Homeland Security Information Sharing Architecture

Document Sample
Homeland Security Information Sharing Architecture Powered By Docstoc
					              UNCLASSIFIED




 Homeland Security
Information Sharing
    Architecture

National Defense Industrial Association
     Interoperability and Systems
        Integration Conference
              2 April 2003
                                     William F. Dawson
                                Deputy Intelligence Community
                                  Chief Information Officer
              UNCLASSIFIED                           1
                 UNCLASSIFIED




Agenda
w Objectives
w Approach
w Architecture
w Information Sharing
w Summary



                 UNCLASSIFIED   2
                    UNCLASSIFIED




Objectives
w Use existing capabilities and infrastructures
  to support the analytical and information
  dissemination needs of Homeland Security
w Provide actionable access to information
w Provide a roadmap for future system
  development which ensures interoperability
  across the Federal Government and beyond



                    UNCLASSIFIED                  3
                      UNCLASSIFIED




Approach
w Interconnect a Homeland Security
  Community of Interest (COI) at each security
  level:
        Ø Top Secret SCI
        Ø Secret Collateral

        Ø Sensitive but Unclassified (SBU)

w Establish a governance process at each
  security level:
        Ø Policies
        Ø Standards



                      UNCLASSIFIED               4
                      UNCLASSIFIED

                                 IC Enterprise Architecture


Intelligence Community System for
Information Sharing (ICSIS)
 w Provides the enterprise capabilities to store,
   manage and disseminate HS information using:
   n   Joint Worldwide Intelligence Communications System
       (JWICS) for Top Secret connectivity
   n   Secret Internet Protocol Routed Network (SIPRNET)
       for Secret connectivity
   n   Open Source Information System (OSIS) for
       Unclassified/SBU connectivity



                      UNCLASSIFIED                    5
                     UNCLASSIFIED

                                IC Enterprise Architecture


Intelligence Community System for
Information Sharing (ICSIS)
w Provides the controlled interfaces to securely
  transfer HS data to analysts at lower security
  levels
w Provides a governance structure for sensitive
  compartmented information




                     UNCLASSIFIED                    6
                                                                            UNCLASSIFIED

                                                                                    Homeland Security Architecture

                IC                    IC PKI
              Agencies                provides
                                      Identification
                                      and
                                      authentication
                                      for
                                      HS COI users.


                                                               SCI COI

                 SCI                                   Collaboration     Servers/
              Community                                                   Apps

                Space                                             HS
                                                                Shared
                                                                 Data
                     HS
                     COI
                                      IC PKI                                                      SECRET COI
                                CRL                                                                            Servers/
                                                                                             Collaboration
                          Common                                                                                Apps
                          Services
                            CA                                                                                                                         Unclass COI
                                                                                                        HS
                                                                                                      Shared
                                                                                                       Data                                      Collaboration   Servers/
                                                                                                                                                                  Apps


                                                                                                                                                            HS
                                                                                                                                                          Shared
                                                                                                                                                           Data



                                                                                          HS
                Controlled Interface Controlled
                Enables transfer of Interface                                             COI
                                                                                           HS
                Data from SCI                                                          Collateral
                                                                              Intelink-S                                  Controlled Interface                              Commercial PKI
                To Collateral                                                             Space
                                                                                    Collateral
                                                                                                                          Enables transfer of                               provides
                                                                                                                          Data from Collateral                              Identification
                                                                       PKI           Space                                                                                  and
                                                                        PKI                                               To HS Sensitive                    HS
                                                                                                                              Controlled                                    authentication
                                               DoD PKI                                                                         Interface
                                                                                                                                                             COI            for
                                               provides                                                                                                                     HS COI users.
                                               Identification                                                                                          HS Sensitive
                                               and
                                               authentication                                                                                              Space
                                               for                                                                                               PKI
                                               HS COI users.


SCI Network (JWICS)                             Collateral Network (SIPRNET)                                                               Unclassified Network (OSIS)


                                                                            UNCLASSIFIED                                                                                              7
                                       Sharing Sensitive
                        UNCLASSIFIED


                              Compartmented Information


TS/SCI Infrastructure
w Managed by the Intelligence Community
  n   Takes full advantage of the existing ICSIS and
      Comms infrastructure
  n   CT-Link provides an existing operational Secure
      Community of Interest:
       w Profiled cable/message reports/traffic
       w Community products (Warnings, Assessments)
       w Community databases
           n Examples: State, FBI, CIA, etc.

       w E-Mail
       w Tailored Forums (bulletin boards)


                        UNCLASSIFIED                    8
                                         Sharing Collateral
                        UNCLASSIFIED


                                              Information


Collateral Infrastructure
w Managed by Defense Department (and
  others)
  n   Takes full advantage of the DoD’s existing Secret
      infrastructure
  n   Takes full advantage of Secret version of Intelink
  n   Communities of Interest for Homeland Security
      can be established
  n   One department (e.g., Defense) could lead a
      governance activity


                        UNCLASSIFIED                       9
                                                           Sharing
                           UNCLASSIFIED


                                          Unclassified Information

Sensitive but Unclassified
Infrastructure
w Managed by Department of Homeland
  Security (and others)
  n   Takes full advantage of the existing Federal
      Government infrastructure, including
       w   DOJ/FBI’s Law Enforcement Networks
       w   DoD’s Unclassified Networks
       w   State’s SBU Networks
       w   IC’s Unclassified Networks
  n   Communities of Interest for Homeland Security
      can be established
  n   One Department (e.g., DHS) could lead a
      governance activity
                           UNCLASSIFIED                     10
                                                                                                                        Homeland Security
                                                                                   UNCLASSIFIED


                                                                                                                       Information Sharing
                            Information Flow                                         Data            Participants              Governance


        ET                                                                                                       IC Analysts
      CR
    SE


                    Sources and Methods
                                                                                      Foreign
  P



                       Sensitive Data
TO




                                                                                    Intelligence
                      Actionable Data
                                                                                                                                   IC

       Business Rules




                                             Unclassified Reporting and Feedback
     Controlled Interface




                                                                                                       DoD
      ET




                                                                                    Military and




                                                                                                           Oper
                    Classified Information
    CR




                                                                                        other
                       Actionable Data                                                Secret                                      DoD +




                                                                                                               ators
  SE




                                                                                        Level



       Business Rules
     Controlled Interface
/SB ASS




                                                                                       Law
                        Actionable Data
                                                                                   Enforcement
                                                                                                                                 DHS +
  CL
   U




                                                                                       and         LE and
UN




                                                                                    Domestic
                                                                                                   Domestic
                                                                                                   Agencies
Existing Capabilities
Emerging Capabilities

                                                                                   UNCLASSIFIED                                             11
                   UNCLASSIFIED




Summary
w Existing operational capabilities and IT
  infrastructures can and are being leveraged
  to support the analytical and information
  dissemination needs of DHS
w Actionable information and connectivity is
  required at three distinct security levels
w Coordinated governance processes will
  facilitate timely exchange of Homeland
  Security information
                   UNCLASSIFIED                 12