Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Assurance Program at West Point

Published byRussell Simon Modified over 8 years ago

Similar presentations

Presentation on theme: "Information Assurance Program at West Point"— Presentation transcript:

1 Information Assurance Program at West Point
IA in 2002 – Vital National Security Issue We are losing ground More vulnerable than ever Solution? Research and education (HOPE!) Background itoc IA initiatives USMA CDX Overview Words IWAR

2 USMA Information Assurance Program
IA Research Center (ITOC) NSA Support Institutional Support Tremendous Interest Quality Personnel 1999 2000 2001 2002 2003 IA Workshop and Conferences IA Savvy Personnel USMA CERT Outreach/ Research Information Warfare Lab (IWAR) Summer Internships Cyber Defense Exercise Student IA Club (SIGSAC) Courses and Curriculum Integrated effort Interest Input: Increased need (Demand) for people who are knowledgeable in this area Output much more knowledgeable students and faculty

3 USMA IA Program IA Research Center (ITOC) NSA Support IA Conferences
CERT Outreach/ Research Information Warfare Lab (IWAR) Summer Internships Cyber Defense Exercise Student IA Club (SIGSAC) Courses and Curriculum Integrated effort Interest Input: Increased need (Demand) for people who are knowledgeable in this area Output much more knowledgeable students and faculty

4 USMA IA Program Mission
“Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah Blah …” -LTC Dan Ragsdale ITOC Director Integrated effort

5 Information Assurance Courses
Primary CS482 Information Assurance IT460 Policy and Strategy of Cyberwar MA489 Cryptography LW489 Cyberlaw Supporting CS484 Computer Networks IT105 Introduction to Information Technology IT305 Introduction to Military Information Technology Other computer science courses Have IA awareness woven into them

6 Student IA Club ACM SIGSAC Chapter Formed January 2001 450+ Members
Interdisciplinary (All Academic Departments Represented) Won ACM Outstanding Activities Award SIGSAC IWAR Lab Speakers Community Service

7 Summer Internships [1 of 2]
NSA - Network Evaluation Intern Program US Secret Service, Electronic Crimes Branch – Honeypot research Joint C4ISR Battle Center - Enhanced C4ISR Homeland Security Operations (ECHO) ITOC - Information Assurance Vulnerability Alert (IAVA) Compliance Prototype AMC-DOD - UAV multi-mission payload analysis Microsoft – Microsoft Intern              NSA Internship grew from 1 to 2 to 4-7

8 Summer Internships [2 of 2]
US Army Information Technology Agency - Network Security Services-Pentagon Livermore National Laboratory - UAV Simulation High Performance Computing Modernization Office - Network Monitoring Initiative RCERT Pacific - Intrusion Detection and Analysis 1st IO Command(ACERT,RCERT Korea & Europe) - Intrusion Detection and Analysis AMC-DOD - Crowd Simulation in Realistic Simulations NSA Internship grew from 1 to 2 to 4-7

9 Guest Speaker Program Government Military Academia Business

10 ITOC Research Topics Information Technology and Operations Center
Decision Support Automated Imagery Analysis Automated Terrain Analysis Information Assurance Network Deception (Honeynets / Network Camouflage) Open Source Tool Employment Intrusion Detection and Response Information Assurance Simulation Network and Computer Forensics Wireless Security

11 ITOC Outreach Projects
Information Assurance Vulnerability Alert (IAVA) Compliance Prototype – NSA, 1st IO Command Network Deception (Honeynets) - 1st IO Command, US Secret Service Information Assurance Curriculum and Training Development – NSF, 1st IO Command Classroom XXI – Army Training and Doctrine Command Military Academy Attack Defense Network (MAADNet) – Office of the Secretary of Defense, NSF Network Forensics and Recovery– US Secret Service Wireless Security T4IA – NSF

12 Sponsored by IEEE and NSA
4th Annual IEEE Information Assurance Workshop June 18-20, 2003 West Point, New York Sponsored by IEEE and NSA

13 Information Warfare Analysis and Research (IWAR) Lab
Isolated network Wide variety of target machines Full 18 seat classroom Dedicated lab director Used to support courses CS482 Information Assurance (primary user) SS490 Policy and Strategy of Cyberwar (primary user) CS484 Networks (projected) IT105 Intro to Information Technology (awareness) IT305 Intro to Military Information Technology

