SIGforum.com    Main Page  Hop To Forum Categories  The Lounge    JEDI Contract Controversy
Go
New
Find
Notify
Tools
Reply
  
JEDI Contract Controversy Login/Join 
Member
posted
I think this is really dumb, AWS is the obvious choice. Is all the controversy made by the losers?

https://www.vanityfair.com/new...ful-in-dc-than-trump

I have a strong personal interest in this. How does all this look like to you?
 
Posts: 1188 | Registered: January 04, 2009Reply With QuoteReport This Post
Member
Picture of Expert308
posted Hide Post
I'd be more concerned about the wisdom (or lack thereof) of putting all the DOD's data in the cloud, than about who gets the contract.
 
Posts: 7511 | Location: Idaho | Registered: February 12, 2007Reply With QuoteReport This Post
Member
posted Hide Post
It’s not the same cloud. It’s a wholly separate installation.

https://aws.amazon.com/govcloud-us/

It’s still a private entity, though it would have 10 billion reasons to keep it tight.


--
I always prefer reality when I can figure out what it is.

JALLEN 10/18/18
https://sigforum.com/eve/forum...610094844#7610094844
 
Posts: 2429 | Location: Roswell, GA | Registered: March 10, 2009Reply With QuoteReport This Post
10mm is The
Boom of Doom
Picture of Fenris
posted Hide Post
One stop shopping for Beijing. What's not to like?

Have these idjits completely forgotten the lessons of compartmentalization and segmentation?

Boggled I am.




God Bless and Protect the Once and Future President, Donald John Trump.
 
Posts: 17613 | Location: Northern Virginia | Registered: November 08, 2008Reply With QuoteReport This Post
Member
Picture of cyanide357
posted Hide Post
As mentioned by Expert308, these systems would be within the AWS GovCloud. And will likely be an isolated / private cloud (isolated further I mean) within AWS GovCloud. CIA already uses AWS for a similar system.

I'm sure there will be plenty of security and auditing. Assuming lots of Linux systems, then things would likely be protected by SELinux, cgroups (kernel isolation used with containers (or LXC/LXD)), and RBACs. Not to mention lots of IDS/IPS (and general DPI) to monitor the network traffic - which I expect would be encrypted itself.

I have no direct background with Gov Systems or standards - but I don't see it making much of a difference since the Pentagon (and gov in general) has been been using private companies for their infrastructure aggressively since 2001. And given the OPM hack from 2015 (by China), it isn't like the non-cloud systems have the best track record anyway.
 
Posts: 261 | Registered: November 24, 2005Reply With QuoteReport This Post
Big Stack
posted Hide Post
The "Cloud" is a relative thing. And this could be a double edged sword. Is it easier to protect and manage security for a single array of servers holding everything, than to do so far a myriad of separate systems scattered hither and yon, all with different groups managing them? The former standardizes security, lessening the chance that some individual system will have security that's not up to snuff. The flip side is, if hackers find a hole, they can get into the whole shootin' match. I would hope there'd be some level of internal partitioning to prevent this.

quote:
Originally posted by Expert308:
I'd be more concerned about the wisdom (or lack thereof) of putting all the DOD's data in the cloud, than about who gets the contract.
 
Posts: 21240 | Registered: November 05, 2003Reply With QuoteReport This Post
  Powered by Social Strata  
 

SIGforum.com    Main Page  Hop To Forum Categories  The Lounge    JEDI Contract Controversy

© SIGforum 2024