Information Sys Security Program

Abstract

The Information Systems Security Program (ISSP) ensures the protection of Navy and Navy hosted joint telecommunication and Information Technology (IT) systems from cyber exploitation and attack. The ISSP extends cybersecurity to ensure confidentiality, integrity, and availability of these systems and content processed, stored, or transmitted therein by performing the acquisition, modernization and sustainment of cybersecurity platforms and systems; cyberspace operations include both defensive and offensive measures, which preserve the ability to protect data, networks, net-centric capabilities, and other designated systems while projecting power by the application of force in or through cyberspace. The ISSP includes the protection of the Navy's National Security Systems (NSS). The ISSP must be rapid, predictive, adaptive, and tightly coupled to cyberspace technology. The ISSP provides cybersecurity systems and infrastructure based on mission impacts, cybersecurity threats, information criticality, vulnerabilities, and required defensive countermeasure capabilities. The ISSP focuses on efforts that address the risk management of cyberspace, which provides capabilities to protect, detect, restore and respond. The ISSP provides the Navy with the following cybersecurity elements: (1) defense of NSS, including other mission requirements (details held at a higher classification), naval weapons systems, critical naval infrastructure for Command, Control, Communications, Computers, & Intelligence (C4I) afloat and ashore networks, joint time and navigation systems, and industrial control systems, using modern cryptographic solutions and cyber security tools; (2) technologies for the Navy's Computer Network Defense (CND) service provider that accelerates the Navy's ability to prevent, constrain, and mitigate cyber attacks and critical vulnerabilities; (3) Navy Cyber Situational Awareness (NCSA) technologies that provides the operational context for cyber threat intelligence and Situational Awareness (SA), from external boundaries to tactical edge infrastructures; (4) assurance of the Navy's Cryptography (Crypto) telecommunications infrastructure and the wireless spectrum; (5) sensing cyber threats across all Navy ashore and afloat networks to expand the capabilities of monitoring, assessing, and detecting adversary activities across multiple enclaves through the collection of tools in SHARKCAGE; (6) assurance of joint-user cyberspace domains, using a Defense-In-Depth (DiD) security architecture and its alignment with the Joint Information Environment (JIE)/Joint Regional Security Stack (JRSS); (7) assurance technologies, including Key Management (KM) and Public Key Infrastructure (PKI).

Open PDF

Document Details

Document Type
R2 Budgetary Justification
Publication Date
Oct 01, 2023
Source ID
0303140N_7_1319_PB_2023
Change Summary Explanation
TECHNICAL: Key Management (KM): - Capability Increment (CI)-2 Spiral 2 Full Deployment Decision (FDD) renamed to CI-2 Maintenance Revision (MR)-2 Milestone FDD. SCHEDULE: Navy Cryptography (Crypto): - All KGV-11M milestones shifted due to change in developmental contract award schedule; no impact to programmatic schedule. - KGV-11M NSA Certification 4QFY21 due to NSA and COVID-19 delays - Advanced Cryptographic Capability (ACC) schedule updates are a result of a change in NSA software release date. - KGV-11M Development and Product Testing extended into 4QFY21 (extension due to COVID-19 schedule delays). - KGV-11M Full Rate Production shifted to 1QFY22 due to NSA and COVID-19 delays - Added KGV-11M SVT 2QFY21. - ACC Deliveries did not start in 4QFY19 due to an NSA schedule slip. NSA fielding decision for Wave 1 devices was received March 2020. ACC Wave 1 device deliveries started in 3QFY20. Wave 2/3 NSA certification was in 2QFY21. Wave 2/3 NSA fielding decision was received in 1QFY22. Key Management (KM): - CI-3 Spiral 3 Spin 1 Milestone Full Rate Production Decision (FRPD)/Fielding Decision (FD) shifted from Q4FY25 to Q1FY24 in accordance with NSA schedule. NSA reassessed the Technical Requirements Package to include CI-3 as a result of Department of Defense Chief Information Officer (DODCIO) guidance to address Tier 1 updates in CI-3, resulting in additional scheduling delays. - CI-3 Spiral 3 Spin 1 Development, Integration and Test completion shifted from Q4FY21 to Q4FY22 in accordance with NSA schedule - CI-3 Spiral 3 Spin 2 Development, Integration and Test start shifted from Q1FY21 to Q3FY21 in accordance with NSA schedule. - Key Management Infrastructure (KMI) Tech Refresh initial delivery shifted from Q1FY21 to Q4FY21 in accordance with NSA schedule. - Key Management Infrastructure (KMI) Tech Refresh completion shifted from Q2FY26 to Q4FY27 in accordance with NSA schedule. FUNDING: Overall FY23 funding has a net increase of $0.441M in subprojects in the line. The most significant funding change is in the Computer Network Defense (CND) subproject which increases by $0.644M due to the commencement of the CND NCDOC COOP development efforts. --- FY 2023 funding increase reflects the fact that the FY 2022 President’s Budget request did not include out-year funding.
Service Agency Name
Navy

Entities

Organizations

  • United States Navy

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Command And Control
  • Command And Control Systems
  • Computer Network Security
  • Computer Networks
  • Computer Security Techniques
  • Cross Domain
  • Cyber Defense Techniques
  • Cyber Protection
  • Cyberattacks
  • Cybersecurity
  • Cyberspace Operations
  • Information Systems
  • Information Warfare
  • National Security
  • Situational Awareness
  • Systems Engineering
  • Test And Evaluation

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.
  • Maritime and Naval Warfare Studies

Technology Areas

  • Cyber
  • Fully Networked C3
  • Fully Networked C3 - Command and Control

Related Documents