14 août 2018 | International, Aérospatial, Naval, Terrestre, C4ISR
The Pentagon has a new goal aimed at protecting its $100 billion supply chain from foreign theft and sabotage: to base its weapons contract awards on security assessments — not just cost and performance — a move that would mark a fundamental shift in department culture.
The goal, based on a strategy called Deliver Uncompromised, comes as U.S. defense firms are increasingly vulnerable to data breaches, a risk highlighted earlier this year by China's alleged theft of sensitive information related to undersea warfare, and the Pentagon's decision last year to ban software made by the Russian firm Kaspersky Lab.
On Monday, President Trump signed into a law a provision that would bar the federal government from buying equipment from Chinese telecommunications firms Huawei and ZTE Corp., a measure spurred by lawmakers' concerns about Chinese espionage.
“The department is examining ways to designate security as a metric within the acquisition process,” Maj. Audricia Harris, a Pentagon spokeswoman, said in a statement. “Determinations [currently] are based on cost, schedule and performance. The department's goal is to elevate security to be on par with cost, schedule and performance.”
The strategy was written by Mitre Corp., a nonprofit company that runs federally funded research centers, and the firm released a copy of its reportMonday.
“The major goal is to move our suppliers, the defense industrial base and the rest of the private sector who contribute to the supply chain, beyond a posture of compliance — to owning the problem with us,” said Chris Nissen, director of asymmetric-threat response at Mitre.
Harris said the Pentagon will review Mitre's recommendations before proceeding. She added that the Department of Defense, working with Congress and industry, “is already advancing to elevate security within the supply chain.”
Testifying to Congress in June, Kari Bingen, the Pentagon's deputy undersecretary for intelligence, said: “We must have confidence that industry is delivering capabilities, technologies and weapon systems that are uncompromised by our adversaries, secure from cradle to grave.”
Security should be seen not as a “cost burden,” she told the House Armed Services Committee, “but as a major factor in their competitiveness for U.S. government business.”
The new strategy is necessary, officials say, because U.S. adversaries can degrade the military's battlefield and technological advantage by using “blended operations” — hacking and stealing valuable data, manipulating software to sabotage command and control systems or cause weapons to fail, and potentially inducing a defense firm employee to insert a faulty component or chip into a system.
“A modern aircraft may have more than 10 million lines of code,” Mitre's report said. “Combat systems of all types increasingly employ sensors, actuators and software-activated control devices.”
The term “Deliver Uncompromised” grew out of a 2010 meeting of senior counterintelligence policy officials, some of whom lamented that the Defense Department was tolerating contractors repeatedly delivering compromised capabilities to the Pentagon and the intelligence community.
Addressing the security issue requires greater participation by counterintelligence agencies, which can detect threats against defense firms, the report said, and ideally, the government should establish a National Supply Chain Intelligence Center to monitor threats and issue warnings to all government agencies.
Ultimately, the military's senior leaders bear responsibility for securing the supply chain and must be held accountable for it, the report said.
The Defense Department, although one of the world's largest equipment purchasers, cannot control all parts of the supplier base. Nonetheless, it has influence over the companies it contracts with as it is the principal source of business for thousands of companies. It can shape behavior through its contracts to enhance supply-chain security, the report said.
Legislation will be needed to provide incentives to defense and other private-sector companies to boost security, Mitre said. Congress should pass laws that shield firms from being sued if they share information about their vulnerabilities that could help protect other firms against cyberattacks; or if they are hacked by a foreign adversary despite using advanced cybersecurity technologies, the report said.
Contractors should be given incentives such as tax breaks to embrace supply chain security, the report suggested.
The Department of Homeland Security is addressing the security of the information technology supply chain through its newly established National Risk Management Center. “What we're saying is you should be looking at what vendors are doing to shore up their cybersecurity practices to protect the supply chain,” said Christopher Krebs, DHS undersecretary for the National Protection and Programs Directorate.
The National Counterintelligence and Security Center, an agency of the Office of the Director of National Intelligence that coordinates the government's counterintelligence strategy, said in a report last month that software-supply-chain infiltration has already threatened critical infrastructure and is poised to endanger other sectors. According to the NCSC, last year “represented a watershed in the reporting of software supply chain” attacks. There were “numerous events involving hackers targeting software supply chains with back doors for cyber espionage, organizational disruption or demonstrable financial impact,” the agency found.
