Command and Control for Security, Port Operations, and IT ... · Cluster Control Panel Automatic...
Transcript of Command and Control for Security, Port Operations, and IT ... · Cluster Control Panel Automatic...
Command and Control for Security, Port Operations, and IT Considerations for Planning and ImplementationPort Operations, Safety and Information Technology Seminar
Gary Hicks, Science Applications International CorporationJune 11, 2009
2 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Presentation Summary
• Introduction• Port Security C2 Requirements and Operational Considerations• C2 Implementation Challenges and Standards• Port C2 Example Architecture• Application to Port Operations• Summary
3 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Introduction
• Numerous ports and port regions are investigating and implementing COTS security C2 and Incident Management Systems
• Most major ports are moving to a new paradigm for security systems and domain awareness. The key requirements are:
– Integration of all sensor inputs– Comprehensive situational awareness– Integrated rules and tools for incident management– More collaboration and coordination with stakeholders
• Integrating security C2 on IT networks introduces a new level of complexity– Potential IT and Security turf war– IT procedures, control, and security– The network is the back bone of the security system– There are standards and interfaces required
• Systems Engineering approach needed for implementation• Growth from security only to operations is an emerging trend
4 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Overarching Goal
• To design and implement affordable C2 solutions that can provide total domain awareness and shape event response outcomes through better informed decision-making, coordinated response processes, and synchronized operations
5 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Waterside Surveillance and Facility Access Video
Monitoring
F/OF/OEncoderEncoder
FixedCameras
Dome PTZCameras
Thermal IRCameras
F/OF/OEncoderEncoder
Video
DataF/OF/O
EncoderEncoder
UPS
Sonar
Intrusion Detection
Gate Management
QuickTime™ and a TIFF (Uncompressed) decompressor are needed to see this picture.
RadioLink
Lighting PortPower Back Up
Generator
SMP C2 Center
RadioRadio
GPS
Facility Access Control ControlControl
PanelPanel
Power
Inspection
Data Support
ControlControlPanelPanel
FieldCluster
ControlControlPanelPanel
Automatic Location
LPR
RFID
SwitchRouter
AIS
Waterside Security
Radar
Badging
FieldCluster
Response
WANNext Level
CC(POLA)
X-Ray
Hand
Advanced and R&D
Metal
Biological
Radiation
ChemicalVACIS
PortableVideo / Radar
PortableVideo Laser
Incident Management and
Situational Awareness
Workstations
Server(s)
Communications
Computer AidedDispatch
VTS Interface
Mobile
Display SystemsBiometric
Video
Non CableLink
Cable Link
Wireless and Fiber Data Transcoding
and Transport
Notional Security / C2 System Diagram
Barrier
FieldCluster
6 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
What Can the C2 System Do?
• Provide domain awareness and incident management, support recovery with an easy to use system
• Provide and accept information and alerts from all port sensors and ultimately, stakeholders
• Implement security SOP & CONOPS as part of incident management
• Continuous operational improvement and training– Replay incidents, identify lessons learned, update
rules/workflows• Support recovery and business continuity• Comprehensive situation management system to
optimize situation planning, response, and debriefing– View and manage all alarms and incidents– Open architecture– Integrate seamlessly with any of the Port’s edge devices and
systems– Unified operations console and practices– Easy to customize, configure, and modify to meet changing
operational needs– Sustainable and upgradeable software– Adaptable as CONOPS changes as threats change and
regional collaboration expands
Comprehensive situation management system to optimize situation planning, response, and debriefing
7 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Optimal Situational Awareness Approach Combines…
“24” Real-Time Command CenterSituational Awareness
Madden ‘Telestrator’Response
Collaboration and Coordination
8 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Implementation Team and Responsibilities
• Port– Command center facilities– Budget– Staffing– SOP definition– Location of field devices on GIS– They have to collect (and keep updated) all the employee data for selecting the first responders – Leverage vendors like CAD/RMS for interfaces
• Integrator– Validate requirements– Select best SW product and lab/field test– ID system issues– Work with port to implement SOP into rules including regional multi-jurisdictional collaboration of
“all hazards” incident response– Assist in developing plans for training and exercises (including regional)– Work with CAD to insure appropriate information sharing and documentation– Ensure that all pieces of the system are working together
• C2 SW Vendor– New Gateway development– Continual product improvement to support evolving paradigm– Actively support compatibility with and conformance to emerging data models and standards
related to information sharing, data exchange, sensor management, infrastructure protection, and emergency management including: NIMS, NIEM, GJXDM (Global Justice XML Data Model) CTISS, ISE, EDXL, CAP, IEEE-1512, ISO-28000, ISO-20858, FIPS, H.264, CUI, SSI, PCII, SGI, CVI, UICDS, and many others
– Maintenance
9 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
COTS SW AnalysisCOTS IdentificationCOTS Capability AnalysisCOTS Performance AnalysisCOTS Cost AnalysisCandidate COTS Selection
Requirements Analysis
Architecture Design
Initial System Objectives Definition
(RFP)
Port Goals and VisionKey RequirementsLegacy Applications
Software and Hardware Design, Implementation,
and Test
Acceptancetesting
COTS Selection
COTS IntegrationInstallationConfigurationFeature ValidationPerformance Validation
Candidates Selected
Candidate SW Lab Tested
Integration and Bench Testing Completed
Interfaces-AC, Video analytics, CBRN, radar, sonar, dispatch, CAD
Developed, Tested and Confirmedothers defined
RESULTS
COTS SW Integration Model
10 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Public Internet
Dispatch Status
Video Feed(push/pull) and Asset Location
Data QueryRequests and Results
Video Feed and Camera Control
Emergency Notification Requests
Map DataWeather, Threat Level, etc.
