The Army requires cyberspace Modeling & Simulation (M&S) in support of cyber mission planning, proficiency training, cyber Situational Understanding (SU), and exercise support. This demands that M&S tools perform cyber actions and cyber effects because the kinetic and cyber domains are becoming increasingly integrated and dependent upon one another. This presentation focuses on cyber effects simulation as a partial solution provided by CyberSAF which interoperates with cyber action tools. CyberSAF is a One Semi-Automated Forces (OneSAF) system configuration, a US Government owned open source M&S framework designed to provide automation for planning, training, SU, exercise support, testing, experimentation, acquisition, and analysis capabilities in an array of mission-specific kinetic, non-kinetic, and cyber land, sea, air, and space environments. CyberSAF addresses interactions between cyber effects, and cyber and kinetic domains, by responding to signals which, for example, may take control and crash a simulated unmanned vehicle; passively watch video feeds generated by the simulation; and activate or deactivate simulated Supervisory Control and Data Acquisition (SCADA) devices. These signals are exchanged with CyberSAF which can either act as a gateway between cyber action simulators, or can act as a MSEL or test tool to stimulate CyberSAF on demand without requiring external systems. CyberSAF can also generate manual, reactive, and automated outputs.
OneSAF interoperates with a variety of MC systems including the future SitaWare system currently in development. SitaWare provides a potential platform to host CyberSU capabilities with its open architecture. Integrating with SitaWare will provide an intuitive and familiar platform for cyberspace mission and support personnel at all levels. For example, Cole Engineering Services, Inc. (CESI) built a prototype Course of Action (COA) analysis SitaWare plugin which embeds OneSAF and Marine Air Ground Task Force (MAGTF) Tactical Warfare Simulation (MTWS) into the MC stack to provide artificial intelligence that identifies likely challenges, viable COAs and potential mission impacts.
OneSAF provides a low fidelity emulation of realistic mission-specific logical environments such as cell towers, IP networks, and satellite links. It has been used as a tactical traffic generator for testing and security accreditation activities, pairing well with other commercial and military generators. OneSAF includes a variety of cyber capabilities such as Cyber Operations Battlefield Web Services (COBWebS) which creates the effects of adversary cyberspace effects, anomalous network activities, and insider threats without changing the configuration or software of Mission Command (MC) systems.
Integration with Sitaware hides the details of the simulation from the commander, enabling seamless imports of existing SitaWare plans, equipment, and scenarios for expedient cloud-based COA anaylsis outputting a variety of information, charts, and graphs aiding the Military Decision Making Process.
As a component of WARSIM and LVC-IA, OneSAF participates in exercises at different classification levels separated by a guard interface. Higher classified capabilities are exercised in a domain synchronized and fed with conventional warfare information from lower classification domains. In the case of PCTE, this approach may provide a solution as the cyber effects are exchanged between domains as opposed to the cyber actions and techniques which stimulated those effects.