Pacific Air Forces. I n t e g r i t y - S e r v i c e - E x c e l l e n c e Trans-Pacific Enterprise GIS Implementation for the Pacific Air Forces

Transcription

1 Pacific Air Forces Trans-Pacific Enterprise GIS Implementation for the Pacific Air Forces Geo Integration Office HQ PACAF/CEOG As of: 1

2 PACAF Area of Responsibility PACAF s area of responsibility extends from Alaska through Hawaii, to the U.S. Territories of Guam and Diego Garcia. It encompasses everything from the West coast of the Americas to the East coast of Africa. In total, PACAF s area of responsibility crosses 16 time zones, is home to roughly 60 percent of the world's population, and covers half of the earth s surface. The people of this region speak over 1,000 languages and dialects and are spread throughout 43 countries and 30 territories. As of: 2

3 Defining GeoBase A Transformational Program Innovative Sharing of Geospatial Installation Knowledge Across the Combat Support Spectrum An Information Superiority Tool One Installation Map Delivering Current Situational Awareness via the Network through Information Teaming An Agile Combat Support Enabler Supports Basing Needs in Peace & War Parallels Battlespace Intelligence Mission Infusion is the Aim, Not IT Acquisition/Implementation As of: 3

4 USAF GeoBase Vision One Installation One Map As of: 4

5 USAF GeoBase ConOps Garrison GeoBase One installation one map for all base planning and operations Expeditionary Site Mapping (GeoReach) Advance knowledge of FOL Minimizing basing risk Establish one installation one map forward Strategic GeoBase Support SAF/HAF Analysis BRAC, Homeland Security, Airspace & Ranges As of: 5

6 Previous Mapping Strategy: Functional IT Perspective Map v 3.0 CITS/CIPS IRPIMS ACES Map v 2.0 Map v 4.0 TBMCS-UL ASHS Map v 1.0 FPC2/IBDSS Map v 5.0 Map v 6.0 As of: Integrity - Service - Excellence 6

7 GeoBase Integration Strategy: MAJCOM Perspective HQ PACAF GIO Team HQ ACC GIO Team HQ AMC GIO Team HQ AFMC GIO Team HQ USAFE GIO Team HQ AFRC GIO Team HQ AFSPC GIO Team HQ AETC GIO Team MAJCOM GIOs Guide Acquisition and Sustainment of Common Installation Pictures Per GeoBase Architecture For All USAF/DOD Missions HQ ANG GIO Team HQ AFSOC GIO Team HQ USAFA GIO Team 11 th WG GIO Team As of: 7

8 GeoBase Integration Strategy: Functional Mission Perspective AF/XI AF/XOF AF/SE AF/XIC AF/ILE AF/ILE HQ PACAF GIO HQ ACC GIO HQ AMC GIO HQ AFMC GIO HQ USAFE GIO HQ AFRC GIO HQ AFSPC GIO HQ AETC GIO HQ ANG GIO HQ AFSOC GIO HQ USAFA GIO TBMCS UL FOA GeoBase Contractor Teams with Functional IT Implementation Staff to Interface with Common GeoBase Architecture FPC2/IBDSS ASHS CITS/GCSS ACES IRPIMS 11 th WG GIO C2 AFC2ISRC GIO AT/FP AFSFC GIO SAFETY AFSC GIO COMM 38EIG GIO CIVIL ENGR AFCESA GIO ENV MGT AFCEE GIO As of: 8

9 PACAF GIO Team CY04 As of: 9

10 PACAF GeoBase Timeline : Concept & strategic foundations : Data development : Adoption of spiral development strategy Initial design of spiral capabilities via PACAF GeoBase Spiral Development Plan GeoBase Enterprise Architecture (HAF GIO) Jan : Certification & Accreditation process 2004: Technology acquisition Training Spiral Two/Three deployment As of: 10

11 PACAF GeoBase Policy Framework HAF GeoBase Enterprise Architecture Garrison Mapping Concept of Operations Expeditionary Site Mapping Concept of Operations PACAF GeoBase Strategic Plan GeoBase Spiral Development Plan GeoBase Configuration Management Plan As of: 11

