Defensive Cyber - Software Prototype Devel

Abstract

Defensive Cyber Operations (DCO) supports the Army Network Modernization Strategy Line of Effort (LOE) Key Enabler for Unified Network. Efforts are aligned to support the Network-Cross Functional Team capability set approach to achieve the network modernization strategy. The DCO budget line includes funding for Program Executive Office Command Control and Communications - Tactical (PEO C3T) Tactical DCO Infrastructure (TDI); Program Executive Office Enterprise Information Systems (PEO EIS) Defensive Cyber Operations; and Army Cyber Command (ARCYBER) Rapid Cyber Prototyping. Platforms/Levels: * DCO - Tactical DCO Infrastructure (TDI) - (PEO C3T) - Tactical/Command Post Level * DCO - Cyberspace Analytics - (PEO EIS) - (Gabriel Nimbus) - Strategic Level (Army Cyberspace Operations and Integration Center (ACOIC)) Defensive Cyber Tools and Analytics: * DCO - Cyberspace Analytics - (PEO EIS) - Strategic Level (ACOIC) * DCO - Mission Planning - (PEO EIS) - Strategic Level * DCO - Tools Suite - (PEO EIS) - Garrison/Tactical Level * DCO - User Activity Monitoring - (PEO EIS) - Strategic Level * DCO - Forensics and Malware Analysis - (PEO EIS) - Garrison/Tactical Level * DCO - Threat Emulation - (PEO EIS) - Strategic Level (Training) - Tactical DCO Infrastructure (TDI) is a software-only program, which consists of pre-configured DCO tools residing on the Tactical Server Infrastructure (TSI). The TDI capability will reside within the Command Post at echelon Corps through Brigade for both organic Cyber Network Defenders as well as remote access by Cyber Protection teams (CPT) to support defense of the Tactical Network. - Defensive Cyber Operations (DCO) consists of platform and software programs which are key elements of the DCO Maneuver Baseline infrastructure, platform, and tools. The employment of defensive capabilities creates specific effects in cyberspace through actions that allow commanders to achieve the following objectives: deter, destroy, and defeat enemy offensive cyberspace operations; gain time; economy of force; control key terrain; protect tasked critical assets and infrastructure; and develop intelligence. DCO supports the Army Cyber Command (ARCYBER), ACOIC, (5) Regional Cyber Centers (RCCs), Cyber Warfare Battalion (CWB), Multi-Domain Task Force (MDTF), Cyber Protection Brigade (CPB), and (41) Cyber Protection Teams (CPTs) in COMPO 1/2/3. - ARCYBER Rapid Cyber Prototyping provides software based capabilities that can quickly respond to emerging cyber threats and keep up with threat technology. ARCYBER identifies potential development and prototyping efforts via Cyber Needs Forms (CNFs) based on operational feedback, changes in tactics techniques and procedures (TTPs), and trends of adversarial activity. These are separate and distinct from DCO programs identified and are used to rapidly address a network threat/vulnerability.

Open PDF

Document Details

Document Type
Project
Publication Date
Oct 01, 2021
Source ID
CD1_0608041A_8_2040_PB_2021

Tags

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.

Technology Areas

  • Cyber
  • Cyber - Legality in Cyberspace

Related Documents