LANDWARNET 2011 UNCLASSIFIED UNCLASSIFIED 1 TRANSFORMING CYBER WHILE AT WAR Optimizing Cyber Capabilities Through Software Enhancements and Streamlined Logistics Track 6 │Session 6 25 August 2011 C4ISR Materiel Enterprise: Transforming Cyber Capabilities 1 2011-08-25 //Optimizing Cyber Capabilities Session 6, Track 6 (C4ISR ME)
40
Embed
Optimizing Cyber Capabilities Through Software ...UNCLASSIFIED LANDWARNET 2011 UNCLASSIFIED 2 TRANSFORMING CYBER WHILE AT WAR David Levine, CECOM, Software Engineering Center •WIN-T
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
LANDWARNET 2011UNCLASSIFIED
UNCLASSIFIED 1
TRANSFORMING CYBER WHILE AT WAR
Optimizing Cyber Capabilities
Through Software Enhancements and Streamlined Logistics
Warfighter Information Network – Tactical Increment 1 (WIN-T Inc 1): a state-of the-art Commercial-Off-The-Shelf (COTS)/Government-Off-The-Shelf (GOTS) communications network enabling the exchange of voice, video, and data throughout the tactical Army unit and into the sustaining base
• WIN-T Inc 1 is Fielded to Army Divisions, Brigades, Battalions in
Spirals/ Lots
Different Lots have different HW/SW configurations; total of 14 Lots to be fielded by FY12
• Each WIN-T Inc 1 System of Systems component has COTS HW/SW subcomponents to maintain, and associated Network Operations (NETOPS)
5
Joint Network Nodes Battalion Command Post Nodes Hub Nodes SATCOM
The sustainment requirements of the WIN-T Inc 1 COTS-based system vary from those of the older, legacy non-COTS systems
•COTS introduced a dependency on commercial vendors
Software version updates
Technical support
• Funding for COTS software maintenance agreements became a major SW sustainment cost
•Mitigation of commercial Information Assurance vulnerabilities became necessary in order to maintain Cyber Security
• End-of-Life, End-of-Support for COTS products means that the system, software support personnel, and software testing/integration labs must constantly adapt and upgrade
Scope of SEC WIN-T Inc 1 Software Sustainment Effort
• SEC currently manages software support for WIN-T Inc 1 Lots 1-13 Will assume support for final Lot 14 in FY13
• Provides regular software releases resolving Information Assurance Vulnerability Alerts (IAVAs) and COTS vendor security issues. The releases also typically include updates addressing other software anomalies and functional upgrades
• Includes support for 50+ software applications, 4 computer OS's
• Also support for software residing on hardware platforms – routers, switches, Call Managers, PBXs, etc.
• Scope of effort is constantly varying with new spirals, refits, resets, new requirements, SW/HW upgrades, etc.
• COTS software license/maintenance renewal and acquisition
• Technical support to the field92011-08-25 //Optimizing Cyber Capabilities Session 6, Track 6 (C4ISR ME)
For all WIN-T Inc 1 Spirals/Lots, regular software releases are planned and released• Apply to all components including Baseband, NETOPS SATCOM
• Each release includes security updates, other application updates
• Cyber Security updates include IAVAs (from ACOIC), other vendor security patches, hardening, configuration, anti-virus updates
• Requirements for application updates often based on requests from PdM WIN-T Inc 1, WIN-T Inc 1 CCB, technical Working Groups, also end of life issues
• Each release cycle includes:
IAVA analysis, report to IASO weekly, Software Builds
System Integration and Test, formal Government witnessed testing
CM, Release documentation preparation and submittal
In coordination with the WIN-T Inc 1 System Manager, PM WIN-T, efforts are continuously ongoing to streamline/consolidate software sustainment
• Older WIN-T Inc 1 lots are being upgraded to a more recently fielded baseline
• Some WIN-T Inc 1 HW/SW components have been fielded as part of other PM WIN-T fielded systems, such as Single Shelter Switch V3/V4, Tactical Network Management System, Regional Hub Node
• Army-wide COTS software maintenance used where possible to reduce costs
• Efforts are made to eliminate COTS products where possible, when capabilities are duplicated in other products
Result: All Warfighters’ WIN-T Inc 1 Systems, regardless of the Lot configuration, are kept up to date with the latest software versions, optimizing the Warfighter’s Cyber capabilities, Joint interoperability, and Mission Readiness
Issue: AN/PRC-148, AN/PRC-150, AN/PRC-152, AN/PSC-5D, AN/PRC-117F/G are non-programs of record. Therefore, no actions were taken to obtain a Material Release, identify MTOE authorizations, procure technical data, or conduct planning for sustainment in the Standard Army Supply System. DA eventually extended the life expectancy of assets beyond warranties.
