April 11, 2023 | International, Other Defence
US Army official reveals watercraft, networks as logistics focus areas
The Army is taking steps to master contested logistics by focusing on key modernization requirements taking shape now.
September 16, 2020 | International, Naval, Other Defence
Fewer Threats, More Bandwidth: DISA Awards $199M For Cloud Browsing
Leaving the browser and its history in a virtual environment spread across any number of servers makes it harder for adversaries to target the military's actual computers or tablets.
ALBUQUERQUE: The Defense Information Systems Agency awarded $198.9 million for a Cloud Based Internet Isolation contract to Menlo Security and By Light, the agency announced today. DISA hopes Menlo Security's tech can, by keeping downloads in the cloud, reduce harmful downloads across the entire Pentagon workforce. By keeping browsing inside the cloud, the program will save on bandwidth, and protect against the department's 3.5 million users accidentally downloading malware.
It is a kind of “air-gapping,” the style of computer security that keeps networks safe by making sure that computers are not physically connected at all times. Leaving the browser, and all its contained history, in a virtual environment in any of a number of servers makes it harder for adversaries, be they criminals, nonstate actors, or nations, to target the actual computers or tablets used by the military.
Internet browsing is mostly downloading files directly to the end-user's computer or mobile device. What the Cloud Based Internet Isolation (CBII) does is make sure that all that downloading happens, not on the end user's computer, but instead in a remotely secured server.
“The remote worker will perform the task of going to their net or an Internet based application, that fetch and execute,” Menlo Security VP Mike Fraga says. What is different is that, instead of downloading directly onto the user's device, “getting the information and actually queuing is done in a disposable container in Menlo cloud. And so then we replicate what's happening on the application or the internet down on a remote workers device.”
In essence, CBII promises to do all this while making the user experience virtually indistinguishable from having the browser directly running on the computer. Users are functionally interacting with an image of a browser window, instead of the browser itself, but that illusion should be imperceptible.
“That's going to significantly reduce the risk in the attack surface,” said By Light VP Jason Cole, “alleviating all the congestion at those Internet access points.”
For security purposes, this means that instead of monitoring all traffic for harm on every device, the Pentagon can instead look at the connection between computers and clouds. If a piece of malware was downloaded, it becomes a much smaller haystack of files for the forensics team to go through, since downloading to a computer becomes an active choice, instead of the passive function of browsing.
Many of the normal conveniences of browser-based functionality are continued within Menlo's cloud-based environment.
Instead of users having to log in anew to every site they visit every time they load the remote cloud, the software “maintains an encrypted cookie-jar in our cloud for each user that largely mirrors how the user's native browser handles cookies,” said Kowsik Guruswamy, Menlo Security CTO.
“When a user navigates to a site, Menlo injects the user's site-specific cookies into the isolated browser so they can stay logged in,” Guruswamy continued. “The encryption key for each user's cookie jar is stored in their own browser, such that only they can unlock the contents.”
Beyond the security of the environment, the move to cloud-based browsing also promises an overall savings in data use.
“We're estimating about a 20% bandwidth reduction for any general web browsing, but then a 50 to 70% bandwidth reduction for streaming media,” said Cole.
That savings is valuable everywhere, and is especially valuable in areas where bandwidth is already constrained, like on ships underway or at remote bases with low connectivity. Even in more domestic settings, the pandemic-induced shift to remote work often means users have to send data back through company-owned network infrastructure for security reasons, which eats up time in the process, and comes with risks.
“I think companies overall are struggling with not only the latency so that their end users can have a good experience to accomplish their job, but gaps in security based on all that backhauling, and there's some blind spots there,” said Fraga.
The servers are, like much of the cloud infrastructure available today, provided through Amazon Web Services. Menlo's approach is already in use with banks like JPMorgan Chase, HSBC, and AmEx.
“Isolation overall is an innovative technology,” said Fraga. Isolation, in the fashion promised by cloud-based browsing, is a preventative technology. It reduces the number of paths into computers, making it easier for other detection solutions to find the fewer threats that might slip through.
