Team Redstone Exhibition (TREx)

(1)

Team Redstone Exhibition

(TREx)

08 June 2016

(2)

Approved for public release (SMDC Public Release #6084-1) Distribution A

Team Redstone Cyber Initiative

The Redstone ESG Convenes Regularly With Clear Goals & Objectives

• Synchronizing Cyber R&D Efforts Towards a Common Objective

• Coordinating Cyber Security R&D Road Maps

• Determining Effective & Efficient Contract Strategies

2 Qtr 3 Qtr

Team Redstone Exhibition

FY17

• ESG Directed the Cyber Working Group to have an exhibition of progress made to date

Redstone Cyber Senior Executive Steering Group (ESG)

• Space & Missile Defense Command • Aviation & Missile Research

Development & Engineering Center • PEO Missiles & Space

• PEO Aviation

• Redstone Test Center • Others

(3)

• IMPACT – Integrated Mission Performance And Cybersecurity

Testbed - A Persistent Distributed Environment of Redstone Cyber

Stakeholder Facilities

• TREx – Team Redstone Exhibition – 2nd_{or 3}rd_{Qtr 2017}

(4)

Approved for public release (SMDC Public Release #6084-1) Distribution A 4

• Target Date: 2nd_{or 3}rd₂₀₁₇

• Establish a Persistent Reconfigurable Distributed Environment

Linking Redstone Cyber Stakeholder Facilities

• Execute a Structured Integration, Data Collection, and Analysis

Process

• Design in Growth Path to Link Team Redstone to Other Army,

Joint, and Coalition Cyber Events and Resources

(5)

Organizational Objectives

•

Demonstrate distributed connectivity via the JMN

across multiple RSA organizations and facilities

•

Demonstrate capabilities of tactical systems and Cyber

investments

•

Provide Army PMs with a persistent capability to

―Assess technologies and procedures necessary to defeat cyber threats

―Support the Development, Test and Evaluation of capabilities to reduce Cyber related risks and defeat Cyber threats

(6)

• Sites/Labs on the network Identified and Locked

• Working Group members defined

• Working Group interdependencies understood

• Calendar of events defined

• Organizational Objectives understood

• Content for Outbrief to ESG

Concept Development Workshop (CDW)

11 APR 2016

(7)

AMRDEC

VoIP Chat Email Wiki

USASMDC/ARSTRAT

AMRDEC

TSMO

Data Repository

AMRDEC

VoIP

Chat Email Wiki

RTC

Data Collection

Sanitized

Data Xfer Infrastructure Servers

NW

Monitor Constructive Sims Systems Visual

Event Control/White Cell Channel Tactical/Cyber Test Channels

TREx Facility/Network Infrastructure

Collaboration Tools Collaboration Tools Collaboration Tools Collaboration Tools Collaboration Tools Collaboration Tools

(8)

• Environment/Network/Event supporting appropriate classification

levels

• JMN is the network to conduct IMPACT/T-REx

• WSMR terrain will be used for the event

• NIE/AWA 16.1 Operational Scenario will be used as practical

• Will have 5 sub working groups and leads for each

• Will have a minimum of 3 integration spirals leading up to the

event

(9)

•

Cyber Blue/Red - DAU Lead

•

Network

-

RTC Lead

•

Operational Scenario - USASMDC/ARSTRAT

Lead

•

Technical

•

Simulation Architecture - RTC Lead

•

Tactical Architecture - AMRDEC

•

Security – USASMDC/ARSTRAT Lead

(10)

Approved for public release (SMDC Public Release #6084-1) Distribution A

Cyber Threat Definitions Matrix

Threat Outsider Near-Sider Insider

Novice DoS 802.11 Injection

Zigbee/bluetooth

Physical Security Tools

Phishing Media Drops

Web Site Deface (MitM)

Cross Site Scripting

Spoofing

Intermediate Ransom Ware Supply Chain HW/SW Man-in-the-Middle (MitM) Attack

2 factor broken authentication

Data Line Tap Privilage Escalation

DoS Maint Port Injection

AV Bypass

Advanced Manipulate Air Picture Add/Mod/Del e.g. ADS-B (injection)

Stolen Net-Enabled Mil Radio

Industrial Cntl Sys (ICS)

DoS Attacking Gaps Outside Intel

Network Routing Exploit

(11)

•

OSD funded Network Infrastructure

•

TREx Network team working with Technical Working

Group to establish logical range requirements

•

Network approach allows expansion in security levels

and connectivity to external organizations without major

configuration changes

(12)

Approved for public release (SMDC Public Release #6084-1) Distribution A ₁₂

•

Security

• Identity Security Classification guides required from all PoRs in TREx

 Brief each WG on needs and limitations of event environment

• Work with Cyber WG to ensure no system vulnerability could be uncovered that would exceed the event security level

• Determine data/report dissemination process with stakeholder concurrence

• Support data classification downgrading as required

• EXIT CRITERIA

 List of program security POCs

(13)



Sites/Labs on the network Identified and Locked



Working Group members defined



Working Group interdependencies understood



Calendar of events defined



Organizational Objectives understood



Content for Outbrief to ESG

(14)

Approved for public release (SMDC Public Release #6084-1) Distribution A ₁₄

Integration Blocks for TREx

Integration Spiral 1 Integration Spiral 3 Integration Spiral 2 Integration Spiral 4

(15)

 All Sites connected to the distributed network will be locked at close of the CDW

• All POTENTIAL Systems and Simulations identified by integration

spiral 1 with the final subset locked at the Mid Planning Workshop

• All configurations, software, and hardware will be locked at the

conclusion of Integration Spiral 4 activities

(16)