Sustainment of these radios was established through the funding of contractor warranty programs. However, in FY08, HQDA advised additional warranty extensions would not be funded. At that time, the Program Manager was directed to plan for transition of the COTS radios into sustainment and support via the Standard Army Supply Systems.
Action: Coordinating with PM FBCB2 to acquire funding from HQ DA G8• Technical Documentation• Organic Capability• Pipeline Spares• Plus up TRM dollars to field users
Action: Establish in the Standard Army Supply System • SSR to DLA• JLC-17 to other Services• 5 yr IDIQ spares/NMC contract • Organic Repair Support via TYAD
Action: Implementation of Supply Support• AN/PRC-148 – March 2012• AN/PRC-150/152 – December 2011• AN/PRC-117F/PSC-5D – August 2011• AN/PRC-117G – August 2012
When a NON POR System is procured/fielded, it would be wise to put some contingencies on the contract, just in case it becomes a POR, or directed by HQDA to transition into sustainment, as the case with the COTS Radios. An option on the contract to procure a technical data package, to establish NSNs and Technical Manuals, to establish an organic repair capability and to build an organic sustainment support via the Standard Army Supply System.
• The WIN-T Increment 1 program was initially fielded as a Quick Reaction Capability (QRC) program and subsequently became a Program of Record (POR), as a result of the Acquisition Decision Memorandum (ADM) signed in June 2007
Success story:
• In June 2010, the Logistics and Readiness Center (LRC) was selected as the Product Support Integrator (PSI) for sustainment of the Increment 1 program. The LRC and PdM Increment 1 are in the process of planning the implementation of the Business Case Analysis (BCA) selected Product Support Strategy (PSS)
Lessons learned:
• Develop a process that will enable QRC programs to generate alternatives for potential long term PSSs, in the event that the program becomes a POR
• Standardize a process, with required documentation and milestones, when moving from a QRC to POR in terms of the sustainment support
• Develop a standardized cost model that will provide a system level quantitative analysis against various PSS alternatives
Issue: Units redeploying from SWA with Harris and Thales non-POR radios must undergo Reset Maintenance. Through FY09 and FY10 radios were workloaded to CECOM Regional Support Centers for Reset Maintenance and contractors performed Tier 1 testing. Radios that failed testing were returned to the owning unit and evacuated to the warranty provider.
Action: CECOM coordinated a pilot effort with FORSCOM to test the feasibility of having owning units perform Tier 1 testing and retain radios that passed the Test and radios that failed would be evacuated by the unit to the warranty provider. The Pilot program was successful – Units completed Tier 1 testing on all radios in a timely and efficient manner. FORSCOM implemented these procedures as a component of the “Back to Basics Initiative” which included cost savings from transferring contractor performed maintenance to a soldier-performed maintenance process. This new testing process of Tier 1 radio checks was exploited by units as an opportunity to train soldiers.
