Military Communications and Information Technology: A Trusted ...

22.01.2015 Views
426 Military Communications and Information Technology... • immediately after the end of the mission (e.g. during debriefing), • debriefing session in briefing hall/in headquarters, • at any time by querying/processing factual data repositories gathered by sensors/IT systems, • at any time based on the open source intelligence (OSINT – Open Source Intelligence) data acquired from civilian system (e.g. NASK), which can considered a source of information about incidents from the cyberspace. E. Methodology of information gathering Direct benefits of applying proposed methodology are as follows: • common structure for data retrieved from various sources of information • identification of structural incompleteness within particular observation sheet, in order to assure updated information handling in the future, • preliminary validation of the collected information about incidents in order to: ▷ protect from improper values (and e.g. dates out of range), ▷ account for inertia and physics of the registered phenomenas/processes (e.g. the time required to power on/off a device, initiate/terminate given process), ▷ process the source information to structure it into the form required for later storage in a database, e.g.: divide all the information into types (digital, text, graphical, other). Regarding the structure for data from various sources of information, data from respective reports and notifications will be parameterized and classified into particular blocks/sections in observation sheet. Thanks to such ordering it will be possible to assign attributes to data contained in particular blocks/sections of the observation sheet: • status of the mission concerned by the collected observation (date, type of the mission, cryptonym, code name, composition of the unit, final assessment of the mission, other), • type of incident (good practice, negative experience), • every single incident should be described related to its location (geographical coordinates with the highest possible accuracy, according to different notations: WGS – World Geodetic System, NATO, ...), time (operational time, calendar time), • does the information directly influences soldiers’ health/life (yes/no), • information about the mission (currently executed, mission planned to execution, accomplished mission), • is information confirmed/not confirmed by other soldier participating in a given mission, • information status: up-to-date/out-of-date (specify this date),

Chapter 4: Information Assurance & Cyber Defence 427 Figure 5. Main stages of populating data base of invents • information related to stationary/mobile object, • means by which an information was captured – human senses / additional sensors, • should the information be public/ or restricted, read only, or possible to modify, • quantity and quality of information sources (including personal information) that have confirmed particular elements of information about incident, • is the information new in repository or it is an update of existing one. To summarize above structure of an observation sheet a sample has been provided in the annex to this paper. VI. Conclusions The proposed methodology of collecting information about incidents in cyberspace mapped into a particular group of military activities should enable answering questions about (risk of) certain threats existing in today’s battlefield (especially incidents in the area of cyber security). Such method (of collecting information about cyber incidents) introduces its own identity. In this paper authors propose a comprehensive method that can be applied to collecting information about incidents based on the incidents observation sheet. An effective method of gathering factual data is in the authors’ opinion one of the biggest challenges and show-stoppers in the process of learning adhering to a lessons learnt paradigm (especially considering negative experiences). Thus the authors believe that the proposed method (and recommendations) of collecting information about incidents can be a valuable input into the process of continuous improvement of security level in the cyberspace.

Page 1 and 2: Military Communications and Informa

Page 3 and 4: Contents Foreword .................

Page 5: Contents 5 Methodology for Gatherin

Page 8 and 9: 8 Military Communications and Infor

Page 11 and 12: Building a Layered Enterprise Archi

Page 13 and 14: Chapter 1: Concepts and Solutions f




Page 21 and 22: Applying NAF for Performance Analys








Page 37 and 38: Openness in Military Systems Jessic






Page 49 and 50: The Concept of Integration Tool for






Page 61 and 62: CFBLNet: A Coalition Capability Ena





Page 71 and 72: Selected Aspects of Effective RCIED





Page 81: Chapter 1: Concepts and Solutions f

Page 84 and 85: 84 Military Communications and Info








Page 100 and 101: 100 Military Communications and Inf

Page 103: Chapter 2 Communications and Inform






















Page 149 and 150: Use of Cross Domain Guards for CoNS

Page 151 and 152: Chapter 2: Communications and Infor




Page 159: Chapter 2: Communications and Infor



















Page 199: Chapter 3 Information Technology fo



















Page 239 and 240: Run-Time Ontology on the Basis of E

Page 241 and 242: Chapter 3: Information Technology f






Page 253 and 254: A Robust and Scalable Peer-to-Peer






Page 265 and 266: Automatic Exploitation of Multiling








Page 281 and 282: Information Fusion Under Network Co






Page 293: Chapter 3: Information Technology f





Page 305 and 306: Commanding Multi-Robot Systems with






Page 317 and 318: Application of CID Server in Decisi







Page 331 and 332: Managing Lessons Learnt from Daily






Page 343: Chapter 3: Information Technology f

Page 347 and 348: Federated Cyber Defence System - Ap

Page 349 and 350: Chapter 4: Information Assurance &




Page 357: Chapter 4: Information Assurance &









Page 377 and 378: Development of High Assurance Guard









Page 395 and 396: Network Traffic Characteristics for










Page 415 and 416: Methodology for Gathering Data Conc










Page 439 and 440: On Multi-Level Secure Structured Co








Page 455 and 456: Generation of Nonlinear Feedback Sh














Page 485 and 486: Modern Usage of “Old” One-Time












Page 511 and 512: A Abut Fatih 161 Akcaoglu Ismail 11

communications

nato

communication

architecture

interoperability

cyber

networks

defence

processing

analysis

wil.waw.pl

Military Communications and Information Technology: A Trusted ...

Military Communications and Information Technology: A Trusted ... ... View more Military Communications and Information Technology: A Trusted ...

Delete template?

Save as template ?

Military Communications and Information Technology: A Trusted ... Military Communications and Information Technology: A Trusted ...