Assured Session III

From AFCEAWiki

Jump to: navigation, search

Contents

[edit] Session III: Optimizing Secure Mobile Environment/Tactical Edge

JOIN THE ONGOING SOLUTIONS DIALOGUE ON THE GOOGLE GROUP SITE

[edit] Abstract

Optimizing Secure Mobile Environment/Tactical Edge (WLAN, WiMAX, SME/PED). How pervasive will this solution be throughout NSS community?

[edit] Moderator

  • Dr. Dan Wiener, Vice President and Chief Technology Officer, BAE Systems

[edit] Panel

  • Mr. Michael Zirkle, Senior Associate/Mobile Security Practice Lead, Booz Allen Hamilton
  • Mr. Greg Gordon, Wireless Engineering Specialist, Cisco Systems
  • Dr. L. Fred Horney, Cryptographic Modernization Project Management Office, USA
  • Mr. Matt Quick, Chief of the secure wired/wireless division, NSA


Speaker BIOS

Audio Podcast

Fred Horney: 

- Line from the movie Hackers "I multi-task naturally. I couldn't think as slow as you if I tried!"
- Wireless is pervasive in everything. Walk outside, I bet you are within 15' of someone teting or reading/sending an email.
- Don't let policy get in the way. Can't throw stones at NSA, they are changing. New definition of tactical secret data. 
- Infrastructure needed for mobile devices needs to be accouted for. SME-PED had two infrastructures (Commercial and Government). 
- Spectrum control. Maintain military wireless spectrum...don't let it all go. 
- Transformation is necessary.

Matt Quick: 

- Responsible for secure telephony (STU/STE/QSEC2700, Sectera, SME-PED). SCIP based products.
- L-3 and GD are vendors for SME-PED. 1st gen is larger than desired. SIPR to the hip. Clear, protected up to SCI level voice. Data at rest. 
- GSM or CDMA (removable RF modules)

Mike Zirkle: 

- Policy doesn't exist. to support plethora of products/technology.
- Subscriber units. How do we secure? Policy? 
- How do we get wireless tech into the depots? Approve the tech before we need it in the field for use.

Greg Gordon: 

- Talking WLAN, not cellular...growing in number of deployments and level of security.

How do we translate the paradigm of data on the edge: 

- No longer is SIPR protected by guns, dogs and walls. Can I access it in my car, yes....should I, no. Need some trust in the user.
- Wireless CAN be more secure than wired. The technology is there....but is it used and useful.

- Is it secure? Will it blow something up if I turn it on.

John Krause (DoD): 

- DISA locks down 802.11 on laptops. What is the concern? Why not use it? Are they seeing something that the rest of Dod does not.
- Talon? Your thougths? Secure Iridium

Zirkle response: 

- Laptops outsold desktops last year. Most laptops have 3 wireless connections out of the box. 
- It's all about the supplicant. 
- Flying Squirrel...DoD wireless tool
- Wireless Intrusion Detection System (WIDS), only 10% use.

Quick: 

- Talon is a good capable product from my sister division.
- Not a new concept. Successor to RASP
- Iridium used as a secure mobile modem

Horney: 

- Tested. Being paired with small bgan terminals
- It is a HAIPE and SCIP device in small form factor, IMO. NICHE product...but large niche.

- Identity Management is keystone to AtHoc and other capabilities.
- Stryker as a tactical hardened access point???? Identity Management of compromised asset.

- SME-PED...what doesn't it do? Current role out is limited. Distribution will be limited by economics.
- What is the follow up communication ability for the topic/audience? Wiki, and series web recording. 
- The infrastructure isn't there yet. (Horney)
- The device is 1st Gen and has been oversold. (Horney)
- It's all aobut control. Tell a 4 star CG that his systems are under someone else's control.

Soldier Side...is it 2 factor authenticate....maybe 

- It makes the individual a target, no? Walking around with the network.

Zirkle: 

- New devices come out 12-15 months, support cycles are reduced. Can SME-PED keep up?

Horney: 

- Lifecycle isn't a SME-PED problem, it is a crypto problem.

Treat it like IT...but it is comsec. Leave no crypto behind.

How do we allow for multiple ID's to access a single device? General Officer having his/her aide sort email.

NCS 3-10 requires organizational addresses in documentation. Is there a place I can go (I love data and cause/effect), that graphical represents the most problematic challenges that is faced and ties it to ongoing efforts (cause effect)? 

- NII is trying to collect that data (Mr. Lentz addressed it).

For Dr. Horney: Will the infrastructure support multiple wireless concepts? Available to GIG as part of .mil? 

- The infrastructure referred to was strictly SME-PED support. Big issue was approval of email server package.
- Quick: DISA stepped up with MCEP, Apriva and the DECC
- Zirkle: Wireless means a lot of things. There are approved architectures, and they are generational. 802.X for example. DISA has released a WLAN framework (controls, etc..). The community has avoided defining architecture to allow it to remain flexible.
Retrieved from "http://www.afcea.org/wiki/index.php?title=Assured_Session_III"
Personal tools