15 mai 2023 | International, Aérospatial
French President Emmanuel Macron said in an interview with France's TF1 television on Monday that France is open to training Ukrainian fighter jet pilots in France and that those training programmes could start right away.
13 novembre 2020 | International, Aérospatial, C4ISR
Nathan Strout WASHINGTON — The U.S. Space Force has awarded Lockheed Martin a contract to build a new anti-jamming communications satellite prototype, bringing the number of companies working on that program to three. Under the contracts, each company will develop a prototype payload for the Evolved Strategic Satellite Communications program. ESS is intended to be the successor to the Advanced Extremely High Frequency constellation, which provides secure, survivable SATCOM for strategic communications. “We understand the mission and the threat, and we're committed to providing the Space Force and our war fighters with the best protected communications solutions for the Evolved Strategic SATCOM program that will help us stay ahead of the growing threat,” a Lockheed Martin spokesperson said in a statement. Lockheed is the third company to be selected for the prototyping effort, having been awarded $258 million on Nov. 9. This follows a $298 million award to Northrop Grumman in September and a $298 million contract to Boeing in October. The prototypes are due to be completed in five years in the order in which they were awarded, with Northrop Grumman and Boeing given a May 2025 deadline and Lockheed given a June 2025 deadline. Lockheed's contract is expected to be the final ESS prototyping award, as Space Force 2021 budget documents noted that the service planned to issue three contracts at most. “This approach will award up to three contracts in FY 2020 to focus on reducing space segment risks with the objective of maximizing ESS demonstrated capability for the payload and other key technologies,” the budget proposal read. All three prototyping contractors will be brought through follow-on source selection until the follow-on contract is ultimately awarded. ESS satellites are expected to work with and eventually replace the Advanced Extremely High Frequency, or AEHF, satellites, the sixth and final of which was launched into orbit in March. However, ESS will differ from its predecessor in a few key ways. First, the new satellites will have enhanced resilience and cybersecurity capabilities, according to the Space Force. Also, the ESS constellation will include polar coverage — something not currently provided with AEHF. Instead, AEHF relies on the Enhanced Polar Systems satellites to extend the network over the polar regions. https://www.c4isrnet.com/battlefield-tech/space/2020/11/12/space-force-awards-third-contract-for-anti-jamming-satcom-prototypes/
28 septembre 2020 | International, Aérospatial, Naval, Terrestre, C4ISR, Sécurité, Autre défense
Andrew Eversden WASHINGTON — North Carolina-based defense technology company Curtiss-Wright announced Sept. 24 that it had entered into an agreement to acquire Pacific Star, a major tactical communications vendor for the U.S. Army. Curtiss-Wright, based in North Carolina, bought PacStar for $400 million in an effort to boost its network communications business. According to a press release from Curtiss-Wright, PacStar's business will operate within the Curtiss-Wright defense business and is expected to generate $120 million in sales in 2020. “The acquisition of PacStar establishes Curtiss-Wright as a critical supplier of advanced tactical and enterprise network communications solutions supporting a broad spectrum of high-priority U.S. military force modernization programs,” said David C. Adams, chairman and CEO of Curtiss-Wright Corporation, in a statement. “The combination of Curtiss-Wright's mission-critical mobile and secure COTS-based processing, data management and communications technologies with PacStar's highly complementary hardware and software solutions will enable us to deliver best-in-class platform network integration and tactical data link network management to the warfighter.” Curtiss-Wright ranked No. 72 in Defense News' Top 100 annual report on the world's largest defense companies. PacStar is an important vendor for the Army's tactical network modernization effort, where it provides products to improve tactical expeditionary communications. Back in July, PacStar was awarded work to support the fielding of satellite baseband communications to three Expeditionary Signal Battalion-Enhanced (ESB-E) units by Army Program Executive Office Command, Control, Communications-Tactical. PacStar also provides networking and communications capabilities for the Marine Corps' Networking On-The-Move (NOTM) program. “PacStar, which represents the largest transaction in Curtiss-Wright's recent history, is well-positioned to benefit from the military's continued investment in robust, secure and integrated battlefield network management and is expected to yield significant opportunities for revenue growth," Adams said. "Further, this acquisition supports Curtiss-Wright's financial objectives for long-term profitable growth and strong free cash flow generation within our disciplined and balanced capital allocation strategy.” https://www.c4isrnet.com/industry/2020/09/25/curtiss-wright-acquiring-pacstar-for-400-million/