PEOGES - PowerPoint PPT Presentation

Title: PEOGES


1
NCES Capabilities Overview

• PEO-GES
• Version 08.4

UNCLASSIFIED
2
Agenda

• NCES Overview
• NCES Production Capabilities
• User Access Defense Knowledge Online (DKO)
• Collaboration
• Metadata Registry (MDR)
• Federated Search
• Enterprise Catalog
• Machine-to-Machine Messaging
• Service Discovery
• Service Security
• Steps to use NCES Capabilities
• NCES Lessons Learned
• Additional NCES References

3
NCES Overview

• NCES is an enabler for information sharing within
  the DoD as well as with federal, allied,
  coalition and multinational partners
• NCES will allow users and information systems to
• Find and access relevant information
• Expose the information they produce for others to
  discover
• Collaborate in a more effective manner
• Distribute data to forward deployed areas
• Increase performance and reliability of data
  access, and
• Utilize the enterprise infrastructure for
  evolving DoD systems to a Service-Oriented
  Architecture.

NCES is the foundation for knowledge sharing and
future knowledge creation
4
NCES OverviewMacro Perspective
NCES Capabilities
Service Oriented Architecture Foundation
People Discovery
User Access via DKO (SIPR NIPR)
NCES Users
Global Combat Support System
Distributed Common Ground System
Net-Enabled Command Capability
Defense Technical Information Center
Theater Battle Management Core System
Global Command Control System
Integrated Strategic Planning Analysis Network
Communities of Interest
National Geospatial-Intelligence Services
NCES Early Capabilities Baseline Users
NCES is delivering capabilities to enable the
Departments net-centric information sharing
transformation!
5
Enterprise Services
Discussed Today
Ability to operate in a secure environment
Real-time update and alert notification as
information changes
Ability to develop and reuse capabilities
regardless of platform increased
flexibility and agility
NCES
Interoperability of data with shared
semantics
Web-based source for information on NCES and
access to its services
Access to shared/ stored data improved
shared awareness
Improved Quality of Service
Communicate in real-time using voice, text,
and video sessions
6
Defense Knowledge Online (DKO)https//www.dko.dod
.mil

• Purpose
• Provide a single point of access to DoD Services
• Key Facts
• DKO is provided by Army Knowledge Online - same
  platform, same services - 1.9M users online now
• NCES Developer's Page on DKO provides initial
  orientation for early adopters
• Legacy NCES Portal (Defense Online
  (DOL)/GESPortal) to shut down NLT 12/31/07
• Joint Accounts on DKO available for all DOL/GES
  Portal users now (sign up TODAY!)
• CAC or User ID/Password for logon
• Support for software-based PKI certificates.
• Will be expanded to support 2.5M (NIPR) and 300K
  (SIPR) users by March 2008
• Primary Benefits
• All users can create knowledge centers and post
  content to share information
• Provides personalized, user-defined, Web-based
  presentation that allows for secure access to
  enterprise services
• Allows users to efficiently and securely
  collaborate and share information
• Organizations can save by eliminating/avoiding
  costs to establish/sustain own local portal
• Primary Audience
• COIs, DoD Capability developers, End users

5
7
Defense Knowledge Online (DKO)https//www.dko.dod
.mil
How to get started
6
8

• Defense Knowledge Online (DKO)Demonstration

9
Collaboration

• Purpose
• Provide Web Conferencing, IM, Chat, file-sharing,
  and application-sharing capabilities
• Key Facts
• Two Buttons
• IBM Sametime (www.e-collabcenter.com)
• Currently operational on NIPRNet and SIPRNet
• Required Static Destination Ports
• Port 80 TCP http web traffic
• Port 443 TCP https encrypted web traffic
• Adobe Connect/Jabber IM/Chat (www.dco.dod.mil)
• Available for testing on NIPRNet and SIPRNet
• Requires Flash Player, Ports 443 and 5222
• Primary Benefits
• Enables collaboration between DOD, homeland
  defense, intelligence, and coalition forces
• Enables migration from costly and complex
  domain-specific collaboration capabilities to an
  enterprise provided service
• Improves warfighter and employee productivity by
  facilitating seamless and secure communications
  across the enterprise
• Primary Audience
• COIs, End users