On the same subject
-
-
February 16, 2023 | International, Aerospace
Leonardo and BAE Systems approach international market with interoperable aircraft survivability suite
The collaboration will see the two domain experts offering the interoperable system to international customers, including the many existing operators of the AN/AAR-57 CMWS
-
May 13, 2019 | International, Aerospace, Naval, Land, C4ISR, Security, Other Defence
Contract Awards by US Department of Defense - May 10, 2019
DEFENSE LOGISTICS AGENCY LiteFighter System LLC,** Canton, Georgia, has been awarded a maximum $200,000,000 firm-fixed-priced, indefinite-delivery/indefinite-quantity contract for commercial-off-the-shelf shelters and tents. This was a competitive acquisition with one response received. This is a 12-month base contract with three one-year option periods. Locations of performance are Kentucky, Mississippi and Georgia, with a May 9, 2020, performance completion date. Using military services are Army, Navy, Air Force and Marine Corps. Type of appropriation is fiscal 2019 through 2020 defense working capital funds. The contracting activity is the Defense Logistics Agency Troop Support, Philadelphia, Pennsylvania (SPE1C1-19-D-1130). Buffalo Supply Inc., Lafayette, Colorado, has been awarded a maximum $42,422,105 fixed-price with economic-price-adjustment, indefinite-delivery/indefinite-quantity contract for medical/surgical supplies. This was a competitive acquisition with 16 responses received. This is a five-year contract with no options. Location of performance is Colorado, with a May 9, 2024, performance completion date. Using customers are Army, Navy, Air Force, Marine Corps and federal civilian agencies. Type of appropriation is fiscal 2019 through 2024 defense working capital funds. The contracting activity is the Defense Logistics Agency Troop Support, Philadelphia, Pennsylvania (SPE2DE-19-D-0008). Varec Inc., Norcross, Georgia, has been awarded a maximum $25,998,175 firm-fixed-price, indefinite-delivery/indefinite-quantity contract for electronic point of sales and supporting services for fixed facility fuel distribution devices. This was a competitive acquisition with four responses received. This is a five-year base contract with 10 one-year option periods. Location of performance is worldwide support, both in the continental U.S. and outside the continental U.S. (OCONUS), with a May 9, 2024, performance completion date. Using military services are Army, Navy, Air Force, Marine Corps, National Guard and Coast Guard. Type of appropriation is fiscal year 2019 through 2024 defense working capital funds. The contracting activity is the Defense Logistics Agency Contracting Services Office, Columbus, Ohio (SP4702-19-D-0002). Transaero Inc.,* Melville, New York, has been awarded a maximum $10,504,719 firm-fixed-price, indefinite-delivery/indefinite-quantity contract for air data computers. This was a limited competitive acquisition using justification from Federal Acquisition Regulation 6.302-1(a)(2), which states only one responsible source and no other supplies or services will satisfy agency requirements, and extended to include only one or a limited number of responsible sources. This is a five-year contract with no option periods. Locations of performance are New York and the United Kingdom, with a May 10, 2024, performance completion date. Using military service is Army. Type of appropriation is fiscal 2019 through 2024 Army working capital funds. The contracting activity is the Defense Logistics Agency Aviation, Redstone Arsenal, Alabama (SPRRA1-19-D-0074). ARMY Northrop Grumman Systems Corp., Sierra Vista, Arizona, was awarded a $163,588,331 cost-plus-fixed-fee contract for Hunter unmanned aircraft system fleet support for operations, maintenance, engineering, re-engineering and remanufacturing. One bid was solicited with one bid received. Work will be performed in Sierra Vista, Arizona, with an estimated completion date of May 9, 2020. Fiscal 2019 operations and maintenance, Army funds in the amount of $41,883,787 were obligated at the time of the award. U.S. Army Contracting Command, Redstone Arsenal, Alabama, is the contracting activity (W58RGZ-19-C-0033). Raytheon Missiles Systems, Tucson, Arizona, was awarded a $101,333,802 modification (P00014) to contract W31P4Q-17-C-0194 to procure Tactically-Launched Optically-Tracked Wireless-Guided missiles. Work will be performed in Tucson, Arizona, with an estimated completion date of Aug. 31, 2022. Fiscal 2017 other procurement, Army funds in the amount of $101,333,802 