RCC-CSG Policies, Procedures and Documentation Committee Update

Abstract

The USAF requires a cybersecurity Risk Management Framework (RMF) accreditation package to be approved by Authorizing Official (AO) to grant an Authority To Operate (ATO) for all instrumentation systems installed on USAF platforms. Vendors can help the USAF obtain an ATO by delivering software and hardware that implements best cybersecurity practices such as delivering software with reduced attack surface, secure delivery of software binaries, and secure methods for installing/validating firmware. Hardware designs can assist the accreditation processes by defining non-volatile memory (NVM) characteristics and reduce the operational issues by isolating NVM. Adding options for logging control-plane and data-plane network traffic is very helpful as instrumentation systems expand the use of connected networks.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
May 15, 2019
Accession Number
AD1072180

Entities

People

  • Todd Jacob

Tags

Communities of Interest

  • Cyber

DTIC Thesaurus Topics

  • Best Practices
  • Business Administration
  • Configuration Management
  • Cyber Threats
  • Cybersecurity
  • Data Science
  • Department Of Defense
  • Information Operations
  • Risk
  • Risk Analysis
  • Risk Management
  • Security
  • Software Design
  • Test And Evaluation
  • Test Facilities
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Computer Science/Computer Engineering/Data Science/Digital Signal Processing.
  • Naval Mine Countermeasure Systems Development.
  • Software Engineering.

Technology Areas

  • Cyber