Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

DoD Research and Engineering

2016 Cyber Security Workshop

International Test and Evaluation Association

Mr. Stephen WelbyAssistant Secretary of Defense for Research and Engineering

March 16, 2016

2Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Mitigate current and

anticipated threat

capabilities

- Cyber

- Electronic Warfare

- Counter Space

- Counter-WMD

- Missile Defense

Create technology

surprise through

science and engineering

- Autonomy

- Data Analytics

- Human Systems

- Hypersonics

- Quantum Systems

- Basic Sciences

Researchers and Engineers doing game-changing work

Defense R&E Strategy

Affordably enable new or

extended capabilities in

existing military systems

- Systems Engineering

- Modeling and Simulation

- Capability Prototyping

- Developmental Test

& Evaluation

- Interoperability

- Power & Energy

3Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Preserving Technological Superiority

• US and Allies have been able to count on a decisive

technological advantage for more than 40 years

– Advantage built on technologies developed by and for the US military

o Precision weapons, long-range intelligence, surveillance and reconnaissance

(ISR), stealth

• What has changed:

– Increasingly global access to resources, technology and talent

– Competitors investing in capabilities directly designed to counter US

technical advantage: tactics, techniques, technologies, procedures

– Responding to such an environment requires agility and a commitment to

invest to keep pace with technical opportunity

– Drives a focus on cost and cycle time

4Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

DoD Innovation

• In response to this long-term challenge, DoD seeks

competitive advantage through innovation…

– Leveraging all sources of innovation opportunity:

− Academia, Commercial, Defense Industry, Organic (DoD Labs), Global

Sourcing (Allies and Partners)

– Time to market matters – Accelerate the Technology

Adoption Cycle

− Out-innovate competitors with access to the same

commercial technology base

– Speed transition from Laboratory to Fleet

− Prototyping, Demonstrations, Operational Experiments

– Innovation enables Strategy

5Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Technology Influences Strategy

• An offset is some means of asymmetrically compensating for a

disadvantage, particularly in a military competition.

• Rather than match an opponent in an unfavorable competition,

changing the competition to more favorable footing enables the

application of strengths to a problem that is otherwise either unwinnable

- or winnable only at unacceptable cost.

• Competitive strategy that seeks to maintain advantage over potential

adversaries over long periods of time while preserving peace where

possible.

“…he [Secretary Carter] asked us to seek game changing technologies and make more discreet

technological bets that exploit our advantages as well as adversary weaknesses. “

– Bob, Work, Deputy Secretary of Defense, Budget Rollout Brief, 9 Feb 2016

6Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Toward a Third Offset Strategy

• Autonomous Learning Systems

– Delegating decisions to machines in applications that require faster-than-human reaction

times

− Cyber Defense, Electronic Warfare, Missile Defense

• Human-Machine Collaborative Decision Making

– Exploiting the advantages of both humans and machines for better and faster human

decisions

− “Human strategic guidance combined with the tactical acuity of a computer”

• Assisted Human Operations

– Helping humans perform better in combat

• Advanced Manned-Unmanned System Operations

– Employing innovative cooperative operations between manned and unmanned platforms

− “Smart swarm” operations and tactics

• Network-enable, autonomous weapons hardened to operate in a future

Cyber/EW Environment

– Allowing for cooperative weapon concepts in communications-denied environments

7Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Technologies Drivers

7

By 2025 we will have 100 billion connected devices

7

Massive increase in connected devices

8Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Technologies Drivers

8

By 2025 we will have 100 billion connected devices

Today 2.8B of 7B+ people on earth connectedBy 2020 entire earth population will be connected

Massive increase in connected devices

100 billion connected devices = trillion sensor ecosystem

8Data drives the economy in a connected world

9Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Software & Communications Key to Modern Warfare Systems

10Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Vulnerabilities at System and Network Levels

CAN-Bus

1553 Data

Bus

Scheduled Airline

Traffic 2009

GSM Cellular

Architecture

Attack Surface: A system’s exposure to reachable and exploitable cyber

vulnerabilities (Not Just “Within the System Boundaries!”)

Typical Aircraft

Modern AutomobileHardware

and

Software

Components

11Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Recent Cybersecurity Policy and Guidance Activities

• DoD 8500.01, Cybersecurity: 14 Mar 2014

– Expanded scope and specificity

• DoDI 8510.01 – Risk Management Framework (RMF) for DoD IT: 14 Mar 2014

– Provides policy, clarity and guidance on the RMF and compliance

• DOT&E- Procedures for Operational Test and Evaluation of Cybersecurity in

Acquisition Programs: 01 Aug 2014

– Formalizes OT&E Phases

• DoDI 5000.02: 6 Jan 2015

New/better guidance for both developmental and operational

testing of IT

• Six-Phase Cybersecurity T&E Process:

– Incorporated into Defense Acquisition Guidebook Chapter 9

• Cybersecurity Implementation Guidebook for PMs: 26 May 2015

– Address Cybersecurity T&E across the acquisition lifecycle

• Cybersecurity T&E Guidebook: July 2015

12Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

What is the National Cyber Range?