were obligated at the time of the award. U.S. Army Contracting Command, Redstone Arsenal, Alabama, is the contracting activity. HHI Corp.,* Ogden, Utah, was awarded a $48,000,000 firm-fixed-price contract repair and construction at Hill Air Force Base, Utah. Bids were solicited via the internet with four received. Work locations and funding will be determined with each order, with an estimated completion date of May 9, 2026. U.S. Army Corps of Engineers, Sacramento, California, is the contracting activity (W91238-19-D-0071). G.L.H.C. Services Inc.,* Lumberton, North Carolina, was awarded a $13,000,000 modification (P00003) to contract W912HN-17-D-0004 for general construction and design-build construction. Work locations and funding will be determined with each order, with an estimated completion date of March 31, 2022. U.S. Army Corps of Engineers, Savannah, Georgia, is the contracting activity. Trend Construction Inc., Orlando, Florida, was awarded a $13,000,000 modification (P00004) to contract W912HN-15-D-0001 for general construction and design-build construction. Work locations and funding will be determined with each order, with an estimated completion date of March 25, 2020. U.S. Army Corps of Engineers, Savannah, Georgia, is the contracting activity. Lockheed Martin Corp., Grand Prairie, Texas, was awarded a $10,508,635 modification (P00049) to contract W31P4Q-16-C-0102 to develop and qualify a modular rocket pod and launch tubes for the Guided Multiple Launch Rocket System that will be adaptable to future munitions. Work will be performed in Grand Prairie, Texas, with an estimated completion date of Oct. 31, 2019. Fiscal 2018 missile procurement, Army funds in the amount of $10,508,635 were obligated at the time of the award. U.S. Army Contracting Command, Redstone Arsenal, Alabama, is the contracting activity. Milliman Solutions LLC, Seattle, Washington, was awarded a $9,010,000 firm-fixed-price contract to provide the U.S. Military Entrance Processing Command a commercial web-based prescription medication reporting system. Bids were solicited via the internet with two received. Work locations and funding will be determined with each order, with an estimated completion date of May 31, 2024. U.S. Army Health Contracting Activity, Fort Sam Houston, Texas, is the contracting activity (W81K04-19-D-0017). Science Applications International Corp., Reston, Virginia, was awarded an $8,339,000 modification (0001 34) to contract W31P4Q-18-A-0011 for systems engineering support. Work will be performed in Reston, Virginia, with an estimated completion date of May 3, 2020. Fiscal 2019 research, development, test and evaluation funds in the amount of $8,339,000 were obligated at the time of the award. U.S. Army Contracting Command, Redstone Arsenal, Alabama, is the contracting activity. AIR FORCE Harris Corp., Clifton, New Jersey, has been awarded $71,761,512 cost-plus-fixed-fee contract for engineering services. This contract provides for nonrecurring engineering services for AN/ ALQ-172 countermeasures systems, to include performing a form, fit, function, and interface replacement of the AN/ALQ-172 Line Replaceable Unit (LRU)-2, and LRU-3, documents and/or technical orders. Work will be performed in Clifton, New Jersey, and is expected to be complete by Nov. 9, 2022. This award is the result of a sole-source acquisition. Fiscal 2019 consolidated sustainment activity group-engineering funds in the full amount are being obligated at the time of award. Air Force Sustainment Center, Robins Air Force Base, Georgia, is the contracting activity (FA8522-19-C-0003). The Boeing Co., St. Louis, Missouri, has been awarded an $11,205,341 indefinite-delivery requirements contract for F-15 sustaining engineering services. This contract provides for post-production support tasks/services unique to the original equipment manufacturer as required to maintain an adequate level of continuous sustaining engineering and logistics support for the Air Force and Foreign Military Sales (FMS) F-15 fleets. Work will be performed primarily in St. Louis, Missouri, and is expected to be complete by Nov. 9, 2027. This contract involves FMS to Saudi Arabia and Israel. This award is the result of a sole-source acquisition. No funds are being obligated at the time of award. Air Force Life Cycle Management Center, Robins Air Force Base, Georgia, is the contacting activity (FA8505‐19‐D-0001). *Small business **Service-disabled veteran-owned small business https://dod.defense.gov/News/Contracts/Contract-View/Article/1844479/source/GovDelivery/