8 août 2019 | International, Sécurité

The Air Force sends good guys in to hack its cloud

By: Andrew Eversden

The Air Force invited ethical hackers into its IT networks again this spring, allowing good guys the chance to infiltrate its enterprise-wide Air Force Common Computing Environment in search of vulnerabilities, the white hat hacking company Bugcrowd announced Aug. 6.

The bug bounty program, done in a partnership with Bugcrowd and the Air Force's CCE program office, found 54 vulnerabilities. Bug bounties work under the assumption that the customer, in this case the Air Force, will now close the loopholes the hackers found, making the system more secure.

The CCE cloud uses Amazon Web Services and Microsoft's Azure commercial cloud. The service plans to migrate more than 100 applications to that cloud environment, Bugcrowd executives said.

The largest payout from the bug bounty totaled $20,000. The event ran from March 18 to June 21 at Hanscom Air Force Base in Massachusetts.

Casey Ellis, Bugcrowd founder and CTO, said it was the first time Bugcrowd has worked with the Air Force. The Air Force has completed several other white hat hacking events with the firm HackerOne.

Ellis said that moving to the cloud from on-premise environment represents a “paradigm shift” for many organizations. Penetration testing is an important part of keeping that environment secure, he said. Bugcrowd conducted such tests in six phases: source code analysis, AWS environment testing, Azure environment testing, black box network authentication assessment, social engineering engagement and Air Force portal testing.

Bugcrowd declined to discuss how many vulnerabilities were found throughout each stage of the process.

According to a news release from the Air Force from April, the CCE currently houses 21 Air Force applications and "has room for countess more.”

The computing environment allows the Air Force to have a cloud to host its applications that reside on its Global Combat Support System, which is a centralized, cohesive enterprise resource planning system. The Air Force said in the April release that each migration costs $446,000 and that the service has spent more than $136 million on the program since 2016.

https://www.fifthdomain.com/dod/air-force/2019/08/06/the-air-force-sends-good-guys-in-to-hack-its-cloud/

Sur le même sujet

  • INNOVATION CENTER OPENS AT LOCKHEED MARTIN IN ORLANDO

    25 septembre 2018 | International, Aérospatial, Naval, Terrestre, C4ISR, Sécurité

    INNOVATION CENTER OPENS AT LOCKHEED MARTIN IN ORLANDO

    ORLANDO, Fla., Sept. 25, 2018 /PRNewswire/ -- Necessity sparks invention at the Innovation Center, now open at Lockheed Martin's (NYSE: LMT) Missiles and Fire Control (MFC) facility in Orlando, Florida. In this 6,500-square-foot space, employees are empowered with the technology and tools to develop creative solutions to complex problems. The company expects it to aid in the creation of new patents and the win of new multimillion-dollar contracts. Lockheed Martin IC-Opening-Sept 2018 "Innovation is our 'day job' — it is core to who we are and everything we do," said Frank St. John, executive vice president at MFC. "This facility gives employees the means to bring ideas from our unlimited imaginations to life. The result of which will help us invent technologies to solve previously unsolvable problems." Five specialized labs, a next-generation video conference capability and an interactive lobby serve more than 5,000 employees and counting amidst a hiring surge at the southwest Orlando facility. Virtual reality, robotics, computer-simulated environments, 3-D printing and more are available at workers' fingertips to encourage new ways of thinking and approaching business needs. The space will also host monthly hands-on demonstrations as well as live webcasts across the business. This is the second of its kind at MFC. In less than a year's time, the Innovation Center in Dallas, Texas, has helped secure millions of dollars' worth of captured programs. "The Innovation Center is a destination for our program teams to explore what's possible with the use of high technology," said Tom Mirek, vice president deputy of engineering and technology at MFC. "Like we already have in Dallas, we're going to recognize Orlando's Innovation Center for being a vital resource to the success of our company for years to come." Orlando's Innovation Center is comprised of five unique labs: The Application Research Experimentation & Simulation (ARES) facility allows teams to use their own computing environment and applications to conduct events on a rapidly reconfigurable 12-screen hyperwall. The Genesis Lab is where ideas are born, and one can incubate and develop concepts in a creative, resourceful environment — 24 hours a day, seven days a week. Employees have access to augmented and virtual reality, small robotics, Arduino, Raspberry Pi, high-powered computing, and 3-D printers. The Iris Lab offers an indoor robotics test bay for safe and controlled training, experiments, and research. The Engineering Visualization Environment Lab and its animators take complex ideas and bring them to life through feature-film quality renderings. The Polaris Lab employs sensor, optics and laser testing that provides rapid response for employees and program development. This is a fire-control-focused lab that can benchmark new technology. Opening early 2019. Employees in Orlando lead the aerospace and defense industry in their experience with technologies related to electro-optics, millimeter wave radar, image and signal processing, advanced materials, electronic packaging, and large-system integration. About Lockheed Martin Headquartered in Bethesda, Maryland, Lockheed Martin is a global security and aerospace company that employs approximately 100,000 people worldwide and is principally engaged in the research, design, development, manufacture, integration and sustainment of advanced technology systems, products and services. This year the company received three Edison Awards for ground-breaking innovations in autonomy, satellite technology and directed energy. SOURCE Lockheed Martin https://news.lockheedmartin.com/2018-09-25-Innovation-Center-Opens-at-Lockheed-Martin-in-Orlando

