/
Biden Administration Plans Amendments to Presidential Policy on Critical Infrastructure Security & Resilience
Published on
Biden Administration Plans Amendments to Presidential Policy on Critical Infrastructure Security & Resilience

President Joe Biden told Congress that his administration will initiate a process to review the existing presidential policy directive on the security and resilience of the country’s critical infrastructure.

In his note to selected congressional leaders, Biden said the policy is due for an update as U.S. infrastructure increasingly adopts digitalization and automation.

Since the enactment of the directive in 2013, security threats have evolved and become more sophisticated. Revisions would protect critical facilities from being compromised by U.S. adversaries, foster private-public partnerships, and tailor a more environmentally friendly approach to automation, Biden said.

The plan would involve the Sector Risk Management Agencies of the Cybersecurity and Infrastructure Security Agency, guided by the National Security Council and the Office of the National Cyber Director.

The national effort essentially endorses the recommendations of Homeland Security Secretary Alejandro Mayorkas submitted in November 2021.

/
CGI’s Momentum Java Cryptographic Module Earns FIPS Certification; John Owens Quoted
Published on
CGI’s Momentum Java Cryptographic Module Earns FIPS Certification; John Owens Quoted

CGI Federal‘s Momentum Java Cryptographic Module has been granted a Federal Information Processing Standards certification, which validates the software’s capability to protect classified federal data.

The certification was issued following a comprehensive security assessment performed by SafeLogic, an accredited third party lab, the Fairfax, Virginia-based company announced on Wednesday.

John Owens, senior vice president and Enterprise Solutions Group head at CGI Federal, emphasized the intensity of the evaluation used to certify the module.

“The rigorous certification process, which includes an independent lab test that searches for flaws in the software, provides added, tested security that ensures our enterprise resource planning solution meets modern security threats, whether data is active or at rest,” he stated.

The Java Cryptographic Module enables CGI’s Momentum product suite to implement numerous cryptographic algorithms including Suite B algorithms, which are used by the National Security Agency to safeguard both classified and unclassified national security systems and information.

Services provided by the module include data at rest encryption, data in transit encryption, PKI key management, digital signature generation and other cryptography processes.

Saidul Islam, CGI Federal’s director of Momentum and product security, highlighted the importance of strong cryptography in implementing zero trust architecture.

“The use of a validated crypto module in the Momentum product suite helps our customers as they go through their ZTA journeys in line with federal mandates,” said the director.

Time constraints for the implementation of zero trust architecture were issued in a May 2021 executive order, requiring federal civilian executive branch agencies to have established zero trust safety measures by the end of September 2024.

Standards organizations must meet to fully establish zero trust focus on the constant monitoring of data access, multi-factor authentication and the modernization of encryption methods.

The Java Cryptographic Module’s certification follows the company’s previous FIPS validation for its Momentum C++ Cryptography Module and runs through April 2024.

///
NOAA Weather Prediction Data Strengthened via L3Harris Tool; Rob Mitrevski Quoted
Published on
NOAA Weather Prediction Data Strengthened via L3Harris Tool; Rob Mitrevski Quoted

A new tool that boosts satellite weather forecasting capabilities and built by aerospace and defense contractor L3Harris Technologies has launched on a National Oceanic and Atmospheric Administration vessel now in orbit.

The Cross-Track Infrared Sounder is expected to help the NOAA improve the exactitude of its short-term weather condition predictions as well as anticipate extreme weather scenarios such as tornadoes and hurricanes, the Melbourne, Florida-based company said Thursday.

Rob Mitrevski, vice president and general manager of spectral solutions within the space and airborne systems division of L3Harris, commented that, if successful, the CrIS instrument will help save lives and avoid damages from weather-based natural disasters through its enhancements in accuracy.

L3Harris’ tool is on board the NOAA’s Joint Polar Satellite System-2 weather satellite, which undertakes 14 orbits of the earth daily. The CrIS is a hyperspectral sounder that acts as a sensor, amassing infrared data that assists with both immediate and long-term forecasts. It can access more than 2,000 infrared channels and additionally has the capacity to contribute to environmental and climate projections along with greenhouse gas concentration information.

Specifically, the CrIS gathers temperature and water vapor data that is understood to be more precise than that of previously used technologies. It is slated to help the NOAA complete its mission of better preparing the U.S. population for upcoming shifts in weather.

In the future, it has been reported the CrIS will be incorporated on JPSS-3 and JPSS-4. The series is comprised of environmental machines born from a collaboration between NOAA and NASA, with the next iterations set to take flight in 2027 and 2032, sequentially.