8
10
Collaboration Button 1 https//www.e-collabcente
r.com
9
11
Collaboration Button 2https//www.dco.dod.mil
10
12

• Button 2 Collaboration
• Demonstration

13
DoD Metadata Registry (MDR)https//metadata.dod.m
il

• Purpose
• Provide an on-line repository which enables
  developers to reuse, understand, integrate with,
  and share existing data assets (metadata)
• Targeting web services, databases, and
  vocabularies
• Provides a portal for developer access and web
  services for machine-to-machine access
• Key Facts
• Over 8,000 users and 180,000 assets registered
• Over 900 Programs of Record supported
• Serving the DoD, DHS, IC, NASA and NATO
• Hosted on NIPR, SIPR, and JWICS
• User driven via DoD Metadata Working Group and
  Feedback links on the portal
• Implements the ebXML standard for Metadata
  Registries
• Single Sign-On through DKO
• Primary Benefits
• Enables reuse and governance of data assets
• Foundation for other services e.g. mediation
• Allows the COI data assets to exist after the COI
  disbands
• Primary Audience
• COIs, DoD Capability developers

12
14
DoD Metadata Registry (MDR)https//metadata.dod.m
il
new

• Mission Area List
• Domain List
• COI List
• COI Links

13
15

• DoD Metadata Registry (MDR)
• Demonstration

16
DoD Discovery Metadata Specification (DDMS)
https//metadata.dod.mil/mdr/irs/DDMS

• Purpose
• Provides a uniform set of metadata to promote
  visibility of data assets across the Department
  of Defense.
• Key Facts
• Called out in DoDD 8320.02, Data Sharing in a
  Net-Centric Department of Defense
• Endorsed by E.O. 13388, Further Strengthening
  The Sharing Of Terrorism Information To Protect
  Americans
• Uses IC Information Security Markings (IC-ISM)
  for security markings on elements that may
  contain sensitive data.
• Used by Federated Search, Enterprise Catalog, DoD
  Metadata Registry,
• Employed by numerous COIs to facilitate discovery
  of data assets across the DoD enterprise
• Adopted both within and outside of the DoD,
  including NATO, Canadian Dept. of Natl Defense,
  and DHS
• Extensibility supports specialized discovery
  requirements
• Primary Benefits
• Common vocabulary for discovery data
• Managed through the DoD Metadata Working Group
• Leverages well established standards (Dublin
  Core, GML, ISO 8601, )
• Primary Audience
• COIs, DoD Capability Developers, DoD Data
  Providers

17
DoD Discovery Metadata Specification (DDMS)
https//metadata.dod.mil/mdr/irs/DDMS
18
Federated Searchhttps//search.nces.dod.mil/mse

• Purpose
• Provides a capability which allows users to
  discover information from disparate data sources
  with one query
• Key Facts
• Returns results from the DoD and IC instances of
  Google appliances, COIs, and the Enterprise
  Catalog
• Exposes all types of information via DDMS not
  limited to document-based content (DDMS v1.0/Fed
  Search v1.3)
• Provides a translation layer from legacy,
  non-DDMS based search technologies
• Work in progress for converged DNI and NCES spec
• Content Discovery SDK Package (refer to NCES
  Users Guide on DKO) provides overview to
  integrate with the Fed Search service
• Federated Search portlet enables integration of
  search with any user portal
• Integrates with the NCES Security services, NCES
  Service Registry, and NCES Messaging
• Allows local systems to determine access control
  for search results
• Primary Benefits
• One logged-in, can retrieve results from
  multiple data sources
• Can allow users to discover items in their
  native portal
• Enables Web services to be linked between
  multiple implementations (Search Aggregation)
• Supports searching both structured and
  unstructured data
• Primary Audience
• COIs, DoD Capability developers, End users

17
19
Federated Searchhttps//search.nces.dod.mil/mse
18
20
Enterprise Cataloghttps//search.nces.dod.mil/cat
alog

