美国防信息系统局修订战略规划 聚焦三大技术领域(英文)

2020-12-03  智邦网

编译 致远

11月30日,美国防信息系统局(DISA)发布新修订的2021-2022财年战略规划,明确直接关注实现总体任务目标的三大核心技术领域,即网络防御、云计算和防务体系办公室解决方案,后者是一个新的办公设备合同。

该局的网络防御战略重点开发对用户访问系统的零信任模型。

为此,战略规划提出,该局必须明确零信任体系架构的定义,制定相关政策,试验和形成能力体系。

该局正在与国家安全局、美国网络司令部和五角大楼首席信息官合作建立零信任实验环境,开发试验零信任相关技术。

计划使用军部和从商业供应商提供的威胁情报系统扩大网络防御范围,该计划预计2022财年完成。

还计划通过基于云计算的互联网促进网络安全隔离,年初授予1.99亿美元合同。

战略规划提出加强区域防御和终端安全管理,该局计划推进“联合区域安全堆栈”计划并持续更新技术。

该局还计划通过“统一接口”计划加强网络终端安全,

计划2021财年推出“系统补丁管理”服务,为国防部相关部门打造统一软件修复平台。

战略规划提出云系统三大业务重点,包括“基于云的网络隔离”、“云访问及安全性”和“云基础设施”系统。


DISA pinpoints three technology areas in revised strategic plan

 The U.S. Defense Information Systems Agency released a revised strategic plan Monday for fiscal 2021 and 2022 that identifies three core technology areas of focus where the agency “must direct our attention to achieve our overall mission objectives.”

The areas are cyber defense, cloud computing and Defense Enterprise Office Solutions. The latter is a new office tools contract. This is the second version of DISA’s strategic plan for fiscal 2019-2022, which was originally released in 2019.

“This refresh incorporates updates to our priorities in light of a changed strategic environment characterized by rapidly shifting global and cyberspace landscapes,” the introduction stated. “In this era of technological advancement in the cyber domain, DISA is continually seeking new ways to meet the needs of the end user that demands responsive, resilient, secure and high-quality IT services.”

In her letter from the director, Vice Adm. Nancy Norton noted that the Defense Department relied on DISA, as its top IT combat-support agency, to enable telework and COVID-19 pandemic response. The pandemic kicked off remote work for many of the department’s employees, which brought with it greater cybersecurity risks and sped up conversations around zero-trust cybersecurity architectures, senior IT officials at the Pentagon have said this year.

DISA’s cyber defense strategic focus area centers around zero trust, a model that inherently distrusts users trying to access systems. To enable that architecture, the strategic plan states that DISA must define the zero-trust reference architecture, which Norton said will be released by the end of the calendar year, develop policy, and test and implement capabilities.

Right now, DISA is working with the National Security Agency, U.S. Cyber Command and the Pentagon’s chief information officer to develop a zero-trust lab environment “to replicate existing and near-state technologies to test zero trust capabilities,” the plan stated.

DISA also plans to bolster cyber defenses at network boundaries using threat intelligence, both internally and from commercial vendors. It plans to complete this project in FY22. The agency will also boost cybersecurity through cloud-based internet isolation, for which DISA awarded a $199 million other transaction authority contract earlier this year.

The strategic plan also lays out increasing regional defenses and endpoint security. DISA plans to sustain its Joint Regional Security Stacks as well as update the stacks through technology refreshes in FY21 to FY22.

DISA also plans to enhance endpoint security through the Comply to Connect program, a cybersecurity program that boosts network security. Sunsetting legacy systems and migrating to Comply to Connect started in FY20 and is expected to end in FY22. DISA also plans to stand up its Enterprise Patch Management Service by FY21 so Pentagon components have a centralized platform to find software fixes.

In terms of the cloud, DISA highlights several agile software development activities as key enablers for the department’s cloud mission, including a DevSecOps framework, a DevOps metrics model and a departmentwide community of practice. The strategic plan lists three major lines of effort for the cloud, including the Cloud Based Internet Isolation tool. The other two are cloud access and security, and cloud infrastructure. For access and security, DISA wants to establish enterprise identity and authentication for the department’s cloud environments and “evolve” its cloud access and security offerings.

“During this strategic time frame, we will host critical traditional systems, divest outdated legacy computing systems, and where appropriate, shift to cloud-based alternatives,” the plan read. “We are actively onboarding new mission-critical applications and working toward an infrastructure technical refresh for [Non-classified Internet Protocol Router Network] and [Secret Internet Protocol Router Network] in 2021.”

For cloud infrastructure, DISA wants to deploy milCloud 2.0 on the SIPRnet and integrate common services that will be provided through the Joint Enterprise Defense Infrastructure cloud, the Pentagon’s long-delayed enterprise cloud.

The final area, the Defense Enterprise Office Solution, is a commercial cloud offering that will provide the Microsoft Office suite across the department in an effort to standardize tools and applications across the department. The $4.4 billion contract was recently re-awarded to General Dynamics Information Technology after several protests.

“In this strategic time frame, we will facilitate migration from legacy enterprise services to DEOS, and sunset legacy services,” the strategic plan read. “This includes standing up, testing and authorizing NIPRNet services within the continental United States, as well as initiating OCONUS and SIPRNet services.”


相关信息

美军联合人工智能中心促进国防部系统AI赋能(英文)

美陆军大脑信号研究取得进展(英文)

DARPA新局长谈未来发展重点(英文)

外媒:拜登重启核议程要做好四项重点工作(英文)

美中情局斥资数百亿美元授出多供应商情报体系云合同(英文)

美军计划在印太关键要隘部署新编“第一舰队”(英文)

2025年全球军用机器人市场增至242亿美元(英文)

美陆军新建士兵和班组生命体征研究所(英文)

英国出台国家安全与国防工业保护新法规(英文)

美国防部启动“防务系统升级”云现代化计划(英文)

美太空作战司令部明确五大优先重点(英文)

DARPA分布式作战管理系统用于美陆军“项目融合”计划(英文)

英国防部颁布新科技战略  聚焦五大领域(英文)

美国发布《国家关键与新兴技术战略》(英文)