A number of other L3Harris products are also present on the JPPS-2, like X-band and Ka-band payloads which convey images and critical information; a package of rocket launch avionics; and S-band transceiver uplinks.

The partnership between L3Harris and NOAA comes after another satellite-related transaction: the former organization’s $700 million July contract award from the Space Development Agency for the production of a fleet of Tranche 1 Tracking Layer satellites.

//
Interior Department Seeks Proposals for $1B Cloud Hosting Solutions III Contract
Published on
Interior Department Seeks Proposals for $1B Cloud Hosting Solutions III Contract

The Department of the Interior has initiated bid-seeking for a potential 11-year, $1 billion single-award indefinite-delivery/indefinite-delivery contract covering data consolidation and cloud migration services.

A notice posted Monday on SAM.gov states that the Cloud Hosting Solutions III contract will help DOI transition to a single virtual private center that will support requirements for cloud and managed services.

The CHS III contract will support the implementation and maintenance of a virtual private cloud, enforce policies within the VPC environment and provide various managed services optimized to operate in the single hybrid cloud environment.

The selected enterprise cloud services broker will manage a “portfolio of cloud computing, storage and application services across multiple vendor offerings,” the final request for proposals document states.

The IDIQ has a five-year base period of performance and three two-year option periods.

Responses are due Dec. 19.

/
Air Force Deploys Palletized Effects System With JASSM-ER Cruise Missiles in Live-Fire Demo
Published on
Air Force Deploys Palletized Effects System With JASSM-ER Cruise Missiles in Live-Fire Demo

The U.S. Air Force and U.S. Special Operations Command Europe conducted on Wednesday a live-fire demonstration of a capability meant to field long-range cruise missiles through airdrop procedures at Andoya Air Station in Norway.

The demonstration for Operational Series ATREUS used an MC-130J Commando II aircraft to deploy the Rapid Dragon Palletized Effects System containing Joint Air-to-Surface Standoff Missile-Extended Range weapons on a Norwegian range, Air Force Materiel Command said Wednesday.

In April 2021, ATREUS started to carry out training on capabilities to provide U.S. and NATO allies with rapid response options. The demo in Norway is the seventh ATREUS iteration conducted in the European theater.

Dean Evans, Rapid Dragon program manager, said the demo reflects the team’s efforts to rapidly deploy systems to meet the needs of warfighters.

“The Rapid Dragon Experimentation Program is appropriately named, as it advanced rapidly from a concept on paper to a live fire using a developmental prototype in 24 months. Now less than three years from the program inception, Rapid Dragon is being used by SOCEUR in the Arctic Circle,” Evans noted.

Apart from the Air Force Strategic Development Planning and Experimentation office and SOCEUR, Lockheed Martin’s missiles and fire business, Systima Technologies, ASR-Pioneer, Naval Surface Warfare Center-Dahlgren, SOCOM Det 1, Air Force Special Operations Command and Norway’s Andoya Space Center also supported the event.

///
DOD CIO Names Rob Vietmeyer Chief Software Officer Within Information Enterprise Division
Published on
DOD CIO Names Rob Vietmeyer Chief Software Officer Within Information Enterprise Division

Rob Vietmeyer, former director of cloud and software modernization at the Department of Defense, has been named chief software officer within the Office of the Chief Information Officer’s information enterprise division, according to a LinkedIn post published Friday.

In his new role, Vietmeyer will oversee the implementation of the Pentagon’s software modernization strategy and facilitate the adoption of DevSecOps practices, agile software development, cloud services and other software conception approaches across the military.

Previously, he held leadership positions focused on cloud computing and enterprise services within DOD and supported department-wide information technology modernization efforts.

Vietmeyer joined the Pentagon in March 2011 after a more than 10-year career at the Defense Information Systems Agency.

DOD’s software modernization strategy outlines the department’s goal of accelerating software delivery in support of critical programs including the Joint All Domain Command and Control initiative.

/
NIST Researchers Test Microcircuit Flaw Detection Method
Published on
NIST Researchers Test Microcircuit Flaw Detection Method

National Institute of Standards and Technology researchers have come up with a technique that can simultaneously identify individual defects in microcircuits on the same chip.

The method, dubbed remote bias-induced electrostatic force microscopy, involves the application of specific alternating current voltages to neighboring wires instead of to the atomic force microscope’s tip, NIST said Thursday.

