Cyber

The Defense Information Systems Agency (DISA) Cloud Based Internet Isolation prototyping effort is already eliminating cyber threats every day, says Angela Landress, who manages the program commonly known as CBII.

The program uses a little technological sleight of hand to keep non-secure Internet browsing in the secure Amazon Web Services (AWS) cloud rather than on the Department of Defense Information Network (DODIN). “What comes back from the cloud is actually just a video-like representation of the webpage. There’s nothing executable in it,” Landress explains.

Supply chain security has been of concern to government leaders for decades, but with attacks now originating in industrial control systems (ICS) from supply chain vulnerabilities and with an increasing reliance on the Internet of Things (IoT), Congress is stepping up its involvement. For example, legislators have promised that more stringent standards will soon be enforced.

Five cyber technology firms will vie for top honors as a six-month series of Innovation Showcase competitions reaches its climax on February 27 in Arlington, Virginia. These efforts are part of an ongoing attempt by AFCEA to apply the principle of the popular venture capital television show to bring new technologies to the attention of government organizations seeking vital solutions. Following the cyber technology Innovation Showcase, AFCEA will host another Innovation Showcase at its Small Business Innovation Summit on May 1.

The National Security Agency (NSA) has created a new Cybersecurity Directorate as a recognition that “the best defense against devastating cyber attacks is to unify as a nation against our threats,” the agency has announced.

The U.S. arsenal boasts diverse weapons that share a common cybersecurity challenge: They depend on power generated by U.S. Defense Department or civilian-owned infrastructures that are increasingly vulnerable to cyber attack. Disrupting the availability of these power systems could impact not only the United States’ ability to project U.S. military power globally but also to respond to a domestic attack.

A new federal cyber academy aims to help relieve the shortage in skilled cyber workers. The inaugural Federal Cybersecurity Reskilling Academy graduating class demonstrates that individuals with high aptitude and motivation can be successful in technical training and can gain the skills needed to enter the national cybersecurity workforce.

Given increasing threat levels, the Air Force is employing cybersecurity measures to protect its data, especially to safeguard information that is weather-related and feeds into military decision making. The service is applying mission defense teams, or specialized cybersecurity crews, to safeguard weather intelligence. The cyber mission defense team structure is in action at the 557th Weather Wing at Offutt Air Force Base in Omaha, Nebraska.

Government agencies are working together much more effectively as they counter terrorism and state-sponsored attacks in cyberspace. But more remains to be done as adversaries introduce new tactics and capabilities.

A panel comprising the top U.S. intelligence officials reviewed these issues as they closed out the AFCEA/INSA Intelligence & National Security Summit on September 5. Their points ranged from foreign interference in U.S. elections to cooperation—or the lack thereof—from industry with the U.S. government.

The secret word is out and crypto is in as government and commercial experts lay the groundwork for the next generation of identity proving and authentication. Passwords are being abandoned in favor of a range of new methods that are more secure and, in some cases, more user friendly.

Biometrics are just part of the solution. They have been paired with public key cryptography in preliminary efforts. Ultimately, the solution may emerge from an entirely new concept of identity that applies across a broad spectrum of applications.