Posted on Feb 27, 2015
The CIA is storing sensitive data on an Amazon cloud?
8.14K
33
28
4
4
0
Apparently, the AWS GovCloud has just come online. Designed to serve 17 (mostly unnamed) U.S. intelligence agencies, the cloud is described as “an isolated AWS Region designed to allow U.S. government agencies and customers to move sensitive workloads into the cloud….”
Bearing in mind how many legal and moral headaches came along with hiring civilian contractors to perform "security services" in combat theaters, who else thinks that using corporations to store (and potentially analyze) our intelligence data is a recipe for disaster?
Full article at http://www.enterprisetech.com/2015/02/26/spy-agency-adding-capabilities-to-its-aws-cloud/
Bearing in mind how many legal and moral headaches came along with hiring civilian contractors to perform "security services" in combat theaters, who else thinks that using corporations to store (and potentially analyze) our intelligence data is a recipe for disaster?
Full article at http://www.enterprisetech.com/2015/02/26/spy-agency-adding-capabilities-to-its-aws-cloud/
Posted >1 y ago
Responses: 10
Since there are 17 US Intelligence agencies in the US Intelligence Community, it was probably assumed that they didn't have to be named.
Central Intelligence Agency
National Security Agency (DoD)
Defense Intelligence Agency (DoD)
National Geospacial Intelligence Agency (DoD)
National Reconnaissance Office (DoD)
Air Force ISR Agency (DoD)
Army Intelligence and Security Command (DoD)
Marine Corps Intelligence Activity (DoD)
Office of Naval Intelligence (DoD)
FBI National Security Branch (DoJ)
DEA (DoJ)
Office of Terrorism and Financial Intelligence (DoT)
Bureau of Intelligence and Research (DoS)
Office of Intelligence and Analysis(DHS)
Coast Guard Intelligence (DHS)
Homeland Security Investigations (DHS)
Office of Intelligence and Counter Intelligence (DoE)
Central Intelligence Agency
National Security Agency (DoD)
Defense Intelligence Agency (DoD)
National Geospacial Intelligence Agency (DoD)
National Reconnaissance Office (DoD)
Air Force ISR Agency (DoD)
Army Intelligence and Security Command (DoD)
Marine Corps Intelligence Activity (DoD)
Office of Naval Intelligence (DoD)
FBI National Security Branch (DoJ)
DEA (DoJ)
Office of Terrorism and Financial Intelligence (DoT)
Bureau of Intelligence and Research (DoS)
Office of Intelligence and Analysis(DHS)
Coast Guard Intelligence (DHS)
Homeland Security Investigations (DHS)
Office of Intelligence and Counter Intelligence (DoE)
(4)
(0)
MAJ (Join to see)
I did not know about many of those. I also didn't know that the DEA is considered an intelligence agency. Thanks for the information.
(1)
(0)
MSG (Join to see)
DEA is a recently recognized addition. I wrote a paper in 1993 that included the IC--FBI was the only voice from DoJ, and there were 13 recognized agencies instead of 17. Other changes--DoE's representation was just a representative on the Atomic Energy Commission, no real agency; Treasury's agency was the Office of Intelligence Support that gathered information from the Treasury's law enforcement bureaus, which, except for IRS, are no longer in Treasury (ATF to DoJ, Secret Service to DHS...), today they get information primarily from the SEC and FinCEN; and the Geospacial Intelligence Agency replaced NIMA, I'm guessing there was a transfer of authorities.
(1)
(0)
Listen, I work on a military system that is constantly under attack for NOT using "best of breed" software that is commercially available. But the truth is we *DO*!!! But then look at this reaction.
Guess what? We are running Microsoft Office on Dell computers. We use Blackberries. And on and on and on. We cannot create every single thing we use in house. This may seem obvious, but there is not a difference between these things and what you are complaining about.
I think the bigger issue here is the Cloud Computing concept. People are afraid of it. I have been around long enough to remember how scared people were about Shared Drives. Believe it or not, there were outcries about security concerns (and data loss issues) for e-mail, voice mail, heck, computers in general. And at first, there were problems/issues, but imagine if we had shut it all down because of the nay sayers.
Guess what? We are running Microsoft Office on Dell computers. We use Blackberries. And on and on and on. We cannot create every single thing we use in house. This may seem obvious, but there is not a difference between these things and what you are complaining about.
I think the bigger issue here is the Cloud Computing concept. People are afraid of it. I have been around long enough to remember how scared people were about Shared Drives. Believe it or not, there were outcries about security concerns (and data loss issues) for e-mail, voice mail, heck, computers in general. And at first, there were problems/issues, but imagine if we had shut it all down because of the nay sayers.
