Homela Security Institute Homeland Security Institute Overview and

Homela Security Institute Homeland Security Institute Overview and Issues for DIMACS Workshop Gary G. Nelson gary. nelson@hsi. dhs. gov Senior Researcher September 29, 2004 DIMACS 9/29/04

Homela Security Institute Background on HSI Homeland Security Act of 2002 Sec. 312 Competitively Awarded to ANSER Duties: 1. Systems/risk analysis, modeling… 2. Economic and policy analysis… 3. Evaluation of effectiveness… 4. Identification of common standards… 5. Assistance in establishing testbeds 6. Metrics of effectiveness 7. Design/support exercises & simulations 8. Strategic technology development plans HSI Federally Funded Research and Development Center (FFRDC) Arlington, VA DIMACS 9/29/04 FY 04 Research Plan FY 05 Research Plan 2

Homela Security Institute Domain Integration Engage Stakeholders. . . Challenge Assumptions DIMACS 9/29/04 3

Homela Security Institute Integrated/Systems Approach SPONSOR GOALS Stimulate development and acquisition of new systems with homeland security value. End-to-End Analyses Effective Resource Allocation Improve the homeland security value of existing systems—focus on Critical Infrastructures and Key Resources. Operations Acquisition System Development Technology Development Life-Cycle Analyses Deployment Research DIMACS 9/29/04 Portfolio Trades 4

Homela Security Institute Multi-Dimensional Outreach Strategy Stakeholders “Force Multipliers” DIMACS 9/29/04 5

Homela Security Institute Connecting to Workshop Issues Networks: Their Attack Our Vulnerable Assets Objects+Links Emergence Prevent Physical Networks Our Security Information on physical state (limits) Decision Networks (logical) Their Risk Decisions Actions (physical state change) Information (limits) Our Risk Decisions DIMACS 9/29/04 6

Homela Security Institute What are we Trying to Do? l Disrupt their physical attack pathway l Identify our physical vulnerabilities l Make our security (prevent, protect) pathways robust Communication of relevant physical state l Make effective security decisions – Many scales (programming to incident response) – Collaboratively (resource contention) – Robustly (with risk) – Adaptively (evo-devo) Communication of critical physical activations DIMACS 9/29/04 7

Homela Security Institute You: resource--Problem: utilization l Systems approach: organize resources into capabilities! – Apply theory, but how? l A decision network problem – Collaboration of program planners, operators and researchers…all of whom suffer significant and mutual information limits – Risk: establish robust programs given significant external information limits l A bias – Great focus on information-communications – Not enough on decision support applications and techniques DIMACS 9/29/04 8

Homela Security Institute Outlook l HSI will be one of the foci of collaborations – FY 05 consultancies and subcontracts – Tasks focused on network/decision approaches l We can make leaps with “dual benefit” – Exploit the modeling and sensing of the physical network – Exploit modeling of the logical network – Exploit the great leap in open-systems communications (while protecting that physical asset) DIMACS 9/29/04 9