Survey
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Integrated Information Technology (IT) & Information Assurance (IA) Technical Authority (TA) 28 April 2015 Presented to: Presented by: AFCEA C4ISR Symposium RDML John Ailes SPAWAR Chief Engineer Statement A: Approved for public release, distribution is unlimited (27 APRIL 2015) What’s the Problem? ▼ A series of stovepipes wired together & not organized or aligned for effective interoperability Little-to-no focus on System-ofSystems or Enterprise-level engineering Integration & Interoperability an afterthought ▼ Resulting in an IT infrastructure that is: Too large Too old & too hard to upgrade Too varied & expensive Too hard to manage & operate Too hard to defend We Need a Disciplined Engineering Approach to Interoperability and Cybersecurity 2 Fundamental Changes Needed to Improve Navy Interoperability & Cybersecurity Future End State Current IT Infrastructure ▼ Complex design driven by stovepipe acquisition ▼ Poor configuration management ▼ Simplified design with no stovepipes ▼ Enables disciplined configuration management ▼ Each program implements security ▼ Mandatory implementation of standardized controls ▼ Attackers see a single network with seams security controls ▼ Fewer seams and smaller attack vector— easier to operate, manage and defend Need Enterprise-Level Approach to Interoperability & Cybersecurity 3 System Data Exchanges Combat System Off Platform Comms CANES CS LAN U 24 U 24 CS Elements U2 CS Elements CS Elements Boundary Defense U3 U3 U2 U2 U4 U4 U2 U2 U8 U8 U8 U8 IDS Firewall U8 Switch CS Elements Logical Physical Hosted App U2 Hosted App CANES Service U8 Switch CANES Service Video Conversion Rack 4 4 SPAWAR-led Actions to Improve Navy Cybersecurity & Interoperability IT/IA Technical Authority Board (TAB) Specifications & Standards Implementation Guidance (Standards) Defense-in-Depth Functional Implementation Architecture (DFIA) Off-Platform Communications Platform Boundary Enclave ▼ Cross-SYSCOM governance board for reviewing, adjudicating & endorsing IT & IA TA products for use throughout the Naval Network Enterprise ▼ Charter signed by SYSCOM CHENGs ▼ Stakeholders provide key policy & operational perspectives ▼ Working Groups collaborate & refine SPAWAR-initiated IT & IA TA products Enclave Boundary Enclave DFIA Afloat Specs & Standards promulgated to PORs to drive toward a target endstate that addresses cybersecurity and interoperability holistically across the Navy Enterprise SPAWAR Plays a Critical Role in Navy Cybersecurity & Interoperability 5 Summary ▼ Cybersecurity & Interoperability are Navy Imperatives The cyber threat continues to grow exponentially; a challenge to both government and commercial cybersecurity enterprises Ensuring critical data exchange and securing the Fleet requires a fundamental change in our approach Smart IT planning simplifies cyber problem—effective execution of integrated IT and IA TA is the key! ▼ SPAWAR plays a critical role in Navy Interoperability & Cybersecurity Establishing the cyber specifications, standards and configurations Developing and delivering capabilities to the Fleet with interoperability and cyber designed up front 6 7