  • Detect Nukes In Flight With Electron Beam Technology

    8 août 2018 | International, Terrestre

    Detect Nukes In Flight With Electron Beam Technology

    SYDNEY J. FREEDBERG JR. So, I asked, could a sufficiently high-powered neutron beam not just detect a nuclear warhead from a distance, but actually disable it? Dent, who worked on the Safeguard missile defense system as a young Army officer and later on Reagan's Star Wars initiative for SAIC, pondered a moment. Then he said: “Could it fry the electronics ? Yes, it could." SPACE & MISSILE DEFENSE SYMPOSIUM, HUNTSVILLE, ALA.: Imagine a technology that could detect roadside bombs and landmines buried underground, pick out a nuclear warhead from a cloud of decoys miles away, or even fry enemy electronics, potentially disarming those warheads from a distance. Well, physicist William Dent has invented that technology and briefed its potential to the Army and industry here. It's called a neutron beam generator. Dent's idea is a potential breakthrough for bomb squads and missile defenses, enthused conference organizer David Mann, a three-star Army general who ran Space & Missile Defense Command here (SMDC) until his retirement in 2016. Despite the Star Trek-esque name, Mann told me after Dent's presentation, this is a feasible real-world technology, a matter of “when, not if.” Dent is already working with the Army to explore the low-hanging fruit: detecting buried explosives at a distance. Now, the military already uses neutron generators for this, because neutrons easily penetrate most materials (they have no electric charge to interact with and a lot of mass to give them momentum) but will stop and generate a distinctive burst of gamma rays when they hit high-density materials like explosives. The problem with current systems is their range is very short, anywhere from one meter to 20-plus depending on the size of the explosive and the depth to which it's buried. Why? Traditional neutron generators shoot off neutrons indiscriminately in all directions, the same way a light bulb emits light. That means the neutrons spread out rapidly, in fact exponentially (specifically, divide strength at the source by the square of the distance). Very soon, there are too few of them hitting any particular target to trigger enough gamma radiation to detect. Full Article: https://breakingdefense.com/2018/08/detect-nukes-in-flight-with-electron-beam-technology/

  • Dépenses militaires mondiales toujours en hausse, le Canada à un record historique

    14 mai 2018 | International, Aérospatial, Naval, Terrestre, C4ISR

    Dépenses militaires mondiales toujours en hausse, le Canada à un record historique

    Selon les nouveaux chiffres du Stockholm International Peace Research Institute (SIPRI), le total des dépenses militaires mondiales a atteint 1 739 milliards $US en 2017, une augmentation de 1,1 % en termes réels par rapport à 2016. L'organisation explique dans son rapport que les dépenses militaires de la Chine ont de nouveau augmenté en 2017, poursuivant une tendance à la hausse des dépenses qui dure depuis plus de deux décennies. Les dépenses militaires de la Russie ont diminué pour la première fois depuis 1998, tandis que les dépenses des États-Unis sont restées constantes pour la deuxième année consécutive. En 2017, les dépenses militaires représentent 2,2 % du produit intérieur brut mondial (PIB) soit 230 $US par personne. «L'augmentation des dépenses militaires mondiales de ces dernières années est largement dues à la croissance substantielle des dépenses des pays d'Asie et Océanie et du Moyen-Orient, tels que la Chine, l'Inde et l'Arabie Saoudite», précise Dr Nan Tian, chercheur au programme Armes et Dépenses militaires (AMEX) du SIPRI. «Au niveau mondial, le poids des dépenses militaires s'éloigne clairement de la région Euro-Atlantique». Dans le détail Les dépenses militaires en Asie et Océanie ont augmenté pour la 29ème année consécutive. La Chine, deuxième plus grand dépensier au monde, a augmenté ses dépenses militaires de 5,6 % à 228 milliards $US en 2017. La part des dépenses chinoises dans les dépenses militaires mondiales est passée de 5,8 % en 2008 à 13 % en 2017. En revanche, les dépenses militaires en Afrique ont diminué de 0,5 % en 2017, soit la troisième baisse annuelle consécutive depuis le pic des dépenses enregistré en 2014. Avec 66,3 milliards $US, en 2017 les dépenses militaires de la Russie sont inférieures de 20 % à celles de 2016, première baisse annuelle depuis 1998. Poussées, en partie, par la perception d'une menace croissante de la part de la Russie, les dépenses militaires en Europe centrale et occidentale ont augmenté respectivement de 12 % et 1,7 %. De nombreux États européens sont membres de l'Organisation du Traité de l'Atlantique Nord (OTAN) et, dans ce cadre, ont convenu d'augmenter leurs dépenses militaires. Le Canada n'est pas en reste puisque pour la première fois le pays intègre le Top 15 mondial (14e place) avec plus de 27 milliards $ CAD dépensés en Défense, comparativement à environ 24 milliards $ CAD en 2016. C'est donc une hausse de 15% en une seule année ! Dans une déclaration envoyée à 45eNord.ca, le ministre de la Défense nationale Harjit Sajjan indique: «Nous respectons notre engagement d'accroître les dépenses de défense gr'ce à notre politique de défense nationale, Protection, Sécurité, Engagement. Tel qu'énoncé dans notre politique de défense, nous augmentons les dépenses annuelles de défense au cours des 10 prochaines années pour les porter à 32,7 milliards de dollars en 2026-27, soit une augmentation de plus de 70%. Je suis fier des investissements historiques que notre gouvernement réalise gr'ce à Protection, Sécurité, Engagement, et le Canada est fier d'être parmi les meilleurs pays qui investissent dans ses forces armées». http://www.45enord.ca/2018/05/depenses-militaires-mondiales-hausse-sipri-canada-record-historique/

Toutes les nouvelles