Back to news

December 19, 2018 | International, C4ISR

DoD IG: Military networks are exposed to ‘unnecessary’ cyber risks

By:

The military services are exposing networks to “unnecessary cybersecurity risks” thanks in part to a lack of visibility over software application inventories, according to a Department of Defense Inspector General report.

The IG investigated whether DoD components rationalized their software applications by identifying and eliminating any duplicative or obsolete applications. Rationalizing software applications seeks to improve enterprise IT by identifying all software applications on the network; determining if existing applications are needed, duplicative or obsolete; and determining if applications already existing within the network prior to purchasing new ones.

The audit — which focused on Marine Corps, Navy and Air Force commands and divisions — found that the groups examined did not consistently perform this rationalization process. By not having visibility into software application inventories, these organizations were unable to identify the extent of existing vulnerabilities within their applications, the report found.

Moreover, such a process could lead to cost savings associated with eliminating duplicative and obsolete applications.

Fleet Forces Command was the only command the IG reviewed that had a process in place for eliminating duplicative or obsolete applications. The Air Force did not have a process in place to prevent duplication when purchasing new applications.

The report placed blame on the DoD chief information officer for not implementing a solution for software rationalization in response to Federal Information Technology Acquisition Reform Act requirements.

The IG made three recommendations for the CIO, who did not provide a response to draft recommendations:

  • Develop an enterprisewide process for conduction software application rationalization throughout DoD;
  • Establish guidance requiring DoD components to conduct rationalization and require DoD component CIOs to develop implementation guidance outlining responsibilities for rationalization. Such a policy should also require components on at least an annual basis to validate the accuracy of their owned and in use software applications inventory; and
  • Conduct periodic review to ensure components are regularly validating the accuracy of their inventory and they are eliminating duplicative and obsolete applications.

https://www.fifthdomain.com/dod/2018/12/18/dod-ig-military-networks-are-exposed-to-unnecessary-cyber-risks

On the same subject

  • Design Gets Underway on DARPA’s ‘LongShot’ Drone

    February 9, 2021 | International, Aerospace

    Design Gets Underway on DARPA’s ‘LongShot’ Drone

    Feb. 8, 2021 | By Rachel S. Cohen Development of a new breed of unmanned aircraft is now underway, as three major defense companies earned contracts to start designing a future system known as “LongShot.” The LongShot program wants to create an unmanned weapons porter that can be shot from another plane before firing multiple air-to-air missiles itself, according to the Defense Advanced Research Projects Agency, which runs the effort. DARPA announced Feb. 8 it has funded General Atomics, Lockheed Martin, and Northrop Grumman to start design work in the project's first phase, but did not disclose how much money is part of those contracts. “The objective is to develop a novel [unmanned air vehicle] that can significantly extend engagement ranges, increase mission effectiveness, and reduce the risk to manned aircraft,” DARPA said in a release. “It is envisioned that LongShot will increase the survivability of manned platforms by allowing them to be at standoff ranges far away from enemy threats, while an air-launched LongShot UAV efficiently closes the gap to take more effective missile shots.” The project first appeared in DARPA's fiscal 2021 budget request as a prospective addition to the Air Force and Navy's inventories. The budget called for a plane that uses “multi-mode propulsion” to tackle multiple airborne threats at once, Air Force Magazine previously reported. The program called for $22 million in its first year. “LongShot will explore new engagement concepts for multi-modal, multi-kill systems that can engage more than one target,” DARPA wrote. “LongShot can be deployed either externally from existing fighters or internally from existing bombers.” Last year, the research agency suggested the aircraft could fly slowly toward its target at first to save fuel, then speed up once it gets close. “This approach provides several key benefits,” DARPA said. “First, the weapon system will have a much-increased range over their legacy counterparts for transit to an engagement zone. Second, launching air-to-air missiles closer to the adversary increases energy in terminal flight, reduces reaction time, and increases probability of kill.” The Pentagon hasn't said what weapons LongShot would carry, or how autonomous its software might be. On paper, LongShot appears similar to other efforts like the Air Force's previous Gray Wolf missile program, which looked to create a munition that could carry other weapons inside. That was discontinued in favor of the service's Golden Horde swarming bomb project. Later in the LongShot program, DARPA said, the companies will fly a full-scale prototype that is “capable of controlled flight before, during, and after” it is fired. The agency did not immediately answer how long the initial design phase will last. The fiscal 2021 budget also called for a new program entitled “Gunslinger,” a new air-launched missile armed with a gun that would be designed for Air Force and Navy missions. But that appears to have a murkier future than the LongShot. “The Gunslinger program has yet to formally launch and, at this time, we have no information on when that may happen,” DARPA spokesman Jared Adams said in December. https://www.airforcemag.com/design-gets-underway-on-darpas-longshot-drone/