Encapsulation Architecture &

Operational Procedures

Computing Assets/Facility

(LMCO Orlando, FL)

Integrated Cyber Event Tool Suite

Cyber Test Team

Secure Connectivity

via JIOR and JMN

Realistic Mission

Environments

JMNRSDPs

PSDPs

13Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

An Enterprise-Wide Focus on Innovation

• Grow and sustain our S&T capability…

– Defense Innovation Unit-Experimental

– Speed to Market

– Prototyping, demonstrations, and experimentation

– Force of the Future

– Science, Technology, Engineering and Math (STEM)

– Better Buying Power: Innovation, Technical Excellence, Speed to Market

– Modular, Open Systems Architecture

14Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

DoD Research and EngineeringWorld Class Talent

• 113, 796 professional and dedicated scientists and

engineers*

• Engaged with Industry, both traditional and non-

traditional, and academia

• Supporting and supported by international allies and

partners * Source: FedScope.opm, as of 31 March 2015

15Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

DoD R&E Enterprise(UARCs, Service Labs, DoD Labs, MURIs, FFRDCs, MRTFB)

University Affiliated Research Centers (UARCs)

Service Labs (Army, Navy Air Force Research Labs)

DoD Laboratories

Multi-Disciplinary University Research Initiatives (MURIs)

Federally Funded Research and Development Centers (FFRDCs)

Major Range and Test Facility Bases (MRTFBs)

5

1

66

32

1

4

38

1 1

19 10

9

8

13

2

1

7

4

27

18

9

9

1914

1

5

9

UARCs (13)

Service Labs (3)

DoD Labs (75)

MURIs (319)

FFRDCs (10)

MRTFBs (24)

1

16Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

DoD Research and EngineeringWorld Class Capabilities

RDECOM FWDUnited Kingdom

ERDCUnited Kingdom

RDECOM FWDCanada

ONR GlobalUnited Kingdom

AFRL GlobalUnited Kingdom

Army Medical Research UnitUnited Kingdom

RDECOM FWDFrance

RDECOM FWDGermany

ONR GlobalItaly

ONR GlobalCzech Republic

ONR GlobalJapan,

Yokosuka,

Okinawa

RDECOM FWDJapan

AFRL GlobalJapan

RDECOM FWDSingapore

ONR GlobalSingapore

RDECOM FWDThailand

ONR GlobalBahrain

Central Public Health LabGeorgia

Army Medical Research UnitKenya

RDECOM FWDAustralia

RDECOM FWDArgentina

RDECOM FWDChile

ONR GlobalChile

AFRL GlobalChile

17Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Force of the Future

• Recruit and retain a workforce ready to address

the technical and operational demands ahead

• A Department open to ideas and the flow of talent

in and out of DoD

– Talent must not be taken for granted

– Address generational, technological, and labor market changes

– Increase permeability of the DoD workforce:

Sabbaticals, internships, transitions

– Continue to attract the talent needed to

demonstrate high standards of performance,

leadership, ethics, honor and trust

18Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

DoD Science, Technology, Engineeringand Mathematics (STEM) Efforts

• Communicate: Growing opportunities to work cutting

edge, leap-ahead technologies

• Inspire: Young scientists and engineers to consider

careers with the Department

• Cultivate: Culture of Innovation to sustain our

competitive edge

• Promote: Diversity and agility of thought

• Enhance: Continued professional development and

growth

Mission: Attract, inspire, and develop exceptional STEM talent across the education continuum and

advance the current DoD Science and Engineering workforce to meet future defense

technological challenges

19Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Science, Mathematics, and Research for Transformation

(SMART) Program

• Since 2006, SMART has awarded 1782 scholarships to 1734 individuals:

• Undergraduate, masters, and doctoral students:

• 13% of awards made to current DoD

employees

• During any phase of the scholar’s education

• 1 year of DoD employment in return for each academic year of funding

• Scholarship-for-Service program designed to produce the next

generation of DoD S&T Leaders:

• SMART provides scholarship students with:

• Education support ($25K–$38K / year for 1 to 5 years)

• Summer Internships (multi-year participants)

• Post-Graduation career opportunities

20Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

DoD Outreach to Military Children

• Office of Science and Technology Policy (OSTP) support:

• Goal: 200 schools participating

• National Math and Science Initiative (NSMI)

endorsed

• Military Child Pilot Program:

• Enhance the preparation of dependents of members of Armed Forces for STEM

careers

• Develop innovative STEM educational programs for military children, leveraging

capabilities of private sector, other federal agencies, and DoD laboratories

• Met with enthusiastic support by military parents

21Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

Better Buying Power (BBP)Continuous Improvement Process

• BBP 3.0: Continues and builds upon prior elements –and takes the focus to our Products

– Innovation and Technical Excellence

www.bbp.dau.mil

• BBP 3.0 Highlights:

• Strengthen Cybersecurity throughout the Product Lifecycle

• Improve Speed to Market

• Remove barriers to Commercial Technology Utilization

• Increase the use of Prototyping and Experimentation

• Use Modular Open Systems Architectures to Stimulate Innovation

• Focus of BBP 1.0: Best Practices and Business Rules; BBP 2.0: Critical Thinking,

making better business decisions

• Improve DoD outreach to technology and products from Global Markets

• Anticipate and plan for responsive and emerging threats by building stronger partnerships

22Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

DoD Innovation Strategies

• Shifting culture Leaning forward into a complex security

environment

– Technologies, operational and organizational constructs, people

• Growing organically Looking externally

– DoD Laboratories, academia, defense industry, DIUx, global sourcing

(allies and partners)

• Avoid technology surprise Seeking asymmetric advantage

– Third Offset Strategy; Robotics, Big Data, Visualization, Microelectronics,

Hypersonics, Directed Energy, …?

• Leveraging new sources of technology Servicing and

expanding core competencies

– Prototyping, demonstrations, and experimentation; Modular, Open Systems

Architecture; Manufacturing Innovation Centers

23Distribution Statement A: Approved for public release; distribution is unlimited; SR Case #16-S-xxxxITEA Cyber

03/16/2016

DoD R&E Enterprise:Pursuing Sustained Technical Advantage

Defense Innovation Marketplacehttp://www.defenseinnovationmarketplace.mil

DoD Research and Engineering Enterprise: http://www.acq.osd.mil/chieftechnologist/

Twitter: @DoDInnovation