According to NIST, an AFM comes with an ultrasharp tip connected to a cantilever that “vibrates like a diving board.” Under the existing method, AC voltage is applied to the AFM tip as it screens across wires buried beneath the surface of a chip and a flaw in a wire will emerge marked by the change in the tip’s vibration.

With the new technique, researchers applied out-of-phase AC voltages to neighboring wires and were able to detect the flaws and produce clear images of defects in wires.

The technique was developed by NIST scientists Joseph Kopanski, Evgheni Strelcov and Lin You.

Applying a voltage to the wires instead of the AFM tip may seem like a small innovation, but it makes a big difference,” said Kopanski.

The method does not require a new instrument and could be easily implemented by the semiconductor industry,” he added.

/
Lindsay Steel: DOJ, NARA, GSA Collaborate on Shared Standards to Improve FOIA Processes
Published on
Lindsay Steel: DOJ, NARA, GSA Collaborate on Shared Standards to Improve FOIA Processes

Lindsay Steel, chief of Freedom of Information Act compliance staff at the Department of Justice’s office of information policy, said DOJ and the National Archives and Records Administration are working with the General Services Administration to come up with shared business standards for FOIA to ensure compliance with FOIA’s processing requests and procedural requirements, Federal News Network reported Tuesday.

“It would also facilitate easier compliance with reporting obligations, along with improved data quality. It can also help agencies keep up with increasing requests and reducing backlogs, overall, facilitating better customer service for the public,” Steel said of those shared FOIA standards.

She said those tech standards could serve as an assessment tool and could aid agencies in their procurement of FOIA platforms. She noted that case management systems will be the initial focus area for the shared standards.

“We think this is a type of technology that is the most wide-ranging in terms of different agencies needing some type of case management tool,” Steel said. 

“This focus will allow us to define data requirements that support FOIA compliance and reporting, as well as defining workflows and perhaps some other functionality and baked-in logic that can help facilitate efficiency,” she added.

//
National Renewable Energy Lab Develops Grid Intrusion Visualization Tool
Published on
National Renewable Energy Lab Develops Grid Intrusion Visualization Tool

The National Renewable Energy Laboratory has developed a cybersecurity platform that works to locate and visualize hidden anomalies in power grids connected to operational technology networks.

NREL said Monday the intrusion visualization tool is intended to protect distributed energy resources such as solar, wind and battery against attacks specific to IT and supervisory control and data acquisition.

The lab collaborated with power management company Eaton and secured funds from the Department of Energy’s Technology Commercialization Fund to create the system.

Dubbed as IViz-OT, the technology is designed specifically for OT-based networks rather than IT-based applications.

The tool provides system operators and owners with real-time situational awareness using grid and network data gathered through analytical approaches.

NREL added that the tool features a customized application programming interface and forecast alerts.

IViz-OT can also be used in various vendor devices and is ready for deployment and licensing, the lab said.

/
DARPA’s Robotic GEO Satellite Servicing Tech on Schedule for 2024 Launch
Published on
DARPA’s Robotic GEO Satellite Servicing Tech on Schedule for 2024 Launch

A robotic system from the Defense Advanced Research Projects Agency designed to facilitate satellite servicing and inspection has completed all component-level tests and is on track to launch in 2024 for a demonstration mission in geosynchronous Earth orbit.

Engineers will finalize testing of the system’s flight hardware and software before the end of 2022 as part of DARPA’s Robotic Servicing of Geosynchronous Satellites program and start integrating the robotic payload with the spacecraft bus in 2023, the agency said Tuesday.

DARPA said it expects on-orbit satellite servicing work to kick off in 2025.

In March 2020, the agency selected Northrop Grumman’s SpaceLogistics subsidiary to build the mission robotic vehicle bus and provide launch and operations support for the program.

Through public-private partnership, DARPA will help propel this technology from demonstration to operational capability,” said Ana Saplan, RSGS program manager at DARPA’s Tactical Technology Office.

Soon, instead of relegating satellites to space junk because of a broken part or lack of propellant, our robot mechanic will be making repair ‘service calls’ in space,” Saplan added.

DARPA is funding the Naval Research Laboratory to oversee development work on robotic servicing capabilities under the RSGS program.

The RSGS system will have two robotic arms, on-orbit checkout and calibration equipment, multiple robotic tools, cameras and lighting, equipment stowage ports and related avionics boxes.

According to DARPA, the first assembled arm is preparing to start thermal vacuum testing following the completion of vibration, functional and electromagnetic testing. The second arm is set to begin environmental testing at NRL this fall.

1 773 774 775 776 777 2,703