Training to delivery: Cyber space warfare

NEW ISSUE OF ARMY AL&T EXPLORES ‘FIELDING THE FUTURE’

Defensive Cyber Operations, Cyber Platforms and Systems creates a modular,
carry-on-size cyberspace defense system

Today’s technology is changing rapidly and Defensive Cyber Operations (DCO) ensures the U.S. Army’s cyber defenders are equipped for the fight against all cyber threats worldwide. In response to the threat, the U.S. Army began identifying specific needs for a deployable cyber capability to defend and mitigate threats from cyber enemies. The solution needed to be armed with state of the art of defense tools, and have the ability to control monitor and forensically evaluate who is attacking, why and identify what they are after.

In March of 2018, Defensive Cyber Operations, Cyber Platforms and Systems established a program of record for the Deployable Defensive Cyberspace Operations System. The requirement was to build a configurable hardware kit that could be easily transported by aircraft and other means of transportation. It also needed to be armed with the ability to tap into a network and host tools for defensive measures.

Several factors are considered when acquiring and developing hardware and software prototypes. “Our Armed Forces need to remain ahead of the adversary by acquiring adaptive platforms and innovative defensive cyberspace tools, ultimately enabling incident response.” Kyle Tucker, Assistant Product Manager, Acting, Cyber Platforms and Systems, said.

The team needs to be current and remain dexterous when determining how much internal computer storage and memory these systems will need, in order to defend our nation against cyber threats. There was also an additional requirement to have adaptive platforms and system tools, enabling rapid incident response. The solution generated from Cyber Platforms and Systems, has a direct sharing ability and provides current tools for our cyber forces.

PROTOTYPE EVOLUTION

Developing a deployable system with the required ability to tap into a network and host attack response tools was no easy feat. Requirements change continuously and rapidly. To keep pace with fluctuations in technology and current threats, many obstacles had to be overcome in a short amount of time.  Although the first several prototypes were extremely rugged, the system was large and cumbersome. At least two men had to transport the system from point A to point B, and it had a shortage of compute speed and internal system storage.

With continuous prototype iterations, the system successively became closer to the desired solution. The speed in which the team was able to adapt and move into the next phases of prototyping is their most critical accomplishment. Cyber Platforms and Systems has been able to award a new contracts, prototype the requirements, complete the user assessments, and train the cyber defenders within seven months. A critical ability for fielding our Soldiers. The normal acquisition process can take years; and the team accomplished the mission in a fraction of the time with an innovative, agile solution, significantly reducing the acquisition time.

Through several more iterations the fifth prototype, now serves as the production version.  This design is modular and allows for adaptation based on mission requirements. The system is also scalable, with reduced size and weight allowing greater flexibility to the Soldier.

“We went from large and bulky prototype in March 2019 to an airline carry-on before the end of November. We were able to get the kit into the hands of our cyber Soldiers in about six months,” said Lt. Col. Michael Lind, the product manager for Cyber Platforms and Systems.

The modular system has the ability to adjust to Soldier’s needs and be deployed in different flexible configurations, to include adaptable host tools and physical cases. The result of these efforts was a cost savings of $40 million a year in shipping and travel expenses. Each mission is different and the system enables the Soldier’s to adapt to evolving threats because it is malleable.

NEW EQUIPMENT TRAINING

In November of 2019, system training began for the cyber defenders. In less than a month, the Cyber Platforms and Systems team completed various training courses with more than 50 students, and will continue training the defenders over the next several years as technology and new requirements emerge.

Throughout these training exercises the cyber defenders learn how to use the software and hardware properly. They also learn how to use the system in different environments and how to respond to current and future threats. These advanced skills allow the cyber defenders to take control of the U.S. Army networks and our cybersecurity response posture to accomplish the mission.

In February 2020 another iteration of training for the Deployable Defensive Cyberspace Operations System-Modular transpired at the Georgia Cyber Center, in Augusta, Georgia. The students were excited and ready for the fight. “We are now able to accomplish cyber security for our nation that we have never been able to before. We need to secure our networks and data. There is nothing more important,” said Chief Warrant Officer Gabriel Garcia, U.S. Army Cyber Command.

In addition to training the Soldier’s, the information collected during these training exercises is critical for refining the system and adapting new technology to meet the evolving mission requirements. Training continues to improve with each iteration and will give the cyber defenders the necessary experience needed to proactively respond to cyber threats on U.S. Army networks.

CONCLUSION­

In April, CPS was able to deliver several Deployable Defensive Cyberspace Operations System-Modular kits to the cyber defenders despite the COVID-19 pandemic. The unique adjustment to delivery methods transpired with the use of a commercial shipping company, mitigating exposure and used minimal personnel in order to complete mission essential duties. All operations regarding new deliveries were conducted in a virtual operational capacity.

The Deployable Defensive Cyberspace Operations System-Modular offers the most advanced resources needed to host virtualized tools, and the ability to integrate with mission partner networks. It is ready to perform on any network in any environment from moderate to austere. The Deployable Defensive Cyberspace Operations System-Modular provides the foundation for which cyberspace tools are able to be integrated and new solutions implemented. The tools and hardware CPS has acquired enhance defensive cyber operations maneuverability, thus enabling future warriors to complete their missions successfully.

Deployable Defensive Cyberspace Operations System-Modular kits are currently fielded through an Armory, a capability designed to act as a library in order to configure and check out the hardware and tools solutions. The Armory also coordinates inventory, manages hardware and software updates, patches, licensing and facilitates training. To date, CPS has delivered numerous deployable systems in less than a year, and will provide the cyber defenders several more by fiscal year 2022. With this system and the tools CPS provides, Global Cyber Defenders are able to mitigate cyberspace attacks by executing countermeasures, and allow them to outmaneuver the adversary and achieve mission assurance.

For more information https://www.eis.army.mil/mission-areas/defensive-cyber

To view the entire story follow AL&T Magazine https://asc.army.mil/armyalt/Summer2020/html/index.html?page=90&origin=reader