U.S. Air Force’s CROWS Recognized for Developing Cybersecurity Guidebook

In a new GAO report the U.S. Air Force has been identified as the only service that has issued service-wide guidance, which enables program offices to address system security engineering as an integrated part of systems engineering By DA Editor / 19 Apr 2021
GAO_recognized_US_CROWS_for-developing_system_security_engineering_cyber_guidebook
Follow DA

A newly published Government Accountability Office (GAO) report on “Weapon Systems Cybersecurity” identified the U.S. Air Force as the only service that has issued service-wide guidance detailing how acquisition programs should define cybersecurity requirements and incorporate those requirements in contracts.

The report, which was a follow-up to a 2018 report on weapon system cybersecurity, called out the U.S. Air Force’s Cyber Resiliency Office for Weapon Systems, or CROWS. Specifically it cited the office for having developed the System Security Engineering Cyber Guidebook to “consolidate references to different DOD and Air Force instructions and guidance into a single document and provide more detailed explanations and suggestions for implementation.”

The 40-page report, which was addressed to congressional committees, underscored how important it is that DOD plan for and implement cybersecurity protections early and often throughout a program’s lifecycle. Report authors noted that it is easier, less costly, and more effective than attempting to add, or bolt-on, cybersecurity protections late in the development cycle once a system is fielded.

It also reminded committees that, because contractors play a pivotal role in designing and building DOD weapon systems, DOD must communicate its cybersecurity requirements in its acquisition program contracts.

“This is a significant milestone for the Air Force and our broader cyber resiliency mission,” said Joe Bradley, CROWS director. “Singling out the Air Force and CROWS approach, and noting other services could benefit from it, is a remarkable affirmation of the work our team is doing to bake cyber resiliency into new weapons systems.”

Katie Whatmore, a CROWS systems security engineering lead who oversaw the development of the guidebook, noted that the Air Force’s approach can assist in program development.

“The Air Force’s SSE Cyber Guidebook serves as a single source reference that enables program offices to address system security engineering as an integrated part of systems engineering,” she said. “By following the approach within the guidebook, programs will ensure appropriate requirements are included on contract and necessary analyses are accomplished in order to minimize cyber risks to our weapon systems.”

The CROWS team has worked across the enterprise to ensure all stakeholder organizations are in full support of its approach in creating a common starting point to reference when considering cyber resiliency best practices for their programs.

Posted by DA Editor Connect & Contact
Latest Articles
Ukraine Receives Second IRIS-T SLM Fire Unit from Diehl The IRIS-T SLM system has demonstrated excellent performance in combat conditions since its commissioning in Ukraine, achieving 100 percent hit rate even in waves of attack with more than 12 targets 05 Jun 2023
High-Speed Mine Hunting Solution for Asia-Pacific Country To be integrated onboard a vessel selected by the customer, Kraken will deliver its KATFISH towed Synthetic Aperture Sonar, Tentacle Winch and Autonomous Launch and Recovery System (ALARS) in Q2, 2023 05 Jun 2023
Contract for SLICE Creates Development Path for Future Interoperable Combat Mobility SLICE is a ‘plug and play’ interface designed to provide adaptable and rapidly configurable capability to combat vehicles, allowing them to integrate Front-End Equipment without impacting the vehicle’s lethality, mobility or survivability 05 Jun 2023
ASD Selects Kongsberg to Develop Next-Gen Mission Planning System for Range Modernization The Kongsberg Geospatial system, based on the TerraLens Decision Support Framework (DSF), will enable weapon system end-to-end testing, live firing, and full-scale operational training exercises 05 Jun 2023
Inflatable Walls Training System Bolsters US Army Defense Capabilities Survitec will supply eight Level 4 Inflatable Walls Training Systems (IWTS) and eight Level 2 IWTS Expansion kits to enable temporary urban combat training 05 Jun 2023
New Multi-Port Connector Blocks Deliver High-Density RF Connections Pasternack’s VITA 67 multi-port connector blocks connect multiple antennas, transmitters or receivers in military, aerospace and defense applications 05 Jun 2023
Featured Content
MilDef Continues Supplying Military IT Solutions to Norway The two-year extension will see the company continue to supply its products until 2025 31 May 2023
Honeywell Integrated Flight Deck Completes First Flight After flight-testing hybrid versions, Honeywell Anthem is now fully equipped in the company’s Pilatus PC-12 test aircraft, and can be customized for virtually every type of aircraft, including for military and defense missions 16 May 2023
High-Integrity Inertial Sensors Extend Unmanned Performance & Endurance At XPONENTIAL 2023, Silicon Sensing will be focused on the performance requirements of the next generation of small, long-endurance unmanned air, land and sea platforms for industries including aerospace and defense 08 May 2023