  • Northrop Grumman secures $164M contract for Hawkeye aircraft for Japan

    September 7, 2018 | International, Aerospace

    Northrop Grumman secures $164M contract for Hawkeye aircraft for Japan

    By: Mike Yeo MELBOURNE, Australia — The contract for the last of four Northrop Grumman E-2D Advanced Hawkeye airborne early warning aircraft ordered by Japan has been awarded, as the country announces plans to reorganize its airborne early warning aircraft command. According to a Sept. 5 contract award announcement by the U.S. Department of Defense, Northrop Grumman has been awarded a $164 million firm-fixed-price modification to an existing contract for a new-build E-2D Advanced Hawkeye aircraft . This follows similar contract awards in November 2015, July 2016 and June 2018, and brings the total procurement cost for Japan for the four E-2Ds to $633 million, not inclusive of engineering and other related costs. The first Japanese E-2D is currently undergoing flight tests, having made its first flight from Northrop Grumman's Aircraft Integration Center of Excellence in St. Augustine, Florida, in October 2017, with delivery expected in late 2019. The E-2D is the latest variant of the E-2 Hawkeye carrierborne, airborne early warning aircraft, which is already being operated by the U.S. Navy. It features a new Lockheed Martin AN/APY-9 ultrahigh-frequency-band radar, which is able to detect and track cruise missiles and low-observable aircraft. However, the Japanese aircraft are not fitted with the Cooperative Engagement Capability, or CEC, like U.S. Navy E-2Ds. CEC is a sensor network with integrated fire control capability that combines data from multiple battle-force air-search sensors on CEC-equipped units into a single, real-time, composite track picture. Japanese media has also previously reported that the Defense Ministry is looking to equip its E-2Ds and Aegis-equipped destroyers with CEC, allowing the former to guide missiles fired by the latter. Full article: https://www.defensenews.com/air/2018/09/06/northrop-grumman-secures-164m-contract-to-modify-hawkeye-aircraft-for-japan

  • Boeing Australia confirms Loyal Wingman production centre

    October 6, 2020 | International, Aerospace, C4ISR

    Boeing Australia confirms Loyal Wingman production centre

    Jon Grevatt Boeing Australia has announced that Queensland, Australia, will be the manufacturing hub for the Loyal Wingman unmanned aerial vehicle (UAV) it is developing in partnership with the Royal Australian Air Force (RAAF). The company said in a joint statement with the Queensland government that the two parties have entered a partnership that will leverage Boeing's 1,700 staff in the state and its partnerships with 400 Queensland-based suppliers. Since 2018 Boeing has also undertaken a joint project with the Queensland state government to develop autonomous technologies that are supporting the Loyal Wingman programme. Boeing's regional president Brendan Nelson said the partnership will help support the development of capabilities in technologies, such as robotics, as well as facilitate investment in local companies and create export opportunities. “This investment could unlock global defence and aerospace opportunities for Queensland to gain future work share in other Boeing programmes,” he said. Queensland Premier Annastacia Palaszczuk said investment in the new aerospace facility could see the Loyal Wingman produced in the state by the middle of the decade, with prototype testing and certification taking place before that. She added, “Our investment in this advanced manufacturing project will provide critical skills for suppliers, academia, and Boeing, and culminate in Queensland becoming the primary final assembly facility for the Boeing Airpower Teaming System (ATS), conditional on orders.” Boeing rolled out the first Loyal Wingman prototype in early May and its first flight is scheduled before the end of 2020. https://www.janes.com/defence-news/news-detail/boeing-australia-confirms-loyal-wingman-production-centre

All news