Communications Security R&D

Abstract

The Information Systems Security Program (ISSP) Research Development Test & Evaluation (RDT&E) efforts extend our cybersecurity and resiliency, provide Defensive Cyberspace Operations (DCO), and cross domain solutions to protect data, Department of Defense information networks (DoDIN), net-centric operations, the forward deployed, and other designated systems in order to protect cyberspace and critical warfighting capabilities. This project includes a rapidly evolving design and application engineering effort to modernize cryptographic equipment and ancillaries with state-of-the-art replacements to counter evolving and increasingly sophisticated threats. Communications Security (COMSEC) and Transmission Security (TRANSEC) are evolving from stand-alone, dedicated devices to embedded modules incorporating National Security Agency (NSA) approved cryptographic engines, loaded with the certified algorithms and keys, and interconnected via industry-defined interfaces. This includes the Department of Defense (DoD) Information Network (DoDIN) capability requirements document for the development of Content Based Encryption (CBE). Computer Network Defense (CND): The CND program provides cyberspace capabilities to secure the Cyber Domain. CND is a combination of hardware, software, sets of processes and protective measures that use computer networks to detect, monitor, protect, analyze and defend against network infiltrations resulting in service/network denial, degradation and disruptions. CND enables a government or military institute/organization to defend against network attacks perpetrated by malicious or adversarial computer systems or networks. Navy Cryptography (Crypto): Navy Crypto modernizes legacy cryptographic equipment which includes families of COMSEC and TRANSEC devices that are divided into crypto voice, crypto data, crypto products and associated ancillary devices. These devices provide modern cryptographic solutions to replace obsolete, legacy devices within the crypto categories. Key Management (KM): KM monitors and tracks capability verification testing, as well as designs and tests capabilities to provide a net-centric, web based architecture for the ordering, management and distribution of all cryptographic key material to support Navy users, to include integration of Intermediary Application (iApp). Public Key Infrastructure (PKI): The DoD PKI program, under the authority of the Under Secretary of Defense for Acquisition, Technology, and Logistics (USD AT&L), develops and tests PKI equipment and is responsible for meeting statutory and regulatory requirements for the DoD PKI program. The Navy PKI program tests and implements products for afloat and shore non-Navy Marine Corps Intranet (NMCI) networks and institutionalizes Identity and Access Management (IdAM) so that person and non-person entities can securely access all authorized DoD resources. SHARKCAGE: SHARKCAGE is a global, federated DCO enclave consisting of shore sensor nodes, DCO analysis workbenches, and analytic nodes. Utilizing one-way passive taps in a protected, isolated, classified environment, SHARKCAGE consolidates cyber event data from multiple platforms and networks, providing Navy DCO forces with a shared environment and common platform for integrated workflow, collaboration, and analysis. SHARKCAGE efficiently detects, correlates, and analyzes nation and non-nation state attacks against maritime Navy networks and the Naval Networking Environment (NNE). Navy Cyber Situational Awareness (NCSA): NCSA is a command and control infrastructure that provides Navy commanders with timely, trusted, and comprehensive Situational Awareness (SA) of the cyberspace domain to include tailored, near real-time visualization of network health, vulnerabilities, and operational readiness through the correlation of data from multiple sources. NCSA combines asset data, baseline configuration data, and real-time threat data - critical for defending a fully-interconnected network infrastructure. NCSA enables early threat detection and timely decision making. Cybersecurity Services: Cybersecurity Services develop cyber architecture and provides cybersecurity engineering for the DoD and Department of the Navy (DoN) cybersecurity interests based on the requirements prioritized by Fleet Cyber Command/Commander Tenth Fleet (FCC/C10F). Cybersecurity Services transitions new technologies to address current Navy cybersecurity challenges. The ISSP focuses on efforts that address the risk management of cyberspace, which provides capabilities to protect, detect, restore and respond. The ISSP provides the Navy with the following cybersecurity elements: (1) defense of National Security Systems and Information (NSSI), including the Nuclear Command, Control, and Communications, Navy (NC3-N) system, naval weapons systems, critical naval infrastructure for Command, Control, Communications, Computers, & Intelligence (C4I) afloat and shore networks, joint time and navigation systems, and industrial control systems, using modern cryptographic solutions and cyber security tools; (2) technologies supporting the Navy's CND service provider that will accelerate the Navy's ability to prevent, constrain, and mitigate cyber attacks and critical vulnerabilities; (3) NCSA technologies that will provide greatly improved cyber threat intelligence and situational awareness, from external boundaries to tactical edge infrastructures; (4) assurance of the Navy's Crypto telecommunications infrastructure and the wireless spectrum; (5) sensing cyber threats across all Navy shore and afloat networks to reduce the complexities of monitoring, assessing, and detecting adversary activities across multiple enclaves through the collection of tools in SHARKCAGE; (6) alignment to Navy's Insider Threat program; (7) assurance of joint-user cyberspace domains, using a Defense-In-Depth (DiD) security architecture and its alignment with the Joint Information Environment (JIE)/Joint Regional Security Stack (JRSS); (8) assurance technologies, including KM and PKI. FY18 increase aligns to the following capabilities in support of National Defense due to recent cybersecurity threats: (1) Modernize Navy Cryptography common software for Transmission Security (TRANSEC), including the KGV-11M crypto core, based on the THORNTON TRANSEC Algorithm Modernization (TTAM). Specification algorithm modernization is mandated by Chairman of the Joint Chiefs of Staff Instruction (CJCSN) 6510 to meet mandated National Security Agency (NSA) cease key dates. The TRANSEC algorithm modernization mandate protects critical UHF circuits from unauthorized access, spoofing, and denial of service. (2) Accelerate SHARKCAGE development efforts to provide DCO forces with the ability to detect adversary activities and analyze cyber attacks against Navy networks via protected, isolated networks, and integrate intelligence and Navy data to assess potential cyber threats. DCO are passive and active cyberspace defense activities that allow us to outmaneuver an adversary. SHARKCAGE will provide the capability to analyze active cyber threats and take actions to contain/stop threat activities. The data that is collected and analyzed via SHARKCAGE will be presented and visualized via the NCSA capability. (3) Accelerate NCSA development activities that provide Navy forces near real-time cyber risk and readiness information of Navy networks and their associated mission impacts across the Navy enterprise as an enabler of assured Command and Control (C2). NCSA will also be able to receive cyber threat analysis from SHARKCAGE. As a result, operational level of war cyber situational awareness will be provided to FCC and Navy Geographic Maritime Operations Centers (MOC) through visualization capabilities via web-accessible cyber Common Operational Pictures (COP) established through the correlation of relevant cyber data sources; combining asset data, baseline configuration data, event data, and real-time threat data critical for defending Navy networks and Navy network infrastructure.

