The Future of Cyber Experimentation and Testing T he U.S. NAT I - - PowerPoint PPT Presentation

the future of cyber experimentation and testing
SMART_READER_LITE
LIVE PREVIEW

The Future of Cyber Experimentation and Testing T he U.S. NAT I - - PowerPoint PPT Presentation

Oct 22, 2023 190 likes •327 views

s The Future of Cyber Experimentation and Testing T he U.S. NAT I O NAL C YBER RANG E Michael VanPutte, Ph.D. Program Manager Distribution Statement A (Approved for Public Release, Distribution Unlimited #14014) DISCLAIMER: The

slide-1
SLIDE 1
  • s

The Future

  • f

Cyber Experimentation and Testing

T he U.S. NAT I O NAL C YBER RANG E

Michael VanPutte, Ph.D. Program Manager

Distribution Statement “A” (Approved for Public Release, Distribution Unlimited #14014) DISCLAIMER: The views, opinions, and/or findings contained in this article/presentation are those of the author/presenter and should not be interpreted as representing the official views or policies, either expressed or implied, of the Defense Advanced Research Projects Agency or the Department of Defense.

slide-2
SLIDE 2

Providing the environment to solve the Nation’s Cyber problems

UNCL ASSIF IE D: Distr ibution State me nt “A” (Appr

  • ve d for

Public R e le ase , Distr ibution Unlimite d)

2

DARPA Mission

“… maintain the technological superiority of the U.S. military and prevent technological surprise from harming the U.S. national security by sponsoring revolutionary, high-payoff research bridging the gap between fundamental discoveries and their military use.” Since the very beginning, DARPA has been the place for people with ideas too crazy, too far out and too risky for most research organizations. DARPA is an

  • rganization willing to take a risk on an idea long before it is proven.
slide-3
SLIDE 3

Providing the environment to solve the Nation’s Cyber problems

UNCL ASSIF IE D: Distr ibution State me nt “A” (Appr

  • ve d for

Public R e le ase , Distr ibution Unlimite d)

3

Autonomous Ground Vehicles Ground Surveillance Radar

DARPA Accomplishments

LSTAT Speech Recognition SATURN Assault Breaker ARPANET JSTARS MIMIC TALON GOLD Mobile Robots JSF Engine X-45 Command Post

  • f the Future

MEMS Pegasus Launch Vehicle Global Hawk DARPASAT VELA Hotel ALTAIR Mouse GPS ATACMS Sea Shadow Stealth Fighter Center for Monitoring Research M-16 Uncooled IR

Phraselator

1970

Predator

SUO SAS

Advanced Cruise Missile BAT

Taurus Launch Vehicle

Transit

1960 1970 1980 1990 2000

Approved for Public Release, Distribution Unlimited (Case 11216, 4/3/08)

slide-4
SLIDE 4

Unconstrained cyber research environment supporting the CNCI

UNCL ASSIF IE D: Distr ibution State me nt “A” (Appr

  • ve d for

Public R e le ase , Distr ibution Unlimite d)

Cyber Testing Today

Cyber operational community forced to deal with:

  • Inflexible, expensive, special purpose testbeds
  • Manual configuration and management
  • Sacrificing test complexity for testbeds that are “good enough”
  • Modifying systems under test to accommodate substandard, unrealistic testbed
  • Constraining bureaucratic, operationally focused policies
  • Rigid tests schedules planned months in advance

Results:

  • Unrealistic testing and questionable results
  • Slow research-to-operations transition loop
  • Less functional production tools
  • Expensive testing that restricts quantity of research performed
  • Counter-threat research focused on today’s threat
slide-5
SLIDE 5

Providing the environment to solve the Nation’s Cyber problems

UNCL ASSIF IE D: Distr ibution State me nt “A” (Appr

  • ve d for

Public R e le ase , Distr ibution Unlimite d)

5

Operational vs Research and Experimentation

Operational Research

Mission

  • Operational testing and demonstration; train

today’s warfighters

  • Test and experimentation of radically new ideas from

the research community Goal

  • Confirm or deny system meets today’s

stated warfighter requirements for the acquisition and fielding of warfighting systems.

  • Advance understanding of the effects, consequences,

and validity of potential systems on potential future environment Systems Tested

  • Production or production ready systems;
  • Potential unstable research systems

Process

  • Confirm or deny vendor claims within

realistic, operational tests, assessments on current weapons, equipment, and doctrine

  • Explore research space, drive future vision, create

future requirements

  • Dynamic hypothesis generation and validation

Range Requirements

  • Integrate current commercial & operational

technology

  • Protect classified information
  • Technical support is focused on current

commercial technology

  • Integrate future technologies and protocols
  • Rapid test and testbed configuration
  • Rapid reset of tests to clean, new state for full-

spectrum experimentation

  • Protect classified and proprietary information
  • Technical staff is more dynamic, interactive, and

requires greater technical expertise

slide-6
SLIDE 6

Leap‐ahead research and quantifiable assessment of cyber tools, processes, and architectures facilitates;

  • Revolution in national cyber technologies
  • Rapid technology development
  • Accelerated deployment

Unconstrained cyber research environment supporting the CNCI

UNCL ASSIF IE D: Distr ibution State me nt “A” (Appr

  • ve d for

Public R e le ase , Distr ibution Unlimite d)

National Cyber Range

Provide a realistic quantifiable assessment of the U.S. cyber research and development technologies to enable a revolution in national cyber capabilities and accelerate transition of these technologies in support of the Comprehensive National Cybersecurity Initiative (CNCI).