14 IWAR Laboratory Design Goals
Realistic Provide a “real world” signature Shared Resources Soft and Hard targets Heterogeneous Operating Systems Network Protocols/Equipment Offensive and Defensive Tools Reconfigurable Ghost Images Removable hard drives

15 IWAR Tools and Capability
Firewalls Malicious Active Content Exploits Vulnerability Scanners Viruses and Worms Cryptography and Encryption Trojan Horses Application and Protocol Wrappers Buffer Overflow Exploits Honey Pots/Honeynets Access Control Methods Protocol Exploits Integrity Maintenance Systems Network Sniffers Mail and Protocol Spoofers Distributed DoS Tools Intrusion Detection Systems Race Condition Exploits Password Cracking Software Forensics Analysis Tools Port Scanners Plenty of tools - Many can be used by both sides For example take the password cracker Why do we teach hacker tools? Much like in conventional battle space, In order to defend in cyber space must understand the methods that potential adversaries might use

16 To provide a realistic, isolated environment for instruction, research, and analysis on information assurance topics. Two heterogeneous networks Over 200 nodes Host-based and network-based firewalls Eight distinct operating systems Wireless network

17 IWAR-in-a-Box To provide a realistic, isolated environment for instruction, research, and analysis on information assurance topics. Two heterogeneous networks Over 200 nodes Host-based and network-based firewalls Eight distinct operating systems Wireless network

18 Cyber Defense Exercise
Sponsored by the National Security Agency, Director of Information Assurance General Concept Defense of a network against an adversarial force Blue Forces US Service Academies and NPS Red Forces National Security Agency 92nd Information Warfare Aggressor Squadron 1st Information Operations Command White Cell Carnegie Mellon

19 Cyber Defense Network $250K PKI PMO funding - 2 tier deliveries
Resource for PKI IA security engineering & research. Instructional tool for PKI Information Assurance education in ALL military & affiliated academies. Significant C3I, JCS and NSA interest & support. Provide facilities to evaluate & “test drive” software before putting into production environment. Develop DoD PKI enabled offensive & defensive operational techniques and strategies. $250K PKI PMO funding - 2 tier deliveries 2 Mill over the life so far Next =>

20 Cyber Defense Exercise
Key Educational Aspects Competitive Active learning Project-based Developmental Areas Leadership Ability Planning Ability

21 CDX Award Ceremony Need to show a summary slide indicating what this means to them in the field.

22 NSA Full Time NSA Liaison IA Conference Sponsorship NSA Trip
NSA Internships Intelligence Community Access CDX Support Sabbaticals NSA Information Assurance Center of Excellence Program NSA Information Assurance Director’s Trophy

23 Preparation for War “On the fields of friendly strife are sewn the seeds that upon other fields on other days will bear the fruits of victory…” GEN Douglas MacArthur Are there any questions

24 Preparation for Information War
“On the networks of friendly strife are sewn the seeds that upon other networks on other days will bear the fruits of victory…” MAJ Greg Conti Are there any questions

25 USMA IA Program IA Research Center (ITOC) NSA Support IA Conferences
CERT Outreach/ Research Information Warfare Lab (IWAR) Summer Internships Cyber Defense Exercise Student IA Club (SIGSAC) Courses and Curriculum Integrated effort Interest Input: Increased need (Demand) for people who are knowledgeable in this area Output much more knowledgeable students and faculty

26 USMA IA Program IA Research Center (ITOC) Institutional Support
NSA Support Institutional Support IA Savvy Personnel IA Conferences IA Research Center (ITOC) USMA CERT Outreach/ Research Information Warfare Lab (IWAR) Summer Internships Cyber Defense Exercise Student IA Club (SIGSAC) Courses and Curriculum Integrated effort Interest Input: Increased need (Demand) for people who are knowledgeable in this area Output much more knowledgeable students and faculty Quality Personnel Tremendous Interest

27 Sponsored by IEEE and NSA
Questions? … and a reminder! 4th Annual IEEE Information Assurance Workshop June 18-20, 2003 West Point, New York Sponsored by IEEE and NSA

Download ppt "Information Assurance Program at West Point"

Similar presentations

Security Education and Awareness Workshop January 15-16, 2004 Baltimore, MD.