Interagency
Coordination
AIS and Radar Data
Video
NC4 Data
BidirectionalUnidirectional
KEY
C2 PlatformIncident Response Planning, Incident Management,
Geographic Mapping & Display, Incident Reporting & Analysis
Roam Secure. Emergency Notification
ContactDB
Verint Nextiva/ Object Video
Video Analytics
VideoDB
CAD/RMS(City)
Comms
. AIS & Radar(Marine
Exchange)
NC4 Data(City )
Video Feeds(Satellite, Cable,
VHF/UHF)
ACAMS (Port)
RiverGlass. Smart Search
Auto Info Query
MobileVideo
DB
RealityVideoAVL/BFT andMobile Video
Other Agencies
CAD/RMSDB
SearchDB
Data QueryRequests and
Results
CollaborationWeb-Portal
Mobile andRemote Command Data
ESRI Map Server(PORT)
AlarmDisplay
Public Internet
Example Integrated Command Center
Legacy
New
11 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Port Security C2 User Interface Example
• Sample Incident Process Planning Screen• Easy to create and change incident
response checklists
• Geographic Information Mapping
12 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Typical Operator Station
Geo-ReferencedDisplay
Incident Management Display
RelevantVideo/Sensor Feeds
13 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Application to Port Operations
• Situation Management tool has application to total port situational awareness• Streamline other processes
– Compliance audits• Non security applications
– Asset tracking– Route Management– SCADA functions– Recovery operations– Auditing and Automatic Report Generation
The goal of “Port Security C&C implementation” should be: Transition Port Security from dispatching to full Security and
Business Operations Center (i.e., Situation Management).
14 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
C2 Systems Integration Take Aways
• Highly capable COTS systems exist which are being implemented now• Implementation is a team effort and requires careful consideration of the network and
legacy systems• Emergence of standards and reference architectures for safety, security systems
and incident management.– These mandates are starting to be reflected in Grant language
• The proliferation of data sources and functional capabilities that are of interest to Ports demands that future C2 systems incorporate a loosely coupled ,open architectural model
• Four cornerstone capabilities of a next gen open, standards-based C2 platform:1. Information Sharing Environment2. Situational Awareness3. Collaboration4. Coordination
Trust but verify when selecting C2 SW and integrators
15 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Questions
16 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Backup
17 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
Next Generation C2 Information Sharing Requirements
• Access and render data from virtually any legacy data repository• Operate in an open-systems standards Internet Protocol (IP) environment
– User-friendly, Web-based environment at the end user level• Access and display real-time data streams from current and emerging
(technology) sources, i.e., data bases, voice interoperability gateway devices, AVL, RFID, GIS, GPS, video, cameras, CBRN, etc.
• Achieve interoperability of diverse Computer Aided Dispatch (CAD) and records management systems
• Apply simultaneous, user specific business processes to the data and event management
• Restrict access to and sharing of data based on pre-defined rules• Comply with and support DHS guidelines/mandates for defined standards and
protocols on an open platform (NIMS/NIEM, cap, etc.)• Auditing and automatic report generation
18 Energy | Environment | National Security | Health | Critical Infrastructure
© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.
How We Think About C2 and Standards
STANDARDS
• NIEM (National Information Exchange Model)
• NIMS/ICS (National Incident Management System/Incident Command System)
• UICDS (Unified Incident Command and Decision Support