DoD Thunder dome Program with Dr. Brian Herman
Dr. Herman: I do not like the term Zero Trust. It works with greenfield but we have legacy data in on legacy systems. I prfer to think about ICAM
Herman: We realize we can't people our way out of this problem the sheer threat vector of the cybersecurity attacks means the paper based authorization will now work
Dr: Hermann: We designed our legacy architecture to keep everyone out but then the tedhnology changes and we had to let everyone in. That is hard to do on legacy systems
Dr: Hermann: Thunderdome, now it is a name like. I probably wouldn't choose it but it makes sense for the hot wars we are in. We need your help in protecting oiur systems and we need you to protect your systems for 2nd and 3rd term effedt targets.
Hermann: Currently we have a simulated lab deployment of classified and controlled networks. We will field test this summer. Mainluy with DCSA on their lab. We don't own anyone's system but we want to partner. The goal is to also not just have one choice, but the technology is immature, standards do not exist in zero trust
Hermann: The DoD has a zero trust officwe to keep us all talking. So what are we doing, "focusing on cybersecurity technologies solutions" like Routers, ICAM, and moving to SASE and not VPNs.
Hermann: We want to make sure people end up where they should end up. Too many people have to access the backbone through VPN just to get a file. It is a problem of a legacy system.
Hermann: The perimeter does not go away in zero trust. It changes. We have to bring it together with the new tylemmetries we put in place.
Hermann: We still have plenty of on-prem applications. We need to take advantage of microservices. Right now you have to log in to too many systems. Commercially you folks can automate 80% of the threats. We haven't reached that level yet. Think about IP addresses. We block them but how fast does an advesaey change them?
DISA awards Booz Allen $6.8M Thunderdome prototype contract. Hermann: We have an integrator with a lot of experience to help us come up with solutions.
"Hermann: We know the new advesary USINDOPACOM." We are going to the rifght thing. We will do operational testing, compare to alternatives, and compare to what we have today.
Question about VPN. Hermann: Our target is to eliminate it. I don't know how long the journey will take. We can't comntrol where users land. We really want to get away from it. Covid challenged our UX and the routing needed to secure cloud access.