Shows & Panels
- The 2014 Big Picture on Cyber Security
- AFCEA Answers
- Ask the CIO
- Building the Hybrid Cloud
- Connected Government: How to Build and Procure Network Services for the Future
- Continuing Diagnostics and Mitigation: Discussion of Progress and Next Steps
- Federal Executive Forum
- Federal Tech Talk
- The Future of Government Data Centers
- The Future of IT: How CIOs Can Enable the Service-Oriented Enterprise
- The Intersection: Where Technology Meets Transformation
- Maximizing ROI Through Data Center Consolidation
- Mitigating Insider Threats in Virtual & Cloud Environments
- Modern Mission Critical Series
- Moving to the Cloud. What's the best approach for me
- Navigating Tough Choices in Government Cloud Computing
- The New Generation of Database
- Satellite Communications: Acquiring SATCOM in Tight Times
- Targeting Advanced Threats: Proven Methods from Detection through Remediation
- Transformative Technology: Desktop Virtualization in Government
- The Truth About IT Opex and Software Defined Networking
- Value of Health IT
- Air Traffic Management Transformation Report
- Cloud First Report
- General Dynamics IT Enterprise Center
- Gov Cloud Minute
- Government in Technology Series
- Homeland Security Cybersecurity Market Report
- National Cybersecurity Awareness Month
- Technology Insights
- The Cyber Security Report
- The Next Generation Cyber Security Experts
Shows & Panels
DoD has limited cyber situational awareness
Friday - 6/4/2010, 7:14am EDT
By Jason Miller
Federal News Radio
While most federal agencies are focusing on how best to continuously monitor their computer networks, the Defense Department is looking at the next step in securing their systems.
Army Gen. Keith Alexander, who took the helm of the Defense Department's new Cyber Command May 21, says the Pentagon must move to real time situational awareness and to a common operating picture.
"We have no situational awareness, it's very limited," says Alexander Thursday during a speech in Washington sponsored by the Center for Strategic and International Studies (CSIS) and AT&T. "Often times, our situational awareness is indeed forensics, which means something has happened. We are now responding to that and we are saying, 'Okay, something got through.'"
Alexander says DoD is basically policing their networks after the fact instead of mitigating threats or attacks in real time.
"We need real time situational awareness in our networks to see where something bad is happening and take action there at that time," he says. "That is both a coordination issue amongst the services and agencies, and a situational awareness issue. We do not have common operational picture for our networks. We need to get there. We need to build that."
One way DoD is trying to get there is by merging the staffs of the Joint Functional Component Command for Network Warfare and the Joint Task Force Global Network Operations (JTF-GNO) into a single operations center. Under this new office, the command is overseeing the command and control of all military networks at Ft. Meade, Md.
He compares the need for cyberspace situational awareness to what troops need on the battlefield-understanding where the adversary is going, where leading forces are going and performing reconnaissance.
"We must share indications and warning and threat data at Net speed among and between the various operating domains," he says. "We must synchronize command and control of integrated defensive and offensive capabilities also at Net speed."
Just as important, however, is the protection of privacy and civil liberties, Alexander says.
Several times during his speech he referred back DoD's focus on these issues.
Congressional concerns over privacy and civil liberties held up the creation of the Cyber Command and Alexander's eventual confirmation as its commander.
"It isn't entirely well understood what the roles are and responsibilities of DoD's Cyber Command will be and how they correlate with the National Security Agency," says Alan Raul, a partner with Sidley Austin and the former vice chairman of the Privacy and Civil Liberties Oversight Board. "The concerns really relate to the operation of this DoD entity with regard to U.S. domestic activities."
Raul adds DoD does take these privacy and civil liberties issues seriously, but some clarity in how they are addressing them would be more people at ease.
Alexander says much of how they approach privacy and civil liberty issues is classified.
"The way we have set up the oversight on that is by having a set of oversight mechanisms by all branches of the government: government, the court system and Congress, all need to play a part in that and know that the actions we are taking comport with the laws and protect civil liberties and privacy of our people," he says. "The hard part is we can't tell people what we did because we give up a capability that may be extremely useful in protecting our country and our allies. That is the two things we balance."
He adds that he spends a lot of time with the Foreign Intelligence Surveillance Court, members of Congress and others in the administration explaining what they are doing, where there are issues, where there needs to be change and what DoD can and cannot do.
Raul says that is why it's important for the Justice Department, the White House and lawmakers to make it clear to the public that they have reviewed what DoD is doing and are comfortable that all protections are working.
He adds that the Privacy and Civil Liberties Oversight Board, which has been dormant since January 2008, also would play a key role in reassuring the public.
"The board was intended to be an important component in the process of considering privacy and civil liberties issues," Raul says. "We were cleared to access relevant information and I would certainly assume that when, and if, the White House reinvigorates the board, the members would be given the necessary access."
An e-mail to the White House requesting comment on the status of the board was not immediately returned.