Security Education and Awareness Workshop January 15-16, 2004 Baltimore, MD.
Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.

Copyright © 2014 American Water Works Association Water Sector Approach to Process Control System Security.
UNM Information Assurance Scholarship for Service (SFS) Program.

UNM Information Assurance Scholarship for Service (SFS) Program.
1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.

1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.
Prepared for: DISA September 17, 2003 Establishing a Government Information Security System Presented to the IT AND COMMUNICATIONS SYSTEMS SECURITY CONFERENCE.

Prepared for: DISA September 17, 2003 Establishing a Government Information Security System Presented to the IT AND COMMUNICATIONS SYSTEMS SECURITY CONFERENCE.
IMAGERY & INTELLIGENCE SOLUTIONS, INC. 360 ° of Imagery Introducing IIS Inc. Imagery and Intelligence Solutions Incorporated (IIS Inc.) is a service-connected.

IMAGERY & INTELLIGENCE SOLUTIONS, INC. 360 ° of Imagery Introducing IIS Inc. Imagery and Intelligence Solutions Incorporated (IIS Inc.) is a service-connected.
Cyber Security R&D Challenges: A Homeland Security Perspective Simon Szykman, Ph.D. Director, Cyber Security R&D 202-254-5802.

Cyber Security R&D Challenges: A Homeland Security Perspective Simon Szykman, Ph.D. Director, Cyber Security R&D
DHS, National Cyber Security Division Overview

DHS, National Cyber Security Division Overview
MINISTRY OF NATIONAL DEFENCE REPUBLIC OF POLAND CLASSIFIED INFORMATION PROTECTION DEPARTMENT COL. PIOTR GRZYBOWSKI, Director, Classified Information Protection.

MINISTRY OF NATIONAL DEFENCE REPUBLIC OF POLAND CLASSIFIED INFORMATION PROTECTION DEPARTMENT COL. PIOTR GRZYBOWSKI, Director, Classified Information Protection.
CIAO.0209 - July 99 - 1 Critical Infrastructure Assurance Office Protecting America’s Cyberspace: Version 1.0 of the National Plan Jeffrey Hunker National.

CIAO July Critical Infrastructure Assurance Office Protecting America’s Cyberspace: Version 1.0 of the National Plan Jeffrey Hunker National.
Information Security and Assurance Center 1 Address: 615 McCallie Avenue Phone: 423-425-4043 Chattanooga TN 37403

Information Security and Assurance Center 1 Address: 615 McCallie Avenue Phone: Chattanooga TN 37403
Gerald M. Santoro, Ph.D. College of Information Sciences and Technology The Pennsylvania State University University Park, PA 16802 (slides.

Gerald M. Santoro, Ph.D. College of Information Sciences and Technology The Pennsylvania State University University Park, PA (slides.
Information Assurance & Network Security Certificate Prof. Rafael M. Rivera Universidad del Turabo School of Engineering Institute of Telecommunications.

Information Assurance & Network Security Certificate Prof. Rafael M. Rivera Universidad del Turabo School of Engineering Institute of Telecommunications.
1 Telstra in Confidence Managing Security for our Mobile Technology.

1 Telstra in Confidence Managing Security for our Mobile Technology.
Network Security Testing Techniques Presented By:- Sachin Vador.

Network Security Testing Techniques Presented By:- Sachin Vador.
Information Assurance Workshop 2004 Yu Cai. Introduction 5th Annual IEEE Information Assurance Workshop 9 - 11 June 2004, United States Military Academy,

Information Assurance Workshop 2004 Yu Cai. Introduction 5th Annual IEEE Information Assurance Workshop June 2004, United States Military Academy,
Yan Chen Dept. of Computer Science Northwestern University Information Security Curriculum Development in Northwestern.

Yan Chen Dept. of Computer Science Northwestern University Information Security Curriculum Development in Northwestern.
Cyber Security/Information Security Definitions

Cyber Security/Information Security Definitions
CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: 509-359-6908 Office.

CSCD 434 Spring 2011 Lecture 1 Course Overview. Contact Information Instructor Carol Taylor 315 CEB Phone: Office.
Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.

Security Offering. Cyber Security Solutions 2 Assessment Analysis & Planning Design & Architecture Development & Implementation O&M Critical Infrastructure.

Similar presentations

Ads by Google