677824 - Integrated Defensive Cyberspace System

Abstract

IDCS generates defensive cyberspace capabilities supported by active response methodologies as the main focus of our efforts (we utilize NIST-standardized actions, such as protecting and securing computer and network systems, detecting and assessing damage, defending while recognizing / attributing / mitigating cyber threats, and recovering systems and data) as the DAF seeks to keep pace with ever-evolving threats and changes to the operational cyber environment. IDCS benefits the DAF Total Force, including Active Duty (AD), Air National Guard (ANG), and Air Force Reserve Command (AFRC) Airmen by enabling rapid deployment of defensive cyber sensor capabilities while disrupting bad actors from exploiting critical vulnerabilities upon the initial discovery of adversarial action at the tactical edge, by utilizing both automated decision making (ADM) and human/machine teaming (HMT) with trained defensive cyber operators. IDCS will equip DAF operational units (predominantly 16th Air Force (AFCYBER), 688th Cyber Security Service Provider (CSSP), and 67th Cyber Wing, Air Force Cyber Protection Teams (CPTs), in addition to Mission Defense Teams (MDTs) and network defenders) with capabilities required to sensor, monitor and protect DAF and ad-hoc mission networks (including networks utilized by AFSOC - Air Force Special Operations Command), Industrial Control Systems (ICS), and Weapon Systems. IDCS supports both enterprise (fixed) and edge/mobile use cases. IDCS exists to sustain two major components: (1) common sensor platform, known as VOLTRN+; (2) situational awareness platform, known as ELICSAR, acting as DAF's version of a Big Data Platform (BDP). IDCS components are comprised of 3 main parts: (A) Strategic Data Platform; (B) Strategic and Tactical Analytics; (C) Joint Situational Awareness Applications. Working together, IDCS enables AF DCO to host, integrate, and feed defensive-cyber-related data, which informs both operational and strategic analysis, contributing to enhanced situational awareness for senior leaders. IDCS addresses the lack of a synchronized, enterprise-level approach to mitigate cyberspace vulnerabilities related to mission performance and/or mission assurance. Failing to address capability gaps will hinder DAF's ability to project Air Power and dominate in a fight against near-peer adversaries. Our request to increase RDT&E funding for this portfolio reflects the threats (identified with SecAF support) to Air Force Defensive Cyber Operations, specifically requiring sensor data and enhanced situational awareness to mobilize, deploy, and sustain forces. IDCS develops, sources, sustains, and provides common non-proprietary modular hardware (including commercial-off-the-shelf / COTS solutions), hosting, an edge cloud-compute defensive cyber platform (with options for both standalone or cloud-connected software), and cloud-based containerized software needed to execute the Cyberspace Vulnerability Assessment/Hunter (CVA/H), Air Force Cyber Defense (ACD), and Cyber Defense Analysis (CDA) missions. IDCS makes its cyber data available to the Department of the Air Force (DAF) Data Fabric (including JCWA / ABMS), providing increased visibility into health and readiness of cyberspace systems for both local and enterprise leaders. IDCS aggregates and analyzes cyberspace data with the ability to enhance strategic assessments through the use of Artificial Intelligence and Machine Learning, along with providing a comprehensive dashboard and reporting structure, which assists DCO operators in detecting and defeating Advanced Persistent Threats (APTs). IDCS will utilize visualization dashboards developed by Cyberspace Operations Systems, PE 0303089F, to enhance cyber situational awareness reporting and battle management capabilities. Activities also include various Advisory and Assistance Services (A&AS) and Program Management Administration (PMA) activities to support the aforementioned development efforts. This program element may include necessary civilian pay expenses required to manage, execute, and deliver weapon system capability. The use of such program funds would be in addition to the civilian pay expenses budgeted in program element 0605827F, 0605828F, 0605829F, 0605831F, 0605832F, 0605833F, 0605898F, 0606398F. In FY23 $0.000M was expended for civilian pay expenses in this program element, and in FY24 $0.000M is forecasted for civilian pay expenses in this program element. In FY25, PE 0208088F, AF Defensive Cyberspace Operations, Project 677821, Cyberspace Vulnerability Assessment, Project 677822, Cyber Defense Analysis, and Project 677823, AFCERT efforts were transferred to PE 0208088F, AF Defensive Cyberspace Operations, Project 677824, Integrated Defensive Cyber System, in order to distinguish IDCS from previous efforts.

Document Details

Document Type

Project

Publication Date

Oct 01, 2025

Source ID

677824_0208088F_7_3600_PB_2025

Tags

Related Documents

• Root: AF Defensive Cyberspace Operations
• Child Accomplishment: Integrated Defensive Cyberspace System (IDCS) Development
• Child Cost Item: 4f80ff8176ad20cae8f92c8a30c7bd37
• Child Cost Item: bb9cef8ad15b8bb67a519612a9a25902
• Child Cost Item: d3834926913ac2e49d85f71722e39b1c
• Child Cost Item: 2708cf7a41af174f951ab72ff2b5ee6e
• Child Cost Item: 27f331b90a82a01154157e02558fa594
• Child Cost Item: c132f513aade34888a7725fb68f648ab
• Child Cost Item: d72ca4fade39d7a001d5bcc39d274639
• Child Cost Item: bda3d37da086a368c540ae9374d16774
• Child Cost Item: fa3136d15d69579e195010f80332809f
• Child Cost Item: 41791cc48866ac6de1f0b20713ce209a
• Child Cost Item: bf21caceba97a5c1fe3238c2e8f13401
• Child Cost Item: fad61525f2ecb85aa41d0e4f6a24c445