Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Dmg tem2011-0718-10 dosmann--disa tem slides


Published on

Published in: Technology
  • Login to see the comments

  • Be the first to like this

Dmg tem2011-0718-10 dosmann--disa tem slides

  1. 1. DOD Mobility TEM<br />Army CIO/G-6 <br />Mobile Electronic Device (MED) Working Group<br />18 July 2011<br />LTC Matthew Dosmann<br /><br />O: 703-545-1619<br />
  2. 2. Cybersecurity Perceptionof Mobile Electronic Devices on Our Networks<br />2<br />=<br />2011-06-16T08:00Z // MED WG Brief<br />LANDWARNET 2011<br />
  3. 3. 3<br />MED Working Group Overview<br />Begun September 2010<br />ID pilots and ensure they do not put Army networks at risk. <br />Support, evaluate, and analyze <br />Guide pilots in identifying and mitigating risks<br />Plans of Action & Milestones (POA&M) <br />NETCOM Designating Approval Authority (DAA) review<br />Share lesson learned between pilots<br />Generate collaboration within Army and between Services/Agencies<br />
  4. 4. 4<br />MED WG Background<br />Inopportune Timing of Pilots (20+ discovered)<br />WikiLeaks data spillage & increased scrutiny regarding Government spending<br />Not leveraging lessons learned across pilots<br />Major Cultural Issues within Army<br />Improper & unapproved acquisition processes being used<br />Disregard for information security is generally acceptable<br />PD-CHESS waiver loophole allowed procurement of unapproved mobile devices<br />Mitigated with policy requiring purchases to be on the Approved Products List (UC APL)<br />MED Operating Systems (OS) and the physical devices have a lifecycle shorter than the average acquisition process<br />Currently, the only approved mobile device solutions are BlackBerry & Windows Mobile (6.x)<br />2011-06-16T08:00Z // MED WG Brief<br />LANDWARNET 2011<br />
  5. 5. 5<br />Key Facts Bearing on the Issue<br />Mobile Electronic Devices (MED) offer potential for significant efficiencies<br />Demand<br />Rapid civilian adoption of mobile devices<br />Key leaders demanding tablet type device<br />Inordinate risks associated with use of personal devices<br />No approved tablets<br />Complicated by combination of multiple form factors, OS, and device management frameworks<br />Stressing acquisition processes<br />Army and DoD policies not suited to MED <br />Key aspects of mobile apps (e.g. geo-loc, camera) prohibited or restricted by policy<br />Approved MED locked down to the extrem<br />2011-06-16T08:00Z // MED WG Brief<br />LANDWARNET 2011<br />
  6. 6. Required Solution Sets<br />Mobile Device Management<br />Remote Wipe<br />Configuration Management<br />Patch Management<br />Data-At-Rest<br />CAC/PKI Enablement<br />Bluetooth<br />Wifi<br />Physical Connection<br />Application Lifecycle Management<br />App Software Assurance<br />App Store<br />App Maintenance and Retirement<br />Secure Voice<br />6<br />2011-06-16T08:00Z // MED WG Brief<br />LANDWARNET 2011<br />
  7. 7. Current “Mobile”<br />LANDWARNET 2011<br />2011-03-23T08:00Z // Presentation Title Goes Here<br />7<br />BES<br />BES<br />BES<br />
  8. 8. Where We Are Headed<br />LANDWARNET 2011<br />2011-03-23T08:00Z // Presentation Title Goes Here<br />8<br />MDM Y<br />BES<br />MDM X<br />
  9. 9. Next Step After That<br />LANDWARNET 2011<br />2011-03-23T08:00Z // Presentation Title Goes Here<br />9<br />Enterprise Data Management Layer<br />MDM Y<br />BES<br />MDM X<br />
  10. 10. MED COI Synchronization<br />
  11. 11. Way Ahead<br />Integrated DOD approach<br />MED Communities of Interest (COI) Deep Dive, DISA TEM meetings<br />Comprehensive (i.e. DOTMLPF) changes needed<br />Participation from USA, USAF, USMC, USCG, DISA, OSD, DARPA, NSA and FBI<br />Leverage existing efforts to provide continuity in policy and support from tactical edge to “garrison edge”; address new technologies and associated risks <br />Maintain communication with industry to provide different MED solutions<br />Army is engaging with NSA, DISA and Services to create an Enterprise Secure Mobility solution<br />Use commercial standards, platforms, & applications as a foundation<br />An architected solution/service and not a portfolio of products<br />Stronger partnerships with government and industry partners<br />Continue to support, analyze, and evaluate MED pilots<br />Various devices in pilots<br />Developing Medical and Logistics community pilots <br />11<br />2011-06-16T08:00Z // MED WG Brief<br />LANDWARNET 2011<br />
  12. 12. 12<br />Questions?<br />2011-06-16T08:00Z // MED WG Brief<br />LANDWARNET 2011<br />LTC Matthew Dosmann<br /><br />O: 703-545-1619<br />