Cloud Security
Army cloud plan keys-in on creating a zero-trust architecture

The Army’s cloud plan, announced last week at the Association of the US Army Conference, said it will take advantage of a zero-trust architecture to incorporate a secure SD-WAN, granting the Army a global cloud network without routing all traffic to a boundary cloud access point and providing touch points to the Department of Defense Information Network (DODIN) only where necessary. (Image credit: Insyde Media via Getty)
Like other parts of the federal government, the Army’s cloud plan and data plan put a big focus on zero-trust.The Army’s cloud plan, announced last week at the Association of the US Army Conference, said it will take advantage of a zero-trust architecture to create a global cloud network without routing all traffic to a boundary cloud access point, while providing touch points to the Department of Defense Information Network (DODIN) only where necessary.As per the DOD’s zero-trust strategy, protecting Army data while at rest, in motion, and in use is a “minimum barrier-to-entry” for future combat and weapon systems. The data plan emphasizes a disciplined approach to protecting sensitive information, leveraging concepts like attribute-based access control across the enterprise to allow DOD maximize the use of data while also employing more stringent security standards.The Army is planning fulfill its own definition of a zero-trust architecture by relying on a mix of newly purchased solutions and legacy software. That set up will be configured and modified where necessary to lay the groundwork for more advanced tools like security, orchestration automation and response, as well as new data analytic capabilities. Other lines of effort include establishing training programs and culture around cloud computing, extending a suite of shared services to the Army’s private cloud that can operate even in a disconnected state and developing an enterprise cloud portal to integrate cloud initiatives across the Army, DoD, industry, and academia.On the broader cloud front, the Army also announced its $1 billion Enterprise Application Modernization and Migration (EAMM) contract, which aims to offer a more convenient way for Army IT teams to purchase cloud services. The service plans to structure the contract as an indefinite-delivery/indefinite-quantity (IDIQ) contract with slots for multiple cloud vendors.Army spokesperson Bryce S. Dubee told SC Media that the contract will require vendors to provide application modernization services in a standard architecture that is based on zero trust for cybersecurity, while tools such as the Army's DevSecOps platform (called CReATE) will also be provided to vendors to enable a continuous Authority to Operate."The goal of the contract is to modernize and migrate enduring applications currently residing in Army on-premises data centers to the cARMY commercial cloud. This will enable the Army to close a number of on-premises data centers while at the same time help modernize the enduring applications to become cloud-native," Dubee said in an email.
An In-Depth Guide to Cloud Security
Get essential knowledge and practical strategies to fortify your cloud security.
Related Events
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds