Pentagon testing office finds problems — again — with network security system

Whilst I applaud the power of the audit function there’s obviously something wrong in the requirements and design process that’s stopping the use of a system for four years…:

WASHINGTON — For the fourth year in a row, the Pentagon’s chief weapons tester recommended Thursday that components stop migrating to a fraught network security system until the department proves that the system can effectively help defend against cyberattacks.

The department’s Joint Regional Security Stacks program faces numerous shortfalls, continuing to provide insufficient network defense capabilities, according to the annual report from the Director of Operational Test and Evaluation office. Components should look to other cybersecurity programs in the department’s pipeline, including work on zero trust, the report recommended.

The security system is supposed to improve cyber situational awareness of DoD network defenders by increasing their ability to continuously monitor and analyze network traffic on the DoD information network (DoDIN). The program, managed by the Defense Information Systems Agency, is supposed to be deployed on both the Nonclassified Internet Protocol (IP) Router Network (NIPRnet) and Secret Internet Protocol Router Network (SIPRNet). Its capabilities include firewall functions, intrusion detection and prevention, enterprise management, and virtual routing.

[…]

Original article