Defense

Navy moving toward zero-trust network, with pandemic as pivot point

The Navy's top IT official said the service will use the modernization prompted by the pandemic to move to a zero-trust model for security.

By Jackson Barnett

October 15, 2020

Aaron Weis, the Navy's chief information Officer, left in blue jacket, listens to Dana Deasy, the Department of Defense's CIO, speaks at Marine Corps Base Camp Pendleton, California, March 4, 2020. (U.S. Marine Corps / Cpl. Dalton S. Swanbeck)

The Navy is using disruption from the coronavirus pandemic as fuel to change its cybersecurity architecture, propelling itself toward a zero-trust model to better defend its networks, the department’s top IT official announced Thursday.

By moving to zero trust, the Navy will assume what prior reviews of its cybersecurity have shown: that its networks inevitably are penetrated. What’s different about zero trust is that — as the name suggests — the network operates as if there already are intruders inside and thus strictly limits access to information beyond a user’s specified purview.

The shift was announced by Navy Chief Information Officer Aaron Weis during the Nutanix Cloud Together Summit 2020 produced by FedScoop.

“It is an exciting time as priorities have shifted,” for how the department has moved forward with modernizing its IT during the pandemic, Weis said. The Navy rolled out a telework platform in the early days of the maximum work-from-home posture, which it is now transitioning to an “enduring telework capability” with Microsoft Office, along with the rest of the Department of Defense. The disruption also pushed the service further toward using single-tenant cloud services.

Weis said that the transition to zero trust will not happen overnight. There will be a period where the current model of trying to build defenses at the perimeter — “defense in depth” as the DOD calls it — will remain in place as the transition begins. Zero rust requires the monitoring of all traffic on a network, not just at the edge when users log in — a posture that take more resources. The Navy also will need time to rearrange networks to follow the model.

“That is something that is starting, but it won’t happen overnight,” Weis said.

The idea is not new. The architecture was first envisioned in 2010 and several studies, including one from Congress and the Defense Innovation Board, have found the model would be beneficial for network security. A review of the hack of the Office of Personnel Management suggested government networks use the model, with some movement towards them only recently staring to gain momentum.

This story was featured in FedScoop Special Report: Zero Trust: Evolving Government Cybersecurity - A FedScoop Special Report

Explore report

Navy moving toward zero-trust network, with pandemic as pivot point

More Like This

MPEs gain momentum for sharing information with allied partners

State Department officials say they’re trying to set the tone globally on AI usage, as lawmakers question if it’s enough

How Google Cloud AI and Assured Workloads can enhance public sector security, compliance and service delivery at scale

Top Stories

State Department encouraging workers to use ChatGPT

Federal CIO calls on Congress to fund Technology Modernization Fund

GSA administrator: Generative AI tools will be ‘a giant help’ for government services

Congressional panel outlines five guardrails for AI use in House

With 2023 tax season in the rearview, IRS commissioner eyes expansion of AI capabilities

CMS’s financial office is using LLM pilot to combat loss of institutional knowledge

Top public sector takeaways from Google Cloud Next 2024

Commerce requests information about AI, open data assets, data dissemination

More Scoops

CISA establishing new office focused on zero trust

Completing move to zero trust among Customs and Border Protection’s new IT goals

CISA Zero Trust Maturity Model 2.0 expected in coming days

With shift to increased remote work and zero trust, NIH eyes cloud solution for identity

Deputy federal CIO: OMB seeks evidence of zero trust progress when deciding which IT projects to fund

Secret Service needs to make key improvements to zero trust effort says watchdog

How agencies are moving zero trust from aspiration to transformation

Latest Podcasts

Navy moving toward zero-trust network, with pandemic as pivot point

AI Week 2024 has Come and Gone

Darryl Peek on Elastic’s role in enhancing public sector search and data analytics with AI and Google collaboration

Danny Werfel on How Automation has Enhanced his Agency’s Operations.

Tech

Defense

Cyber

Acquisition