The U.S. Defense Information Systems Agency (DISA) is helping lead the charge to bring more mobility, cloud computing and information sharing to the Defense Department. Sweeping changes ahead aim to make secure and nonsecure communications possible down to the handheld level. In this month's issue of SIGNAL Magazine, Technology Editor George I.
While the general perception is that a cloud is a cloud, that won't be the case for government agencies. Experts revealed more specifics about federal, state and local migration to cloud computing during the first panel at AFCEA International's Homeland Security Conference. Eventually a governmentwide cloud for all services and data may be created, but today, while some services can move to the cloud environment, others will require customized clouds. For example, email services are a good candidate for the cloud, but those agencies that require extra security are likely to create private clouds for data storage and exchange.
A recently released draft plan provides a road map for federal agencies and industry to navigate through the development of the cloud-computing model. In the January issue of SIGNAL Magazine, Technology Editor George I. Seffers explores the document in his article, "Hitting the Hard Spots on the Road to Cloud."
From securing the cloud to unwrapping new architecture compliance requirements, 2011 was a busy year for the tech public sector. In the New Year's spirit of renewal and rededication, here are five resolutions federal agencies should make. 1. Leverage IT to meet budget requirements The government fiscal landscape changed radically in the last year with budget cuts across the majority of federal agencies. The Obama's Administration fiscal 2012 budget proposal calls for a five-year discretionary spending freeze along with $33 billion in additional cuts. Yet, there is a reason why federal IT spending to commercial contractors is expected to grow five percent annually.
Telcordia Technologies Incorporated of Piscataway, New Jersey, is being awarded a $7,111,956 cost plus fixed fee contract to research, develop, test, and deploy the Autonomous Collaborative Control for Resilient Cyber Defense system. The focus will be on the development of a clean slate approach to engineer cloud computing infrastructure that designs out known vulnerabilities and provides the ability to contain previously unknown attacks to recover with immunity. Deliverable items are software, hardware, and technical reports. Air Force Research Laboratory, Rome New York, is the contracting activity.
SRI International of Menlo Park, California, is being awarded a $7,491,195 cost plus fixed fee contract to be a companion program to the existing Clean-slate design of resilient, adaptive, secure hosts (CRASH) effort. CRASH takes a clean-slate approach to limiting the vulnerabilities within each host. Modular research-based composably trustworthy mission-oriented resilient clouds is concerned with the amplifying effect of the network, seeking to turn this around and use the network as a vulnerability damper and a source of resiliency. Deliverable items include prototype software, hardware and reports. Air Force Research Laboratory, Rome New York, is the contracting activity.
International Business Machines Corporation, Global Government Industry, Bethesda, Maryland, is being awarded a $12,171,809 firm-fixed-price and cost-reimbursement contract for Enterprise Information Services Production Environment, a cloud-like "platform as a service" information technology hosting environment used to host classified and unclassified Air Force data and software programs. Electronic Systems Center, Wright-Patterson Air Force base, Ohio, is the contracting activity.
It's been slow going for Defense Department IT since the Clinger-Cohen Act of 1996 mandated creating the Information Technology Architecture. In 1999, the Federal Chief Information Officers Council defined the Federal Enterprise Architecture (FEA). It's now 2011, and according to a Government Accountability Office report, the enterprise architecture methodology still has not deployed. In his viewpoint article "About Face" in this issue of SIGNAL Magazine, Paul A.
Industry leaders are working hard to identify and create the Internet of the future, and News Editor Rita Boland digs in with an examination of this virtual "ground breaking" in cyberspace in her article, "Upcoming Online Experiences," in this issue of SIGNAL Magazine. The piece is the first in a four-part SIGNAL semaphore series: The Future of the Internet. Kevin Orr, Cisco Corporation's vice president of U.S.