(4)
(0)
Corporations build the government's rifles, tanks, computers, radios, buildings, phones, airplanes, and just about everything else. They make the hard drives that all data is stored on, and the software to manage it. The government does not have the internal capability to build much of anything... Companies are the only ones with the knowledge and expertise to do these things, under government oversight.
(3)
(0)
LTC Yinon Weiss
SFC John Gates - I'm trying to clarify what you were conveying in your post. Military networks such as soc.mil are built by defense companies such as General Dynamics as contractors, not by the military itself. DISA manages the project and has technical experts to scope it and lead it, but the majority of the ground level work is done by private companies. Also, the computers that run those networks are built by private companies, using software built by private companies, over internet cables built by private companies, displayed on monitors built by private companies, and typed on by keyboards built by private companies. The government is in the business of governing, not so much in the business of building products by themselves.
(0)
(0)
CPT (Join to see)
LTC Yinon Weiss wrote: "I'm not familiar with any products or services that the government has built on its own at a mass scale."
Sir, put on all of your gear. Look down. Most of what you see is built, retro-fited, or modified by your friends at ARL/AMC. Most of our specialized computer systems either are entirely custom or have customized software or applications.
We try to use commercial solutions as much as possible and it is not just a charitable desire to put money into the US Economy. It is a huge time savings and cost savings if there is something that already exists and is close. But in a way, that has kind of been warped. the example you give about missle systems...let's say they are built by Northrop Grumman, but really, the DoD is their only customer for that system (even foreign sales are managed through DoD). How would you then classify that as "commercial?" It's not. That is part of the problem we are having that leads to astronomical pricing models...but that's a different discussion.
Sir, put on all of your gear. Look down. Most of what you see is built, retro-fited, or modified by your friends at ARL/AMC. Most of our specialized computer systems either are entirely custom or have customized software or applications.
We try to use commercial solutions as much as possible and it is not just a charitable desire to put money into the US Economy. It is a huge time savings and cost savings if there is something that already exists and is close. But in a way, that has kind of been warped. the example you give about missle systems...let's say they are built by Northrop Grumman, but really, the DoD is their only customer for that system (even foreign sales are managed through DoD). How would you then classify that as "commercial?" It's not. That is part of the problem we are having that leads to astronomical pricing models...but that's a different discussion.
(0)
(0)
LTC Yinon Weiss
CPT (Join to see) - The DoD may certainly manage projects, but if I look at my gear, I see civilian companies. My rifle is made by Colt, my optics are made by Trijicon or Nightforce, my boots are made by Rocky, our cameras are made by Canon, our machine guns are made by FN, our HMMWVs were made by AM General, our computers are made by Dell (though they don't actually make it themselves either), our radios are made by Thales, and our software is made by Microsoft. I have no doubt that ARL/AMC makes modifications when needed, but I would stand by what I said that the government has not built any products or services on its own at a mass scale, even if they are the only customer for it.
I would define "commercial" as something built for a profit. Just because the government custom orders a missile from Northrop Grumman doesn't mean the government built it... it just means Northrop Grumman is the producer and the government is the consumer. Maybe it's just a matter of semantics? I don't actually see us disagreeing on anything. My whole point is that a robust capitalistic economy is the greatest source of innovation and productivity that the world has ever known. Being able to harness it has always been to our nation's advantage.
I would define "commercial" as something built for a profit. Just because the government custom orders a missile from Northrop Grumman doesn't mean the government built it... it just means Northrop Grumman is the producer and the government is the consumer. Maybe it's just a matter of semantics? I don't actually see us disagreeing on anything. My whole point is that a robust capitalistic economy is the greatest source of innovation and productivity that the world has ever known. Being able to harness it has always been to our nation's advantage.
(0)
(0)
CPT (Join to see)
I wish your picture was correct, but it isn't. We (the government) are the "innovators," but in general, we aren't good at it. The reason is the flash to bang is too slow. By the time we solicit requirements from end users (and this is a bit of a farce), draft the request for proposals, solicit bids, vet bids, go through the appeals process with the losers, begin development, test, go back through development, test, field...you're looking at ~5 years. We are building 5 year old requirements today. I would argue you that a commercial product is something that is sold on the open market. If it is literally labeled as "not commercially available" than I don't get how someone could argue it's commercial. If real world market factors could influence it, it would, in my opinion, make it better, but it doesn't and can't. That's why our software looks like it was written in 1995. Beyond software, there are many components that are 100% Army designed, but my be assembled by a company - like your ACUs which you failed to mention. But again, not commercially available and no market influences, no choice in design or input by the company. Consider a visit to Aberdeen Proving Ground; it will be an eye opener.
(0)
(0)
Read This Next