Cyber Security R&D Activities at the Department of

Download Report

Transcript Cyber Security R&D Activities at the Department of 

Cyber Security R&D Challenges:
Homeland Security Perspective
Simon Szykman, Ph.D.
Director, Cyber Security R&D
202-254-5802
A
Outline
 DHS Organizational Overview
• Information Analysis and Infrastructure Protection
• Science and Technology
 DHS Cyber Security Research and Development
• Research Interests and Priorities
• DHS S&T Challenges
 Research Community Issues
Department of Homeland Security Overview
Secretary
(Ridge)
Deputy Secretary
(Loy) (acting)
Information
Analysis &
Infrastructure
Protection
(Libutti)
Science &
Technology
(McQueary)
Border &
Transportation
Security
(Hutchinson)
• Coast Guard
• United States Secret Service
• Citizenship & Immigration & Ombuds
• Civil Rights and Civil Liberties
• Legislative Affairs
• General Counsel
• Inspector General
• State & Local Coordination
• Private Sector Coordination
• International Affairs
• National Capital Region Coordination
• Counter-narcotics
• Small and Disadvantaged Business
• Privacy Officer
• Chief of Staff
Emergency
Preparedness &
Emergency
Response
(Brown)
Management
(Hale)
Information Analysis and Infrastructure
Protection Directorate
Information Analysis and
Infrastructure Protection
(Libutti, Under Secretary)
Information
Analysis
(Hughes)
Risk
Assessment
Division
Indications
and Warning
Division
Infrastructure
Protection
(Liscouski)
National
Cyber
Security
Division
Protective
Security
Division
Infrastructure
Coordination
Division
National
Communications
System
National Cyber Security Division Mission
The National Cyber Security Division (NCSD) is the national focal point for
addressing cyber security issues in the United States and will coordinate
implementation of the National Strategy to Secure Cyberspace.
Mission components include:
1.
2.
3.
4.
5.
Identifying, analyzing, and reducing threats and vulnerabilities
Disseminating threat and warning information
Coordinating incident response
Providing technical assistance in continuity of operations and recovery
Serving as national focal point for the public
and private sectors regarding cyber security
issues
…to implement the National Cyber Strategy…
Science and Technology Directorate
Science & Technology
(McQueary, Under Secretary)
Office of Plans
Programs and
Budgets
(Albright)
Office of
Research and
Development
(McCarthy)
Homeland Security
Advanced Research
Projects Agency
(Oxford (Acting))
Office of Systems
Engineering &
Development
(Kubricky)
Strategic,
programmatic,
budget planning
Stewardship of
an enduring
capability
Innovation,
Adaptation, &
Revolution
Development
Engineering,
Production, &
Deployment
Planning
Execution
S&T Directorate Responsibilities:
Homeland Security Act of 2002
 Advising the Secretary regarding...
 Identifying priorities for…
 Establishing, conducting, and
coordinating…
…basic and applied research,
development, testing and
evaluation (RDT&E) activities
that are relevant to any or all
elements of the Department,
through both intramural and
extramural programs.
Cyber Security R&D Portfolio: Context
 The Internet serves a significant underlying role in
many of the Nation’s critical infrastructures.
• Communications, monitoring, operations and business
systems.
 Adversaries face asymmetric offensive and defensive
capabilities with respect to traditional warfare.
• Makes cyberspace is an appealing battleground.
 Cyberspace provides the ability to exploit weaknesses
in our critical infrastructures.
• Provides a fulcrum for leveraging physical attacks.
Cyber Security R&D Portfolio: Threats
 The most significant cyber threats to the nation are
fundamentally different from the “script-kiddies” or
virus writers.
 Adversaries who seek to harm the Nation’s critical
infrastructure are driven by different motivations.
 DHS S&T focus is on those threats and issues that
warrant national-level concerns.
Cyber Security R&D Portfolio: Budget
 FY 2004 cyber security R&D budget: $18M
 FY 2005 cyber security R&D budget: $18M
• Overall 2005 budget for DHS S&T: $1.1B
 DHS S&T portfolio budgets developed through
in-depth strategic planning process
Important R&D Areas
Cyber Security
Functional Requirements
• Attack protection and prevention
• Attack detection, response, and recovery
• Situational awareness, incident & warning
• Secure software engineering & development
• Software assurance, code testing & analysis
• Lightweight, low-latency authentication
• Forensics, traceback, attribution
• Hardware/firmware security
• Secure operating systems
Securing the
Infrastructure
• Secure domain name system
• Secure routing protocols
• Secure process control systems
(retrofit and future
infrastructure)
Other Needs
• Privacy
Foundations
for Cyber Security
• Metrics and testing
• Economic assessment
• Long term goal of risk-based
decision making
Domain-Specific
Security Needs
• Wireless
• Internet priority service
• Distributed & embedded
computing platforms
• Red teaming
Enabling
Technologies for R&D
• Testbeds
• Modeling and simulation
• Network mapping
• Security technology and
policy management
Setting the Government Research Agenda
 Critical Information Infrastructure Protection
Interagency Working Group
• Responding to Homeland Security Presidential Directive 7
 InfoSec Research Council (IRC)
• Revisiting the IRC Hard Problems List: 5-10 year problems
that require sustained R&D investments
Improving the Nation’s Cyber Security
 More capable people
 Increased use of security technology in existing
infrastructure
 Development of more inherently secure technology
for new infrastructure
 Migration from existing to next-generation
infrastructure
 Better foundations for risk-based technology
investments
Tackling Cyber Security Challenges:
Business Not as Usual
 Strong mission focus (avoid mission creep)
 Close coordination with other Federal agencies
 Outreach to communities outside of the Federal
government
 Building public private partnerships
 Strong emphasis on technology diffusion and
technology transfer
 Development of migration paths
 Awareness of economic realities
Research Community Issues
 Future cyber security R&D funding
• Anticipated trends
• Funding opportunities: http://www.hsarpabaa.com/
 Investment focus
• Short/long term R&D vs. basic/applied R&D
• Anticipated trends
 Emphasis on technology transfer
• Strategy and plans
• Partnerships
Questions?
Simon Szykman, Ph.D.
Director, Cyber Security R&D
202-254-5802