• Purpose
• Increase visibility for user content
• Targeting documents and web sites
• Provide an index for information sources without
  cataloging capabilities
• Provides publish/remove operations to populate a
  data source with metadata
• Key Facts
• Content Discovery SDK Package (refer to NCES
  Users Guide on DKO) provides overview to
  integrate with the Enterprise Catalog service
• New UI available November 2007
• Leveraged by early adopters
• TBMCS, C2 SSA, MDA
• Primary Benefits
• Expand the quantity and quality of information
  accessible to the enterprise.
• Reduce latency, increase reliability, and
  optimize network traffic to provide efficient
  delivery of information.
• Use standard, vendor-neutral specifications to
  leverage existing Community of Interest (COI)
  information repositories including Web servers,
  file servers, databases, indexes, content
  management systems, and other applications
• Primary Audience
• COIs, DoD Capability developers, End users

19
21
Enterprise Cataloghttps//search.nces.dod.mil/cat
alog
20
22
Machine-to-Machine Messaging

• Purpose
• Promotes decoupling of information among
  producers and consumers
• Asynchronous point-to-multi-point event
  notification using multiple messaging models
  (Publish/Subscribe/queuing/peer-to-peer)
• Alerts, track updates, etc.
• Producers do not have to keep track of consumers
• Producers and consumers do not have to be
  continuously connected to network
• Key Facts
• Accessible through a web-based interface on the
  DKO portal
• Messages searchable through NCES Federated Search
• Primary Benefits
• Guaranteed Messaging allows subscribers to
  receive queued messages after reconnecting to the
  network
• Provides Client Configurable QoS parameters
• Guaranteed messaging
• Priority, time-to-live, persistence, etc.
• Supports Distributed, Federated GIG
• Multiple message brokers/administrative domains
• Application integration
• Supporting Mediation/Orchestration
• Primary Audience

21
23
Service Discovery https//service.nces.dod.mil/wa
sp/uddi/bsc/web

• Purpose
• Provides a services directory that enables users
  to publish and discover shared applications and
  services.
• Key Facts
• Currently operational on NIPRNet and SIPRNet
• Interacts with Service Security to streamline
  access
• Primary Benefits
• Promotes capability reuse
• Promotes service composition and orchestration
• Establishes basic service governance
  capabilities
• Primary Audience
• COI, DoD Capability developers

24
NCES Service Registry https//service.nces.dod.mi
l/wasp/uddi/bsc/web
25
Service Securityhttps//www.us.army.mil/suite/doc
/9572662?inlinetrue

• Purpose
• Protects WEB services from unauthorized use
• Key Facts
• Currently operational on NIPRNet and SIPRNet
• Uses open standards to define the rules that
  secure and protect GIG services.
• Provides multi-attribute authorization and access
  control
• Provides a flexible architecture that PORs and
  COIs can employ within their enclaves
• Primary Benefits
• Ensure that shared information is only accessed
  by appropriate personnel, services and computers
• Primary Audience
• COIs, DoD Capability developers

26
Notional NCESSecurity Architecture
NCES Security Services
AttributeService
Robust Certificate Validation Service
Portal
Request / Response
Request / Response
25
27
People Discoveryand Attribute Service

• Provides the capability to identify and find
  White Pages (e.g. locator) information on people
  by leveraging the Joint Enterprise Directory
  Service (JEDS)
• Capability targeted to provide access to locator
  information contained in Defense Eligibility and
  Entitlement Reporting System (DEERS), the Global
  Directory Service (GDS), the four Service
  directories and other identity repositories about
  personnel and about all DOD CAC Card holders.
• Access to JEDS restricted to authorized personnel
  and services
• JEDS provides both a White Pages website and a
  Web Service Interface
• White Pages via HTTPS
• Application interface via LDAPS
• Web Services interface via SOAP over HTTPS
• Web Service interface uses SAML Attribute
  Query/Response protocol

28
JEDS Implementation
GDS
DEERS
Army EDS
JPAS
Attributes
Attributes
Attributes
JEDS
Attributes
DISANET
Air Force Directory Services (AFDS)
Attributes
Attributes
Pentagon PAED
Attributes
Attributes
NMCI (Navy/MC) White Pages
Others
SAML/SOAPHTTPS
White Pages Attributes
Attribute Service Attributes
HTTPS,LDAPS


