WASHINGTON, May 20 (Reuters) - The U.S. Navy is working hard to improve the cyber security of its computer networks and weapon and communications systems, while bracing for potential attacks on power grids and fuel supplies, Navy Secretary Ray Mabus said Wednesday.
Mabus said cyber warfare was a clear threat given Russia’s use of cyber attacks before its physical invasions of Crimea and Georgia.
“We’ve got to pay a whole lot of attention to this,” Mabus said at an event sponsored by Defense One media group. “Cyber is in everything now. It’s not just weapons systems. It’s in every system because we are so networked.”
Mabus confirmed a recent Wall Street Journal report that the Navy was looking at replacing IBM servers used for its Aegis combat system after International Business Machines Corp’s $2.1 billion sale of its server division to China’s Lenovo Group Ltd last year.
“If there’s a danger or potential danger with a platform, you’ve got to take a look at that,” he said.
U.S. military officials have become increasingly vocal in recent years about cyber espionage and attacks launched by China, Russia and other potential enemies.
Mabus said the Navy was including more cyber threats in its war games and moving to develop alternative energy sources and microgrids. “If the grid happens to go down, for whatever reason, we can be off the grid and still provide a military to do the job,” he said.
Vice Admiral Jan Tighe, commander of the Navy’s Fleet Forces Command and 10th Fleet, this month released a five-year strategic plan for dealing with cyber threats.
The Navy also launched a “CYBERSAFE” program aimed at ensuring the security of a small set of components and processes whose failure would harm critical capabilities, equipment and people.
Vice Admiral Ted Branch, deputy chief of naval operations for information dominance, said in a memo the program would be fully operational sometime next year.
The CYBERSPACE program office is due to brief Chief of Naval Operations Admiral Jonathan Greenert next month about its work, to mirror similar “SUBSAFE” efforts to ensure safety on nuclear-powered submarines, a Navy spokesman said.
The effort will focus on ship safety, ship combat systems, networked combat and logistics systems.
Much like the submarine security system, it will rely on common standards set by an independent technical authority, acquisition standards, assessment by an independent security authority, and ultimately certification by a separate body. (Reporting by Andrea Shalal; Editing by Christian Plumb)