Continuation Acquisition Decision Memorandum. Navy Cyber Situational Awareness (NCSA) - Rapid Deployment Capability (RDC) completion and related milestones shifted from Q2FY19 to Q1FY20 due to additional required software updates per the RDC Continuation Acquisition Decision Memorandum Developmental Testing results. - Limited Deployment Decision shifted from Q3FY19 to Q1FY20 in accordance with RDC milestones. FUNDING: Computer Network Defense (CND) (+$1.502M) - FY21 increase is due to Vulnerability Remediation Asset Manager (VRAM) 3.0 development efforts to replace VRAM 2.0 end-of-life, and development work to optimize VRAM for the cloud environment. Navy Cryptography (Crypto)(-$3.553M): - FY21 decrease is due to the completion of the development efforts of KGV-11M End Cryptographic Units (ECU). Key Management (KM) (+$0.214M): - FY21 increase aligns to the initial development of CI-3 Spiral 3 Spin 2 Development, Integration and Testing. Navy Cyber Situational Awareness (NCSA) (-$1.005M): - FY21 decrease reflects a realignment within NCSA from Research, Development, Test and Evaluation (RDT&E) to Operations and Maintenance, Navy (OM,N) due to a change in engineering and fielding strategy to be a predominantly software solution hosted by other planned Defensive Cyberspace Operations/ Network Operations (DCO/NETOPS) systems.

Service Agency Name

Navy

Entities

Tags

Related Documents

• Child Project: Communications Security R&D
• Child Accomplishment: Computer Network Defense (CND)
• Child Accomplishment: Navy Cryptography (Crypto)
• Child Accomplishment: Key Management (KM)
• Child Accomplishment: Public Key Infrastructure (PKI)
• Child Accomplishment: SHARKCAGE
• Child Accomplishment: Navy Cyber Situational Awareness (NCSA)
• Child Accomplishment: Cybersecurity Services
• Child Cost Item: d40649345a8a050ca61164c34d5d9dfe
• Child Cost Item: 39aba6f68f9eb361854ac8591376742f
• Child Cost Item: ea15a7abdfa4539cb03de78315065313
• Child Cost Item: 866c736a68fd4dade8cea4f2af1fd675
• Child Cost Item: 637d7d190c9f762415e0636efd8fce58
• Child Cost Item: 0631f431b5d396a9e0728dd3d40272a5
• Child Cost Item: 17efec8d1e078262c7e8df5d0021abca
• Child Cost Item: 572749e2f7572b7b24dd58199f096c45
• Child Cost Item: b64546faeb60724bc92dc8c5799fc56d
• Child Cost Item: 12c8583e4afcc414de80ef4e669bf9e5
• Child Cost Item: 679ebaf4873763ad1fb05475761114a6
• Child Cost Item: 0a48e3a5073fe4a1333e176d68fa7b86
• Child Cost Item: 1efeb44e7f53a842ad18f8fa2fa7e6fd
• Child Cost Item: f163a102898686a7c998775cf4d49a70
• Child Cost Item: 2c776f5d85990842b205d9237f57f98a
• Child Cost Item: 69a335467836317186122021f029ac56
• Child Cost Item: 79184f76c75b31b8ac0afdf81857fa70
• Child Cost Item: 6de68cb4d617724844bdd6022257b14d
• Child Cost Item: 117c17ec8011f3048c9653dde799258f
• Child Cost Item: 5d66beb3c37fdfc13977532d21ec08c3
• Child Cost Item: 14408257ef1fc2d77e1d717cd669c02b
• Child Cost Item: 4c4df27e06df189119bd3d95393c5055
• Child Cost Item: 2083d427aaed5a7fdaceda7e0b61c298
• Child Cost Item: 3dbdb09f557e7e61ab74f33c864d3d16
• Child Cost Item: 9a79e90e93de21d88cfe28ec1aa4f306
• Child Cost Item: cef1f83d6a5221cd54f93698c968faab
• Child Project: Information Assurance
• Child Accomplishment: Information Assurance (IA)
• Child Cost Item: e08fbd0c0b2dffb996c70e3fc6505140
• Child Project: Congressional Adds
• Child Cost Item: 403e2a19dbff273f41a6944737ef19bb