Defensive CYBER Operations

Abstract

Defensive Cyber Operations (DCO) and Tactical DCO Infrastructure (TDI) support the Army Network Modernization Strategy Line of Effort (LOE) Key Enabler for the Unified Network. These efforts are aligned to support the Network-Cross Functional Team capability set approach to achieve the network modernization strategy. FY2022 DCO budget line provides funding for Program Executive Office Command Control and Communications - Tactical (PEO C3T) Cyber Situational Understanding (Cyber SU). Platforms/Levels: * DCO - Tactical DCO Infrastructure (TDI) // (FY2022 funds captured in the Pilot program) // (PEO C3T) * DCO - Cyberspace Analytics // (FY2022 funds captured in the Pilot program) // (PEO EIS) Defensive Cyber Tools and Analytics: * DCO - Mission Planning // (FY2022 funds captured in the Pilot program) // (PEO EIS) * DCO - User Activity Monitoring // (FY2022 funds captured in the Pilot program) // (PEO EIS) * DCO - DCO Development Environment (DCODE Forge) // (FY2022 funds captured in the Pilot program) // (PEO EIS) * DCO - Army Cyber Command (ARCYBER) Rapid Cyber Prototyping // (FY2022 funds captured in the Pilot program) // (ARCYBER) 655041EV5: - (Legacy) Tactical DCO Infrastructure (TDI) is a software-only program, which consists of pre-configured DCO tools residing on the Tactical Server Infrastructure (TSI). The TDI capability will reside within the Command Post at echelon Corps through Brigade for both organic Cyber Network Defenders as well as remote access by Cyber Protection teams (CPT) to support defense of the Tactical Network. - Defensive Cyber Operations (DCO) consists of platform and software programs which are key elements of the DCO Maneuver Baseline infrastructure, platform, and tools. The employment of defensive capabilities creates specific effects in cyberspace through actions that allow commanders to achieve the following objectives: deter, destroy, and defeat enemy offensive cyberspace operations; gain time; economy of force; control key terrain; protect tasked critical assets and infrastructure; and develop intelligence. DCO supports the Army Cyber Command (ARCYBER), Army Cyberspace Operations and Integration Center (ACOIC), (5) Regional Cyber Centers (RCCs), Cyber Warfare Battalion (CWB), Multi-Domain Task Force (MDTF), Cyber Protection Brigade (CPB), and (41) Cyber Protection Teams (CPTs) in COMPO 1/2/3. - (Legacy) ARCYBER Rapid Cyber Prototyping provides software based capabilities that can quickly respond to emerging cyber threats and keep up with threat technology; while supporting Multi-Domain operations. ARCYBER identifies potential development and prototyping efforts via Cyber Needs Forms (CNFs) based on operational feedback, changes in the operational information environment and/or trends of adversarial activity; which drive CONOP and Tactics Techniques and Procedures (TTP) modifications. These are separate and distinct from DCO programmed efforts already funded or budgeted for by PM DCO and are used to rapidly address a network threat/vulnerability.

Open PDF

Document Details

Document Type
Project
Publication Date
Oct 01, 2022
Source ID
EV5_0605041A_5_2040_PB_2022

Tags

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.

Technology Areas

  • Cyber
  • Cyber - Legality in Cyberspace

Related Documents