12 PACAF GeoBase Tasks & Tools Geo Integration Office (GIO) Mission Essential Tasks Develop, maintain, and deliver Common Installation Picture (CIP) & Regional Installation Picture (RIP) Host and deliver Mission Data Set (MDS) Customer service Training & technology transfer Reduce duplication of effort Reduce stovepipe solutions Broaden dissemination GeoBase Tools in PACAF Contingency Aircraft Parking Planner (CAPP) Base Engineer Survey Toolkit (GeoBEST) GeoBase Toolkit Defensor Fortis As of: 12

13 PACAF GeoBase Evolution Spiral One Installation GIOs at all PACAF Main Operating Bases and certain higher headquarters CIP replaces C-Tab (base map) RIP & MDS provide thematic information Geospatial Technologies (GIS, GPS, and image processing) Spiral Two (Currently Deploying) Oracle 9i ArcSDE 8.3 Spiral Three (Currently Deploying) Internet Information Services (IIS) 5 Intranet Map Server (IMS) As of: 13

14 Reasons for Adoption Command standardization Senior leadership knows what is available across the command and can expect a consistent product Easy data transfer to higher headquarters (NAF, PACAF, HAF) All program dimensions contained under one roof Applications portability Model reflects/facilitates program growth As of: 14

15 Certification & Accreditation DITSCAP DoD Information Technology Security Certification and Accreditation Process (DITSCAP) Establishes a standard DOD-wide process, set of activities, general tasks, and a management structure to certify and accredit Information Systems (IS) that will maintain the Information Assurance (IA) and security posture of the Defense Information Infrastructure (DII) throughout the life cycle of the system. DITSCAP is a process for managing risk 4 Phases (Sys. Def, Verification, Validation and Reaccreditation) Confusing and seems to be poorly understood and applied by most Relevant Documents DoD Instruction (DITSCAP), ASD Signature 30 Dec 97 DoD M (DITSCAP Application Manual), ASD Signature 31 Jul 00 As of: 15

16 Certification & Accreditation DITSCAP (Key components) Preparation and submission of an SSAA Adequately describes the system and its components Adequately addresses security requirements and security measures in place Includes diagrams that adequately reflect the system s architecture and location Security Test and Evaluation (ST&E) Assess implementation of security design Ascertain that CIAA are implemented as documented in SSAA and perform properly Validate correct implementation of Identification & Authentication, Audits, Access Controls, Object Reuse, Trusted Recovery, and Network Connection Rule Compliance Evaluate system conformance w/reqs, mission, and architecture as defined in SSAA As of: 16

17 Certification & Accreditation SSAA System Security Authorization Agreement (SSAA) Used to help apply the DITSCAP process. Guides the System through the DITSCAP process. Defines operating environment of system Identifies the system Defines risks and countermeasures Helps documents agreement among DAA, user, & ISSO on how risk will be managed As of: 17

18 Certification & Accreditation Key components of an SSAA SSAA (cont d) System Identification (name, description, mission, etc.) Environment Description (location, physical security, etc.) System Architecture (interfaces, external connections, vulnerabilities/countermeasures, and data flow) System security requirement (data classifications, CM, and relevant instructions) Organizations and resources DITSCAP Plan (lifecycle maintenance, schedules, and roles/responsibilities) As of: 18

19 Certification & Accreditation C4ISP Provides a mechanism to raise and resolve program implementation issues related to C4I infrastructure requirements Identifies dependencies and interface requirements between systems early in the acquisition process Enables addressing interoperability, supportability and sufficiency concerns Aids in the Certificate of Networthiness (CoN) As of: 19

20 Spiral Two/Three Hardware HP ML570 G2 (1) Database Server 72GB SCSI hard drives (4) (Two Raid 1+0 volumes) 1.5GHZ XEON processors (2-4) 8GB RAM Dual gigabit NIC Emulex 64bit 133Mhz 2GB HBA LC (2) HP Proliant DL380-G3 (1-3) Spatial Server 36GB SCSI hard drives (2) (One Raid 1+0 volume) 2.8GHZ XEON processors (2) 2GB RAM Gigabit NIC HP Procurve 8 port switch 10/100/1000 Integrated keyboard drawer w/keyboard & trackball 8 port KVM switch Compaq rack 42U As of: 20

21 Spiral Two/Three Software Spiral Two ArcSDE 8.3 Oracle 9i SDS 2.3 Spiral Three ArcIMS IIS 5.0 Tomcat ASP HTML HTTPS/SSL Microsoft Access As of: 21

