Command and Control for Security, Port Operations, and IT ... · Cluster Control Panel Automatic...

Command and Control for Security, Port Operations, and IT Considerations for Planning and ImplementationPort Operations, Safety and Information Technology Seminar

Gary Hicks, Science Applications International CorporationJune 11, 2009

2 Energy | Environment | National Security | Health | Critical Infrastructure

© 2009 Science Applications International Corporation. All rights reserved. SAIC and the SAIC logo are registered trademarks of Science Applications International Corporation in the U.S. and/or other countries.

Presentation Summary

• Introduction• Port Security C2 Requirements and Operational Considerations• C2 Implementation Challenges and Standards• Port C2 Example Architecture• Application to Port Operations• Summary



Introduction

• Numerous ports and port regions are investigating and implementing COTS security C2 and Incident Management Systems

• Most major ports are moving to a new paradigm for security systems and domain awareness. The key requirements are:

– Integration of all sensor inputs– Comprehensive situational awareness– Integrated rules and tools for incident management– More collaboration and coordination with stakeholders

• Integrating security C2 on IT networks introduces a new level of complexity– Potential IT and Security turf war– IT procedures, control, and security– The network is the back bone of the security system– There are standards and interfaces required

• Systems Engineering approach needed for implementation• Growth from security only to operations is an emerging trend



Overarching Goal

• To design and implement affordable C2 solutions that can provide total domain awareness and shape event response outcomes through better informed decision-making, coordinated response processes, and synchronized operations



Waterside Surveillance and Facility Access Video

Monitoring

F/OF/OEncoderEncoder

FixedCameras

Dome PTZCameras

Thermal IRCameras

F/OF/OEncoderEncoder

Video

DataF/OF/O

EncoderEncoder

UPS

Sonar

Intrusion Detection

Gate Management

QuickTime™ and a TIFF (Uncompressed) decompressor are needed to see this picture.

RadioLink

Lighting PortPower Back Up

Generator

SMP C2 Center

RadioRadio

GPS

Facility Access Control ControlControl

PanelPanel

Power

Inspection

Data Support

ControlControlPanelPanel

FieldCluster

ControlControlPanelPanel

Automatic Location

LPR

RFID

SwitchRouter

AIS

Waterside Security

Radar

Badging

FieldCluster

Response

WANNext Level

CC(POLA)

X-Ray

Hand

Advanced and R&D

Metal

Biological

Radiation

ChemicalVACIS

PortableVideo / Radar

PortableVideo Laser

Incident Management and

Situational Awareness

Workstations

Server(s)

Communications

Computer AidedDispatch

VTS Interface

Mobile

Display SystemsBiometric

Video

Non CableLink

Cable Link

Wireless and Fiber Data Transcoding

and Transport

Notional Security / C2 System Diagram

Barrier

FieldCluster



What Can the C2 System Do?

• Provide domain awareness and incident management, support recovery with an easy to use system

• Provide and accept information and alerts from all port sensors and ultimately, stakeholders

• Implement security SOP & CONOPS as part of incident management

• Continuous operational improvement and training– Replay incidents, identify lessons learned, update

rules/workflows• Support recovery and business continuity• Comprehensive situation management system to

optimize situation planning, response, and debriefing– View and manage all alarms and incidents– Open architecture– Integrate seamlessly with any of the Port’s edge devices and

systems– Unified operations console and practices– Easy to customize, configure, and modify to meet changing

operational needs– Sustainable and upgradeable software– Adaptable as CONOPS changes as threats change and

regional collaboration expands

Comprehensive situation management system to optimize situation planning, response, and debriefing



Optimal Situational Awareness Approach Combines…

“24” Real-Time Command CenterSituational Awareness

Madden ‘Telestrator’Response

Collaboration and Coordination



Implementation Team and Responsibilities

• Port– Command center facilities– Budget– Staffing– SOP definition– Location of field devices on GIS– They have to collect (and keep updated) all the employee data for selecting the first responders – Leverage vendors like CAD/RMS for interfaces

• Integrator– Validate requirements– Select best SW product and lab/field test– ID system issues– Work with port to implement SOP into rules including regional multi-jurisdictional collaboration of

“all hazards” incident response– Assist in developing plans for training and exercises (including regional)– Work with CAD to insure appropriate information sharing and documentation– Ensure that all pieces of the system are working together

• C2 SW Vendor– New Gateway development– Continual product improvement to support evolving paradigm– Actively support compatibility with and conformance to emerging data models and standards

related to information sharing, data exchange, sensor management, infrastructure protection, and emergency management including: NIMS, NIEM, GJXDM (Global Justice XML Data Model) CTISS, ISE, EDXL, CAP, IEEE-1512, ISO-28000, ISO-20858, FIPS, H.264, CUI, SSI, PCII, SGI, CVI, UICDS, and many others