The computing device shouldn't matter, nor its provider: Defense Department personnel just want their information securely, by authorized channels, in a timely manner. Department customers want personal information assistants (PIAs), adapted to their position, training level and necessary connections. Paul A. Strassmann discusses the potential way forward in his article, "A Culture Shock Is Coming," in this issue of SIGNAL Magazine. Info sources must include data received from people, sensors or public websites.
With the thousands of applications running on U.S. Defense Department networks, programmers have literally been dream weavers, pulling together the pieces necessary to make these systems fully functional. Hundreds of contracting organizations are tied up in these networks, making it a monumental challenge to pool all resources into an efficient, future "whole." But as with any evolution, it cannot take place overnight. In his second installment in a series of articles covering defense information technology, Paul A.
Autonomic Resources recently announced that it has been awarded one of the General Services Administration's first blanket purchase agreements for the first government-wide contract for cloud computing. Under this agreement, Autonomic Resources will offer public cloud services to provide U.S. government customers with simplified computing power, storage, and networking infrastructure that can be acquired and utilized on-demand, all from certified data centers with enhanced multi-factor authentication access. Autonomic Resources is one of only a few vendors to have met the technical requirements necessary to be awarded a GSA contract for cloud computing.
Apps Tap into Cloud Computing
The hard-hitting storms that beleaguered parts of the United States this year taught the East Coast a valuable lesson-sometimes you just can't get to work. But with immovable deadlines tasks still must be accomplished. One way offices can continue to function with personnel in disparate locations (assuming they all have power) is by storing documents in locations other than organizations' computer drives. Using the Internet as a storage device enables people to continue to move work forward, even if they can't get out the front door.
Terry Halvorsen, the Defense Department’s acting chief information officer, is expected very soon to release a new policy revising the role the Defense Information Systems Agency (DISA) plays in brokering cloud services. The changes are designed to speed cloud service acquisitions by preventing bottlenecks created by having only one agency act as broker. DISA no longer will be the sole acquisition agency, but it will continue to ensure network access to cloud service providers is secure and reliable, agency officials say.
There are no do-overs when it comes to safeguarding the U.S. military’s sensitive data. With that key, concise and blunt notion in mind, defense leaders say they are taking a slow, methodical, multipronged approach as the Defense Information Systems Agency develops a cloud security model for the whole of the Defense Department.
With current security controls too strict and limiting, agency personnel are sleuthing for the ideal balance that would let a greater number of commercial cloud service providers compete for billions in federal funding, while still safeguarding national security. Their goal is to determine what might be safe—and what might be safe enough.
The U.S. government is adopting changes to the cloud computing certification program that will better protect against potential insider threats. The improvements include additional penetration testing, more thorough testing of mobile devices, tighter controls over systems being carried from a facility and more stringent scrutiny of systems connecting from outside the network.
When cloud computing revolutionized the way businesses stored, processed and transmitted data, the rapid transformation—as with a lot of technological advances—left U.S. government agencies behind the times. The government’s hurried effort to align itself with the paradigm shift from traditional stand-alone computers, workstations and networks to the not-quite-understood cloud computing technology left a policy aperture fraught with challenges that caught some agencies unprepared—particularly adjuncts in inspector general and general counsel offices.
As organizations migrate more data into public clouds, demands for a different type of security are emerging. A specialized option is available now for Amazon Web Services that aims to mitigate threats more quickly by finding them faster and suggesting methods of remediation.
Known as the Evident Security Platform for Amazon Web Services (ESP for AWS), the technology offers a solution expressly designed for the Amazon environment. It has a rapid deployment of five minutes or less and gives a dashboard view of identified threats. In the first week it launched, 50 companies of various sizes signed on for the platform, including several large, multinational corporations.
Explosive amounts of data and the strains on limited financial resources have prompted corporations and governmental agencies alike to explore joint tenancy in the cloud for storing, processing and transmitting data. But while good fences—or in this case isolation mechanisms—make good neighbors, in the virtual world of cloud security the idiom might not ring entirely true. In the public cloud arena, risks arise when organizations place their data in a cloud system but cannot control who their neighbors might be.