Reset Cost Savings: $16.8M in FY10, the FY11 projection is $8.5M
Today’s COMSEC solutions permeate a variety of PORs, Non-PORs, ad hoc and Strategic networks to provide a flexible, agile, and critical security capability• For example: The TACLANE KG-175D In-line Network Encryptor (INE) is
used in Pentagon networks, NECs, WIN-T, TROJAN, and VTC
• The KIV-7M Link/Trunk Encryption Family (LEF) device is used widely in Pentagon networks, NECs, WIN-T, TROJAN, PATRIOT, SNAP terminals, and many SIPRNET connections
• New COMSEC solutions replace multiple legacy devices, reducing the variety of COMSEC devices, although fielded device population is rising
Modern COMSEC solutions are primarily non-developmental items• Results in reduced developmental costs
• While the intention was to field solutions faster, the result is Non-Standard Equipment, creating visibility and authorization issues
LANDWARNET 2011UNCLASSIFIED
UNCLASSIFIED 24
TRANSFORMING CYBER WHILE AT WAR
Issue: Soldiers unnecessarily exposed to risk by having to physically pick up and deliver the COMSEC keys
Action: Working with PD COMSEC, developed capability to electronically distribute COMSEC key via secure SIPRNet; CSLA Mobile Training Team provided training on new Encrypted Key Distribution (EKD) concept, minimizing the requirement to physically courier key and reduce the soldiers exposure to dangers of open theatre – using this new procedure prevented soldiers from being put in harm’s way while delivering/ receiving key
Issue: Two level maintenance created a lack of Army COMSEC sustainment support in the field
Action: Creation and placement of COMSEC FRAs in SWA provides real time COMSEC equipment support. FRA is capable of Repairing and Returning (R&R) or Direct Exchange (DX) of the unserviceable COMSEC equipment. This results in less network down time and continued security of operational data and voice in a tactical arena
Issue: Tracking COMSEC software updates is not manageable without a centralized Army authority. Current tracking efforts are ad hoc and off-line using locally generated databases and individual unit reporting
Action: Near Term - CSLA is working to establish a consistent reporting matrix for COMSEC software changes and NSA mandatory upgrades. Long Term – incorporate software version tracking in GCSS-A
Establish a three-phased Public Private Partnership (PPP) agreement between Tobyhanna Army Depot (TYAD) and OEM for CREW Duke to establish TYAD as a fully capable depot facility (IAW Title 10 U.S.C., Sec. 2464) and expand depot forward operations
• Phase I: Hire and train TYAD personnel to process depot-level repairs in theater; be responsible for logistics management of spares/repair parts; and gather repair/consumption data for all consumable and reparable parts
• Phase II: Facilitate PPP collaboration of system information and training, as required, to isolate faults, provide reliability engineering, and replace components. Stand up system repair capability at TYAD. Phase out use of OEM for this function as TYAD gains capability
• Phase III: Facilitate PPP collaboration and training to repair circuit card assemblies at TYAD. Phase out the use of OEM for this function as TYAD gains capability
Create a "Multi-Functional" FSR position at TYAD reducing OEM FSR support costs for all CREW variants
Enhancements and support of fielded systems for Software and Hardware
• SEC leads the software upgrade effort as DE-CGS moves from Solaris based servers to Windows based virtual networks, which maintains interoperability with intelligence networks, increases security, and provides greater target information
• Via TYAD FRAs and forward spares support positioned in SWA, CGS has maintained 98% operational availability. Unit maintainers have immediate access and longstanding relationships with TYAD FSEs in SWA and 24/7 OEM technical support through phone and email at GDC4S, Scottsdale, AZ. TYAD and PM DCGS-A worked with GDC4S to develop and field the C(V)2 DE-CGS, and improve mobility, power, cooling, server interoperability, and reliability across the system
In conjunction with PM DCGS-A and LRC support, TYAD leads the upgrade effort of the AN/TSQ-179 Target Acquisition Subsystem to variant C(V)2, which resolves major end of life issues and incorporates the entire spectrum of DCGS-A enabled systems