The Future of Warfighting: Integrated Cyber Weapons

The immediate challenge is propelling JCWA from its current state—the outcome of an initial attempt to acquire and field a cyberspace operations capability—to its future state: a fully integrated cyber weapons system accelerated by a partnership between the government and contractors who can demonstrate the rapid evolution of systems, utilization of new approaches for refactoring data, and extensive experience advancing information sharing across environments. Partnership with industry that provides for incentives and requires service-level agreements for outcome-based delivery against dynamic needs will provide alignment to the pace and complexity of the mission. Minimum viable solutions should be vetted in months, not years—and contractors should be utilizing parallel baselines, which mirror current delivery, to reduce risk. Contractors should be selected and maintained based on outcomes and responsiveness and held accountable for bringing the most recent capabilities in using scalable and secure infrastructure across mission needs. 

All domain operations require secure, ubiquitous access to data across multiple disparate networks, including non-defense networks and weapons systems. Sensors and weapons systems must employ open data standards to optimize data flow and advanced analysis. Data is the ammunition that feeds the entire weapons system, enabling the rapid execution of critical missions with advanced cyber solutions tailored to meet current and emerging needs.

The platform must protect sensitive data in real-time. Not unlike operators of software-centric 5G ecosystems, operators of the integrated cyber weapons system will need holistic protection that includes zero trust architecture (ZTA), continuous monitoring, development, security and operations (DevSecOps), and an expert workforce, as well as vulnerability research and embedded security. Analytics and automation, two of the seven pillars of zero trust, can rapidly drive security improvements—policy updates aligned to the other pillars—over time at scale through the entire ZTA. The same mindset can also accelerate the growth of JCWA’s arsenal. Just as the continuous development and deployment of new policies will be a critical enabler for secure and resilient cyberspace operations, so must the next generation of JCWA harness the power of automation and DevSecOps to develop full-spectrum cyber capabilities at scale rapidly. These software-based warfighting capabilities would be tailored to meet a wide range of specific mission objectives.

JCWA component programs must be ready for tomorrow’s cyber threats. Shadowing advanced threat activity via open-source and classified intelligence can help fill emerging knowledge gaps and sharpen the continuous development of JCWA’s defensive and offensive capabilities. Also, JCWA programs can make greater use of operational insights on adversarial tactics, techniques, and procedures (TTPs), including leveraging catalogs of the latest vulnerabilities concerning networks, hardware, and software. What’s more, stakeholders can gain further insights as DOD increasingly incorporates contested cyber environments in exercises and training for conventional and special operations forces (SOF): Capturing lessons learned could help support the acquisition of operationally suitable and effective cyber capabilities.

As JCWA moves increasingly to hybrid cloud environments to enable data sharing and other functions, stakeholders must make this pivot an advantage rather than a liability. Obstacles to avoid when moving to the cloud include mission-workload migration pitfalls, vendor lock, and rising infrastructure costs. In short, to achieve the interoperability envisioned, JCWA must enable warfighting software developers to focus more on their core missions and less on the IT infrastructure. Imagine how missions would benefit if JCWA components allowed users to develop applications, migrate data and manage infrastructure across multiple cloud service providers. What’s more, this data-driven weapons platform needs to be designed for real-time configuration management so the overall platform can rapidly reconfigure if one component changes.

The software-enabled systems, sensors, and tools that make up the platform must incorporate novel ways of sharing data, enabling collective thinking, and distilling actionable insights, including harnessing the power of data analytics and AI/ML. In short, JCWA must rapidly manage and access data across multiple platforms and classification domains. Achieving permeability and agility across domains ranks among the top technical challenges for U.S. Cyber Command (CYBERCOM). JCWA systems will need to be designed and built to overcome three challenges that can impede the secure transfer of data across domains and among globally dispersed organizations:

• Outdated data sharing processes: Missions often require cross-domain data flows moving up or down classification levels—typically across U.S. government unclassified, secret, or top secret/sensitive compartmented information (TS/SCI) networks. Yet the cross-domain solutions (CDS) and guard technologies that facilitate information sharing are proprietary appliances that are not designed for the breadth of data types, volume of data, rapidly evolving mission/partner environments, or the speed of information sharing required by today’s analysts and warfighters in evolving Joint All-Domain Command and Control (JADC2) environments. Also, many existing enterprise systems do not have a multi-level security (MLS) architecture to support data sharing, dissemination, and access to users with various security clearances and permissions.
• Inability to meet AI’s insatiable need for data: AI/ML are essential for finding patterns, spotting anomalies, and moving toward predictive capabilities. However, enormous volumes of data are required to train and refine algorithms. That’s in addition to information that must be centralized for cross-domain imperatives such as cybersecurity and JADC2. Also, analytic infrastructure solutions are needed to provide computing power for developing, training, and deploying models/algorithms.
• “One-off” software development: Software developers across DOD have been overloaded with workflows requiring custom applications to be developed and deployed in a complex operational environment, each undergoing separate security accreditation and authority to operate (ATO) processes. Also, custom software solutions may not follow modernized software design patterns.

The 2023 DOD Cyber Strategy highlights the strategic advantage and imperative of protecting and reinforcing the United States’ global network of allies and partners. Increased collaboration with partners from industry and academia, foreign allies and partners, and interagency partners will bring significant advantages, and the future JCWA must address the challenges and opportunities presented by partner capabilities.