– Maintenance



COTS SW AnalysisCOTS IdentificationCOTS Capability AnalysisCOTS Performance AnalysisCOTS Cost AnalysisCandidate COTS Selection

Requirements Analysis

Architecture Design

Initial System Objectives Definition

(RFP)

Port Goals and VisionKey RequirementsLegacy Applications

Software and Hardware Design, Implementation,

and Test

Acceptancetesting

COTS Selection

COTS IntegrationInstallationConfigurationFeature ValidationPerformance Validation

Candidates Selected

Candidate SW Lab Tested

Integration and Bench Testing Completed

Interfaces-AC, Video analytics, CBRN, radar, sonar, dispatch, CAD

Developed, Tested and Confirmedothers defined

RESULTS

COTS SW Integration Model



Public Internet

Dispatch Status

Video Feed(push/pull) and Asset Location

Data QueryRequests and Results

Video Feed and Camera Control

Emergency Notification Requests

Map DataWeather, Threat Level, etc.

Interagency

Coordination

AIS and Radar Data

Video

NC4 Data

BidirectionalUnidirectional

KEY

C2 PlatformIncident Response Planning, Incident Management,

Geographic Mapping & Display, Incident Reporting & Analysis

Roam Secure. Emergency Notification

ContactDB

Verint Nextiva/ Object Video

Video Analytics

VideoDB

CAD/RMS(City)

Comms

. AIS & Radar(Marine

Exchange)

NC4 Data(City )

Video Feeds(Satellite, Cable,

VHF/UHF)

ACAMS (Port)

RiverGlass. Smart Search

Auto Info Query

MobileVideo

DB

RealityVideoAVL/BFT andMobile Video

Other Agencies

CAD/RMSDB

SearchDB

Data QueryRequests and

Results

CollaborationWeb-Portal

Mobile andRemote Command Data

ESRI Map Server(PORT)

AlarmDisplay

Public Internet

Example Integrated Command Center

Legacy

New



Port Security C2 User Interface Example

• Sample Incident Process Planning Screen• Easy to create and change incident

response checklists

• Geographic Information Mapping



Typical Operator Station

Geo-ReferencedDisplay

Incident Management Display

RelevantVideo/Sensor Feeds



Application to Port Operations

• Situation Management tool has application to total port situational awareness• Streamline other processes

– Compliance audits• Non security applications

– Asset tracking– Route Management– SCADA functions– Recovery operations– Auditing and Automatic Report Generation

The goal of “Port Security C&C implementation” should be: Transition Port Security from dispatching to full Security and

Business Operations Center (i.e., Situation Management).



C2 Systems Integration Take Aways

• Highly capable COTS systems exist which are being implemented now• Implementation is a team effort and requires careful consideration of the network and

legacy systems• Emergence of standards and reference architectures for safety, security systems

and incident management.– These mandates are starting to be reflected in Grant language

• The proliferation of data sources and functional capabilities that are of interest to Ports demands that future C2 systems incorporate a loosely coupled ,open architectural model

• Four cornerstone capabilities of a next gen open, standards-based C2 platform:1. Information Sharing Environment2. Situational Awareness3. Collaboration4. Coordination

Trust but verify when selecting C2 SW and integrators



Questions



Backup



Next Generation C2 Information Sharing Requirements

• Access and render data from virtually any legacy data repository• Operate in an open-systems standards Internet Protocol (IP) environment

– User-friendly, Web-based environment at the end user level• Access and display real-time data streams from current and emerging

(technology) sources, i.e., data bases, voice interoperability gateway devices, AVL, RFID, GIS, GPS, video, cameras, CBRN, etc.

• Achieve interoperability of diverse Computer Aided Dispatch (CAD) and records management systems

• Apply simultaneous, user specific business processes to the data and event management

• Restrict access to and sharing of data based on pre-defined rules• Comply with and support DHS guidelines/mandates for defined standards and

protocols on an open platform (NIMS/NIEM, cap, etc.)• Auditing and automatic report generation



How We Think About C2 and Standards

STANDARDS

• NIEM (National Information Exchange Model)

• NIMS/ICS (National Incident Management System/Incident Command System)

• UICDS (Unified Incident Command and Decision Support

Command and Control for Security, Port Operations, and IT ... · Cluster Control Panel Automatic...

Documents

Transcript of Command and Control for Security, Port Operations, and IT ... · Cluster Control Panel Automatic...