Download SPAWAR AFCEA Cybersecurity Brf (RDML Ailes)

Integrated Information Technology (IT)
& Information Assurance (IA)
Technical Authority (TA)
28 April 2015
Presented to:
Presented by:
AFCEA C4ISR Symposium
RDML John Ailes
SPAWAR Chief Engineer
Statement A: Approved for public release, distribution is unlimited (27 APRIL 2015)
What’s the Problem?
▼ A series of stovepipes wired
together & not organized or
aligned for effective
interoperability
 Little-to-no focus on System-ofSystems or Enterprise-level
engineering
 Integration & Interoperability an
afterthought
▼ Resulting in an IT infrastructure
that is:





Too large
Too old & too hard to upgrade
Too varied & expensive
Too hard to manage & operate
Too hard to defend
We Need a Disciplined Engineering Approach to Interoperability and Cybersecurity
2
Fundamental Changes Needed to Improve
Navy Interoperability & Cybersecurity
Future End State
Current IT Infrastructure
▼ Complex design driven by stovepipe
acquisition
▼ Poor configuration management
▼ Simplified design with no stovepipes
▼ Enables disciplined configuration
management
▼ Each program implements security
▼ Mandatory implementation of standardized
controls
▼ Attackers see a single network with
seams
security controls
▼ Fewer seams and smaller attack vector—
easier to operate, manage and defend
Need Enterprise-Level Approach to Interoperability & Cybersecurity
3
System Data Exchanges
Combat System
Off Platform
Comms
CANES
CS LAN
U 24
U 24
CS Elements
U2
CS Elements
CS Elements
Boundary Defense
U3
U3
U2
U2
U4
U4
U2
U2
U8
U8
U8
U8
IDS
Firewall
U8
Switch
CS Elements
Logical
Physical
Hosted App
U2
Hosted App
CANES Service
U8
Switch
CANES Service
Video Conversion
Rack
4
4
SPAWAR-led Actions to Improve Navy
Cybersecurity & Interoperability
IT/IA Technical Authority Board
(TAB)
Specifications & Standards
Implementation Guidance
(Standards)
Defense-in-Depth Functional Implementation
Architecture (DFIA)
Off-Platform Communications
Platform Boundary
Enclave
▼ Cross-SYSCOM governance board for
reviewing, adjudicating & endorsing IT
& IA TA products for use throughout
the Naval Network Enterprise
▼ Charter signed by SYSCOM CHENGs
▼ Stakeholders provide key policy &
operational perspectives
▼ Working Groups collaborate & refine
SPAWAR-initiated IT & IA TA products
Enclave Boundary
Enclave
DFIA Afloat
Specs & Standards promulgated to PORs
to drive toward a target endstate that
addresses cybersecurity and
interoperability holistically across the
Navy Enterprise
SPAWAR Plays a Critical Role in Navy Cybersecurity & Interoperability
5
Summary
▼ Cybersecurity & Interoperability are Navy Imperatives
 The cyber threat continues to grow exponentially; a challenge to both government and
commercial cybersecurity enterprises
 Ensuring critical data exchange and securing the Fleet requires a fundamental change
in our approach
 Smart IT planning simplifies cyber problem—effective execution of integrated IT and IA
TA is the key!
▼ SPAWAR plays a critical role in Navy Interoperability & Cybersecurity
 Establishing the cyber specifications, standards and configurations
 Developing and delivering capabilities to the Fleet with interoperability and cyber
designed up front
6
7