Coalition C4I in the Pacific

1
Coalition C4I in the Pacific

• Mr. Bob Stephenson
• Chief Technology Officer for C4I Operations
• COMSPAWAR
• 7 Dec 2005

2
OVERVIEW

• Combined Enterprise Regional Information Exchange
  System (CENTRIXS)
• Currently consists of six multi-national
  enclaves CFE, GCTF, CNFC, J, K, MCFI
• Provides E-mail, Sametime Chat, Voice over IP,
  Collaboration At Sea (CAS), and Common
  Operational Picture (COP) services.
• Real-world and exercise support

3
CENTRIXS Enclaves

• CENTRIXS Four Eyes (CFE) AUSCANUKUS
• Global Counter Terrorism Task Force (GCTF) 60
  GCTF countries iso OEF
• Combined Naval Forces CENTCOM (CNFC) COI CNFC
  countries
• Multinational Coalition Forces Iraq (MCFI) 40
  countries iso OIF
• CENTRIXS J US and Japan
• CENTRIXS K US and Korea

4
Current Maritime CENTRIXS Top-Level Architecture
JFCOM
UARNOC
T L
NATO
T L
OSD NOC
T L
CENTCOM
PACOM
EUCOM
T L
T L
T L
T L
SIPRNET
SIPRNET
Germany
Dial Up
Dial Up
T L
Australia
PRNOC
NOC
Canada
NCTS Med
Japan
T L
Korea
CNFJ
France
New Zealand
T L
SIPRNET
T L
Dial Up
CNFK
J
T L
CTF 73
CENTRIXS Network Hub
T L
PRNOC
NCTS Bahrain
SIPRNET
COMUSNAVCENT
T L
T L
T L
T L
CFE
GCTF CNFC/CFP
J
K
5
PRNOC CENTRIXS Global

• CNFC POP for US, Australia, New Zealand, UK,
  Japan, France, Germany, Pakistan, Singapore,
  Italy and Netherlands
• GCTF POP for Australia, Japan, New Zealand,
  Singapore
• MCFI POP for Japan and Australia
• Global ISDN dial-in capability

6
USN Ships

• MLTC Operational on USS Mt Whitney, USS Blue
  Ridge and PACOM HQ
• All USN ships (less SSNs) have either
• Block 0 or Block 1
• Block 0/Block I limited to single enclave at a
  time
• Unit level demo during on DDG class ship
• 10 user drops, 2 enclaves plus SIPRNET, Virtual
  servers to reduce hardware footprint
• Prototype for Block II tech refresh starting in
  FY 06
• Ad hoc Installs on USCGC, USNS (including Mercy),
  shore CTFs

7
Current and Future Projects

• New COI on GCTF CFP for PACOM AOR. Will be
  trialed in RIMPAC. IOC is 1 Nov 2005.
• Expand involvement of CARAT Nations
• India demo
• Annualex and COP exchange with JMSDF
• Add COP and Collaboration tools to all networks
• Complete conversion of GCCS-K to CENTRIXS K
• Expand presence in HQ

8
Issues

• Too many networks
• Need to collapse to single multinational network
  with multiple COIs
• Current consolidation plans
• Cross Domain versus Coalition Domain
• Talisman Saber points out issues with limitations
  on use of cross domain guards for user access

9
Requirements

• Build partnerships with non-traditional allies
• Provide connectivity to shore headquarters and
  ships
• Support Maritime Security Issues
• Conduct combined military operations
• Conduct HA/DR and other operations
• Provide affordable access for US users

10
Issues

• Too much infrastructure
• Each enclave requires separate computers,
  servers, LAN etc
• Enclaves are inflexible
• Consists of large multilaterals and bilaterals
• Classified networks require type I crypto
• CISMOA, RIP, RIS, RIP
• Transport
• Serial circuits are expensive, unreliable, not
  available
• Connectivity for ships and other expeditionary
  forces
• High latency / low bandwidth

11
Centers of Gravity

• DOD 8500.2
• PROVIDESDEFINITION OF ENCLAVE SEPARATION
• ALLOWS USE OF FIPS 140-2 BASED PROTECTION FOR
  ENCLAVES
• TITLE X USCFR
• REQUIRES PROTECTION OF CLASSIFIED MATERIAL
• NATIONAL DISCLOSURE POLICY
• PROVIDES DEFINITION OF DATA RELEASE AUTHORITY
• BASED ON DATA TYPES
• DEFINES WHAT IS CLASSIFIED
• DEFENSE SECURITY ACCREDITATIONWORKING GROUP
  (DSAWG)
• APPROVES CROSS DOMAIN CONNECTIONS
• SIPRNET CONNECTION AUTHORITY OFFICE (SCAO)
• APPROVES CONNECTION TO SIPRNET
• NSA
• PROVIDES GUIDANCE AND CONDUCTS TESTING
• DESIGNATED APPROVAL AUTHORITY
• ACCREDITS THE NETWORK
• EACH COCOM IS THE DAA FOR CENTRIXS IN THE DAA FOR
  CENTRIXS IN THEIR AOR

12
Policy Enablers

• Work with DISA and JS to define standard products
  to support enclave separation
• Work with JS to obtain foreign releasable HAIPE
  crypto
• Work with DISA to define use of IP encryptors for
  internet/next generation satellites

13
Technology Objectives

• Single protected multi-national global network
  with internal data separation by high assurance
  cryptography
• Single workstation can access multiple enclaves
  based on identity. Data is protected at rest and
  in transit
• Low cost connectivity
• Satellite systems for mobile users
• Internet based connectivity for shore
• Cross domain solutions to move data between
  enclaves

14
Questions?