2020-08-09 智邦网
编译 致远
据breakingdefense网2020年8月7日报道
8月7日,美国防部首席信息官达纳·迪西宣布,国防部正在建立自己的体系云共享代码数据库管理系统,表明国防部除了100亿美元的JEDI体系云合同外,正在推进新的云计划。
名为“商业虚拟远程环境”(CVR)的新计划旨在打造“对目前国防部近100万用户提供语音、视频和聊天功能支持”的平台,支持多个云系统信息共享。
CVR要求用户下载桌面客户端,建立一个基于云的通信环境。
军队采用该系统的最初目的是应对新冠疫情,同时为15名患者提供出色的音频通话处理能力。
国防部通过扩展CVR系统功能,用于处理非机密信息,以及可公开发布的低密级“2级影响信息”,乃至“5级影响信息”,即只供官方使用的“可控未分类信息”和“国家安全系统”信息,使国防部系统在远程无缝环境中工作。
该计划旨在建立共享有用代码库,确保CVR从仅处理机密级别较低的信息角度转向处理更高级别保密信息,促进国防部和各军种云系统实现远程协同运营、信息有效共享。
Pentagon Code Library Will Support Multiple Clouds

ALBUQUERQUE: Military information is too important to store in a single cloud. Although the $10 billion JEDI contract dominates public conversation about military cloud services, the Pentagon’s Chief Information Officer Dana Deasy says the department is creating its own repository of shareable code for managing the constellations of clouds within the Pentagon.
Deasy’s call took place on the Commercial Virtual Remote Environment (CVR), itself a platform Deasy said last Thursday is “supporting nearly one million active DOD users with voice, video, and chat capabilities today.”
CVR, which requires users to download a desktop client, is a cloud-based environment for communication, and its adoption by the military in part comes as a needed response to the COVID-19 pandemic. As demonstrated, CVR ably handled audio for at least fifteen call participants, with more on the line.
CVR remains capable of handling unclassified information, but to truly enable the Pentagon to work remotely and seamlessly through the environment, work still needs to be done. CVR functions at an Information Impact Level of 2, for low confidentiality information suitable for public release.
“Now, the trick in doing that is you don’t want to lose the goodness of how we’ve been able to allow people to work off-net, so to speak, from their home, from their own types of devices,” said Deasy. “But how do you now transition to an [Impact Level 5] world which locks down things in a lot more restrictive way, and obviously, for very good reasons?”
An Impact Level 5, as outlined by DoD guidelines, Controlled Unclassified Information (like For Official Use Only) and National Security Systems. The plan, said Deasy, is to figure out how to pivot CVR from only handling information with a low confidentiality level to a greater degree of confidentiality by the end of the year.
Maintaining the cloud behind CVR, and the clouds behind other applications, means constant work updating and securing the cloud, work that only becomes more important the more sensitive information is available on the cloud’s servers. One approach for managing this is to build libraries of useful code to plug-and-play into existing systems to patch familiar problems.
“Obviously, when you think about sources like GitHub, it’s all about what we call, you know, the DOD version of it in terms of highly-secured,” said Deasy. “We’re really focused on, how do you take things like APIs (Application Programming Interface), micro-services, which are kind of the building blocks of reuse, where we’re trying to get coders out of the world of thinking that every time they need to make a call to something — you know, a simple thing like someone’s developing a repository to track troop movements and show the dots on a map.”
A shared repository of useful code means that, as the Pentagon works to sustain and use several clouds, the answer to a new problem could already be waiting and shared for a programmer to slot into place. If a certain string of code fixed the problem in an Air Force cloud, say, it is likely that same could could, if shared through this library, let an Army programmer fix a similar problem in an Army cloud. In this way, the code library saves the Pentagon from, first, reinventing the wheel, and second, from having to send dedicated specialists to a problem, instead of just sharing the work they already did remotely.
A library of useful code only works if everyone who might need it regularly uses that library. Deasy emphasized the role in training DevSecOps personnel within the Pentagon to use the repositories, tag and label code, and then most importantly, make the code shareable within the Department.
相关信息
DARPA加速推进AI网络战“自主软件助理”系统研发(英文)
美副防长谈高超声速/反高超声速武器三大任务、六大目标(英文)
第一台AN / SPY-6雷达阵列交付美海军新型导弹驱逐舰(英文)
美国防部联合人工智能中心重点聚焦信息战和网络攻防对抗(英文)