AF Key Management Infrastructure (AF KMI)

Abstract

The Air Force Key Management Infrastructure (AF KMI) Program consists of multiple developments supporting the AF requirements/portion of the DoD Key Management Infrastructure (KMI). (The National Security Agency [NSA] acts as the Executive Agency for the DoD KMI Program.) AF KMI, in concert with this overarching DoD KMI Program, will provide a secure and flexible capability for the electronic generation, distribution, accounting, and management of: key material and other communications security (COMSEC) materials for all DoD Command, Control, Communications, Computers, and Intelligence (C4I) and for the Services' weapon systems. KMI represents a broad-scale replacement of the current Electronic Key Management System (EKMS). The new KMI will provide capabilities that will allow networked operation in consonance with the Global Information Grid (GIG) and other DoD, fellow Service, and AF enterprise objectives. It thereby will assure a viable support infrastructure for future weapons and C4I programs to incorportate key management into their system designs. The DoD KMI will greatly improve protection of national, security-related information by substantially enhancing confidentiality, integrity, and non-repudiation characteristics over the legacy EKMS key management system. KMI will greatly accelerate the availability of crypto key materials through electronic transmission versus shipping of materials, will enhance mission responsiveness and flexibility, and will take the man "out-of-the-loop" in the distribution of crypto key materials. The AF Key Management Infrastructure (KMI) Program's R&D efforts will include: building the AF KMI architecture; defining all of its linkages; building the linkage interfaces that will allow them to communicate; and other "last mile" development (See NOTES below for detailed explanation of the "last mile" work.). Activities also include an integration laboratory and studies and analysis to support both current program planning and execution and future program planning. This project is in Budget Activity 7, Operational System Development, because it addresses the development and transition of information security, protection, and defensive capabilities and technologies. NOTES: 1. In parallel, DoD and the Services are developing a new generation of End Crypto Units (ECUs) under the Joint Crypto Modernization Initiative that will be capable of direct interaction with the KMI. (PE0303140F, Project 675100, Cryptographic Modernization, supports this initiative). In some cases these new ECUs, although needing to be supported by KMI, will not be KMI network-connected. "Last mile" transport of black (aka benign, or encrypted) and red (unencrypted) keying material from a KMI client to a new generation ECU or current legacy ECU will need to be handled in the early years by data transfer devices. CPSG and NSA are exploring new key delivery methods for KMI CI-3: "Mobile" clients that can be brought out to platforms and remote ECUs; a new COMSEC material loader that will works with KMI and incorporates netcentricity; and a method called "over-the-air-keying (OTAK)" to ultimately replace the current data transfer devices. 2. Last Mile Development - F-22 Concept Refinement generated the F-22 SKL wireless initiative. 3. "Web-based Key Transfer to Aircraft" project was renamed "Black Data Distribution System" to better define the project and end product. 4. "Single point keying capability development" was renamed "Single point fill capability development." 5. "Architectural planning and migration support" is clarified as indirect mission support versus direct product development support.

Open PDF

Document Details

Document Type: Project
Publication Date: Oct 01, 2011
Source ID: 675231_0303140F_7_3600_PB_2011

AF Key Management Infrastructure (AF KMI)

Abstract

Document Details

Tags

Fields of Study

Readers

Technology Areas

Related Documents