22 Spiral Two/Three Garrison GeoBase (Network Perspective) External Organizations DISN WAN HAF/SAF Firewall Strategic GeoBase UNCLASS GeoBase Applications ArcGIS Client (GeoBase Toolkit) GeoBEST CAPP Defensor Fortis Web Browser Any NIPRNet Client Installation LAN (NIPRNet) Mission Data Sets CE SF ArcGIS Client ArcGIS Client ArcGIS Client Trimble CORS SE NIPRNet SAN GDM Enterprise Geodatabase Base Network Control Center GeoBase Database Server Win2K SP 4 ArcSDE 8.3 Oracle 9i GeoBase Intranet Map Server Win2K SP 4 ArcIMS IIS 5 ArcGIS Client CIP / RIP Production MDS Hosting GeoBase Service Assurance Training & Technology Transfer Base Geo Integration Office - CE As of: 22

23 Geodatabase Schema PACAF utilizes the Spatial Data Standard for Facilities, Infrastructure, and Environment (SDSFIE) Geodatabase model combined with the ArcSDE repository Do not have to reinvent the wheel Adheres to the Keep It Simple (KIS) principle Ready made tools Can be implemented in any GIS or CAD mapping system Provides an integrated model of multi-thematic data content standards As of: 23

24 SDSFIE Data Model Five Primary Sections: Entity Sets - Broad grouping for data management Entity Classes - Grouping of data within each Entity Set Entity Types - Grouping of items appearing graphically on a map or drawing Attribute Tables - A relational database table containing non-graphic information, or attribute data, providing information about a map feature Domain Tables - Contains lists of valid or permissible values for specific attributes in an Attribute Table As of: 24

25 SDSFIE Data Model Entity Set Entity Class Entity Type Attribute Domain Utilities Water System Natural Gas Wastewater Drain Sump Grease Trap Septic Tank Capacity Age Composition Concrete Fiberglass Steel As of: 25

26 Deployment Tasks Rack and cable servers Connect power Install operating systems Install Ghost images Connect to LAN (Join Domain)** Oracle configuration ArcSDE configuration IIS configuration ArcIMS configuration ISS and base lockdowns Red indicates the need for help from base Network Control Center** As of: 26

27 Deployment Tasks (cont d) Load Spiral One data into Spiral Two database Test ArcSDE/ArcIMS configuration Demonstrate ArcSDE/ArcIMS functionality Demonstrate ArcSDE admin practices Demonstrate ArcIMS admin practices Remap MXD s to ArcSDE layers Build and serve ArcIMS map services Review Oracle/ArcSDE Review IIS/ArcSDE Troubleshoot As of: 27

28 Deployment Schedule Hickam (October 03) Eielson (April 04) Elmendorf (April 04) Andersen (May 04) Osan (June 04) Kunsan (June 04) Yokota (July 04) Misawa (August 04) Kadena (August 04) As of: 28

29 Lessons Learned The C&A/DITSCAP process is cumbersome, extremely confusing, poorly understood, poorly defined, and poorly implemented STIGS (lockdowns) if completely implemented system becomes useless Ghost images need to be perfect Hardware configurations (it s always something) Power is a consistent problem across PACAF Data often does not readily load into SDSFIE 2.3 geodatabase model PACAF has rolled out Z-values often have not been addressed Data often is not rolled up into a single Personal GDB Wildcards always expect the unexpected As of: 29

30 Future Direction Coordinate future integration with other Automated Information Systems Beta test future software releases of core architecture PACAF GIO will guide the linkage from the web-based Base General Plans (BGP) to GeoBase IMS (Spiral Three) Continue to steer the command toward a common technical architecture and database model Work toward automated database rollup from the bases to HQ PACAF Continue to engage the DITSCAP and C&A processes Embed technical architecture review into staff assistance visits As of: 30

31 SDSFIE Compliance Previous guidance was based on advanced level of compliance Addition of custom fields Addition of domain attributes Addition of custom feature classes PACAF collects anomalies and submits to HAF All non-sdsfie fields now contained in external tables Use available domain values Non-SDSFIE feature classes appended with four letter installation code Map correct feature to correct SDSFIE feature class Do not combine separate features into one feature class As of: 31

32 Contact Information Randal Brownell DSN Comm E Street, Suite D-306 Hickam AFB, HI As of: 32