Why Is It Needed? Over the ages scientific progress has been held back by the ability to make measurements at the level of the environment for which the scientific research was being done: Telescopes, microscopes, particle accelerators, etc. The National Cyber Range is the measurement capability for cyber research in both classified and unclassified environments. Without it, research wil be done in darkness and only stumble accidently into the light.

slide-7
SLIDE 7

DARPA Hard

Challenge Today’s Ranges National Cyber Range

Security

  • Single test at single

security level

  • System protected at

system‐high

  • Multiple simultaneous tests at different security levels
  • Forensic resources sanitization
  • A safe, instrumented environment for our national cyber security

research organizations to test the security of information systems Range Configuration & Management

  • Manual configuration of

machines and tests w/ scripts

  • Dynamically and securely allocate thousands of heterogeneous

resources across multiple simultaneous tests Test Configuration & Management

  • Manual configuration

and management of tests w/ scripts

  • Graphic User Interface used for configuring tests
  • High level language for test management and resource assignment

Usability

  • Customer must bring

everything to the range

  • Technology drives

CONOPS

  • Technology and configurations recipes automatically loaded
  • Malware repository to assist experiments
  • Scientific observers, attackers, & defenders provided as a service

Realism

  • Tradeoff between

physical (realism) and scale (emulation)

  • Limited wireless and

MANET capability

  • Large‐scale (10K+) combinations of physical, virtual, and emulation
  • Emulate commercial and tactical wireless & control systems
  • Extensible for new technologies and external ranges
  • Chip level heterogeneous virtual machines
  • Integrates new protocols using or replacing the TCP/IP protocol stack

Test Time

  • Constrained by real

time

  • Accelerate test time to reduce time for results
  • Decelerate test time to analyze and develop alternative results

Scientific Measurement

  • Test specific raw data

collection

  • Qualitative and quantitative security assessment of cyber technologies
  • Forensic data collection, analysis, and presentation
  • Time synchronization across devices

Traffic Generation

  • Automatons
  • Traffic generators realistically emulate human behavior and frailties
slide-8
SLIDE 8

Providing the environment to solve the Nation’s Cyber problems

UNCL ASSIF IE D: Distr ibution State me nt “A” (Appr

  • ve d for

Public R e le ase , Distr ibution Unlimite d)

8

Program Timeline

Phase I

Design

Jan 09 – Sep 09

Phase II

Prototype

max 15 mo

Phase III

Construct

max 24 mo

Phase IV

Operate

IOC - 1 De c 09

6 Mo

PDR Deliverables

  • Detailed Engr Plan
  • System Demo Plan
  • CONOPS
  • Phase II Proposal
  • Revised OCI Plan

Deliverables

  • Phase III Proposal
  • Phase IV Proposal
  • Phase III SDP
  • Develop Prototype
  • Prototype Demonstration

2 Mo

Deliverables

  • Build NCR
  • NCR Testing

Operations Phase

CDR Demonstration

ICD - Initial Conc e ptual De sign PDR

  • Pr

e liminar y De sign R e vie w CDR

  • Cr

itic al De sign R e vie w F OC- F ull Ope r ational Capability ICD FOC Determination

slide-9
SLIDE 9

Providing the environment to solve the Nation’s Cyber problems

UNCL ASSIF IE D: Distr ibution State me nt “A” (Appr

  • ve d for

Public R e le ase , Distr ibution Unlimite d)

9

NCR Team

* As of F e b 09

slide-10
SLIDE 10

Providing the environment to solve the Nation’s Cyber problems

UNCL ASSIF IE D: Distr ibution State me nt “A” (Appr

  • ve d for

Public R e le ase , Distr ibution Unlimite d)

10

How can you participate?

Government Working Groups

  • Security Accreditation Working Group
  • Joint Working Group

Upcoming Conference and Workshops

  • Quantifying Computer Security
  • Science of Cyber Testing
  • CONOPS Development
  • Technical Transition Test Queue
slide-11
SLIDE 11

Providing the environment to solve the Nation’s Cyber problems

UNCL ASSIF IE D: Distr ibution State me nt “A” (Appr

  • ve d for

Public R e le ase , Distr ibution Unlimite d)

11

Technical Correspondence

DARPA Program Manager -- Dr. Michael VanPutte michael.vanputte@darpa.mil DARPA/STO ATTN: STO: Dr Michael VanPutte 3701 North Fairfax Drive Arlington, VA 22203-1714 Unclassified fax: (703) 248-1800 Program Website: http://www.darpa.mil/sto/ia/ncr.html