Document Details

Document Type

Project

Publication Date

Oct 01, 2018

Source ID

0734_0303140N_7_1319_PB_2018

Tags

Related Documents

• Root: Information Sys Security Program
• Child Accomplishment: Computer Network Defense (CND)
• Child Accomplishment: Navy Cryptography (Crypto)
• Child Accomplishment: Key Management (KM)
• Child Accomplishment: Public Key Infrastructure (PKI)
• Child Accomplishment: SHARKCAGE
• Child Accomplishment: Navy Cyber Situational Awareness (NCSA)
• Child Accomplishment: Cybersecurity Services
• Child Cost Item: 0be65a3f824f45bbbfd69c588f98fdd8
• Child Cost Item: 463dbbdeb44a05353b547cf5337bd244
• Child Cost Item: 9fd4e3fbe1eea8647f2201939af93e95
• Child Cost Item: 78ff53b9e490009b22555cb50285f5a7
• Child Cost Item: 70f2f01b0c2f38e839a737b15ca73687
• Child Cost Item: 1552860b78a2f0db704841bd631610e5
• Child Cost Item: 8aca1038ec5f8cfc66ba0e164e5b477a
• Child Cost Item: 4b61336acbd1e0573f6b5c2b7deb65fe
• Child Cost Item: 7e6d1aa2a3931c42363829b98bf0def5
• Child Cost Item: a42b9ba2c09e13d4d71189259c1b140f
• Child Cost Item: f48a9abff0fe8f667d9d1e5abd1dd812
• Child Cost Item: ef45b527a53a10ca0e2b3babb4b87b2b
• Child Cost Item: d9c48923bbe4c218f50b451c9082a1f3
• Child Cost Item: f91d1d9170bb792e68571d8bafd26bc5
• Child Cost Item: 1122a92fd4c73c0402308b3dd58a3375
• Child Cost Item: 79c81f91c88178a759b6427d359ff43d
• Child Cost Item: 52a8b1e4b13a59f546d2b9eeaf9aad59
• Child Cost Item: e6ff46587e44f53ecea6b2cbefacdb7e
• Child Cost Item: b378fdbb2f0cd82c05804d55d8817279
• Child Cost Item: 580153c9942904e7739b6174a704188a
• Child Cost Item: e750aa5faf87d21b58f76b051a78f648
• Child Cost Item: 7cd58727e69a08dd4debbae573ba032d
• Child Cost Item: 067a5c14554845af5ae22856e176e161
• Child Cost Item: c538f09f10dbb7fe881a3b84e5e1a3eb
• Child Cost Item: 27cf6a3d5edf3b6bf6dd848f201ffd5f
• Child Cost Item: ef1ccd225249d25d5c9bde765ae470ae
• Child Cost Item: 02918a16d1a7fc7a717125f6dac3def7