• Topic: Developing the Data Fusion as a Service Concept for Cloud

• Speaker: Dr. Merrick S. Watchorn, DMIST, CCSK, SS

Biography:• Dr. Watchorn serves as the Director of Strategic Planning for the Open Source Software Institute (OSSI). He aides in defining where OSSI

is heading over the next years or more. He formulates strategies, suggests changes or improvements to current business plans, policies, and procedures. It is his job to formulate feasible recommendations to the management on how to optimize near-term growth. He has proven executive leadership skills, developed over the course of twenty-five years of work experience, with the ability to develop, motivate, and lead complex teams to provide the desired outcome of his clients. He has expansive computer and systems experience including business systems development, complex networking, database management, and advance programming requirements in classified and unclassified programs. He is an experienced team leader, supervisor, and resource manager; with extensive inter-agency experience, while acting as a senior military liaison for all branches of the Department of Defense; including Senior North Atlantic Treaty Organization personnel.

• Dr. Watchorn enlisted in the United States Navy and service honorable until June 2007. As a member of the Submarine Force, he served at various duty stations with different roles and responsibilities. His final duty station was Chief of Naval Operations, Joint Action Control Office and provided direct support to various Flag Officers within the Pentagon. Today, Dr. Watchorn resides with his spouse Michelle and two children in Northern Virginia. He is an active member of the Wounded Warrior Project, NIST Cloud Security Ontology and Taxonomy Group, NIST Cloud Computing Security WG, NIST Cloud Computing Standards Roadmap, Open Source Software Institute (OSSI), Cloud Security Alliance (CSA), Mission Critical Veterans Retraining Project (MCVRP), and provides mentorship sessions with students around the world for the University of Phoenix Dr. Watchorn attained his doctorates in November 2014 from the University of Phoenix, School of Advance Studies for Organizational Management with three specializations.

Data Fusion as a Service (DFaaS )

• The DFaaS concept will incorporate the capability to query, transport and audit, discover, and provide data pedigree. The DFaaS concept integrates with any organizational Identity as a Service (IDaaS), Information as a Service (IAaaS) and Cyber Security as a Service (CSaaS) solutions to meet NIST, CNSS, FISMA, FedRAMP, PCI, HIPPA, SOX, and DCID 6/3 or ICD 503 standards. The adoption of additional protection levels requires a common transportation, handling, and auditing standards for clients, which aides in obtaining data stewardship adoption. The DFaaS layer provides us the ability to connect to any data centric solution to support the following traits to the overall architecture 1) Security, 2) Data Geo-Location, 3) Auditing 4) Pedigree and 5) Lineage.

• Off the Shelf Commercial Data Fusion software packages should provide advanced data transformation and data fusion capabilities. The DFaaS implementation requires an enterprise-capable fusion entry points for both front-end and back-end applications. DFaaS works with any authentication and authorization system, including the client custom-built systems. The DFaaS implementation provides federated views into a variety of systems. The DFaaS shall connect, transport, and protect sensitive data in real-time without adding any noticeable query latency. The DFaaS provides the ability to connect to multiple types of data sets to construct new data products to share to the mission analyst to achieve their mission goals.

Identity as a Service (IDaaS).

• IDaaS is the management of identities in the cloud, apart from the applications and providers that use them. The adoption of an IDaaS solution provided by the client which supports the SCSRA in providing an auditing capability to include services for software, platform and infrastructure services in clouds. The implementation of Identity and Access Management (IDAM) functionality, predominantly as web services authorization process, within a service-oriented architecture at the enterprise. Cloud solutions require a complete identify profile to restrict, and authorized activities such as data retrieval, data manipulation, data fusion, and visualization . The IDaaS concept aides in the Information as a Service (IAaaS) implementation in that it provides an auditable method for all activities of users within the cloud ecosystem.

• The IDaaS, IAaaS, CSaaS and IDAM approach provides fifteen layers of integrated security auditing offensive and passive defense layer’s working together with an internal auditing capability creating defense in layer within a security IA posture. The internal auditing validates, summarizes, checks for changes, and differences within the fifteen layers. The fifteen layers, which are recorded, are compared to an independent auditing tool, which monitors change of the baseline. This provides the ability to compare the audit logs with the activities that were authorized within the sessions. The ability to inspect and conduct long-term trend analysis of full-length audit results at the application, software, hardware and network layers provides four peak convergence point.