Last Name, First Name, Middle Initial,
Generational Qualifier, Rank/Title, DoD
Component, DoD Sub-Component, EDI-PI, Position,
Mail, Citizenship, Personnel Type, Display PKI
DN, Clearance/Controls
Last Name, First Name, Middle Initial,
Generational Qualifier, Rank/Title, DoD
Component, DoD Sub-Component, EDI-PI, Position,
Mail, Citizenship, Personnel Type, Display PKI
DN, Clearance/Controls Other UID, SIPRnet
email, SIPRnet Display Name, Office Phone, Secure
Office Phone, Mobile Phone, Secure Mobile Phone,
Fax, Secure Fax, IP Phone, Secure IP Phone, DSN
Phone, DRSN Phone, User Certificate, Street
Address, Mail Stop, Room Number, City, State,
Country, Postal Code, Source DN, Publish Flag
13 per AD Naming Convention


2 per the ICAS User Attribute Definitions

additional attributes per the JEDS Roadmap
29
Joint Enterprise Directory Services
https//jeds.gds.disa.mil/
30
NCES Techguidehttp//metadata.dod.mil/mdr/ns/ces/
techguide/

• Purpose
• Help promote understanding of the DoD Net-Centric
  Data Strategy as well as more effective use of
  NCES capabilities.
• Key Facts
• Helps provide background, goals and step-by-step
  procedures to become Data Strategy compliant
• Provides relevant use case scenarios often
  encountered throughout the DoD
• Content is provided in a logical structure for
  each role to quickly decipher and understand
• Linked to through disa.mil/nces and the
  Developers Community on DKO
• Primary Benefits
• Enable a program to achieve DoD Data Strategy
  Compliance via NCES Capabilities
• Primary Audience
• Program Managers, Architects and Developers

31
NCES Techguide http//metadata.dod.mil/mdr/ns/ces
/techguide/
32
Using NCES CapabilitiesCOI Data Exchange
Development Perspective

• Collaboration
• Capability for collaborating among COI Members
• Chat sessions
• Member Forums
• Virtual conferencing, etc.
• Defense Knowledge Online (DKO)
• Capability for creating sites for posting COI
  content
• Meeting minutes
• Status reports
• Collaborative work-products,.
• DoD Metadata Registry
• Capability for making structural and semantic
  assets visible, accessible, and understandable
  and locating existing assets
• Data exchange formats (XML Schemas)
• Taxonomies/Ontologies (OWL Documents)
• Assertion of relationships between concepts and
  assets

33
Using NCES CapabilitiesCOI Pilot Development
Perspective

• Service Security
• Capability for protecting Web services produced
  by COI Pilot developers
• Ensure access to services is authentic and
  authorized
• Machine-to-Machine Messaging
• Capability for publishing data for the purposes
  of machine consumption
• Guaranteed messaging for high volume and rapidly
  changing data
• Federated Search Enterprise Catalog
• Capability for advertising and searching for data
  assets
• DDMS entries describing data assets such as Web
  pages and static content,
• Precision search capabilities for locating
  relevant data assets.
• DoD Metadata Registry
• Capability for making service interface
  specifications visible and accessible
• Web service interface specifications (WSDL files)
• Service Registry
• Capability for making data access points visible

34
Using the NCES CapabilitiesGetting Started /
Approaches for Data Exposure

• Acquire PKI and/or ECA certificates and NCES
  accounts
• Get the NCES Users Guide
• Register on DKO
• Request access to the NCES Developers Community

OPTION 1 Expose an existing Web Server by opening
it up to be crawled by the Google search engine.
The enterprise Google search engine is a data
provider to the Federated Search.
Your Data Asset
OPTION 2 Implement the Federated Search Interface
and register it with the NCES Service Registry.
NCES Service Registry
Register endpoint
Your Data Asset
https//service.nces.dod.mil/wasp/uddi/bsc/web
35
Using the NCES CapabilitiesGetting Started /
Approaches for Data Exposure
OPTION 3 Implement a custom Web service. -
Register the endpoint in the NCES Service
Registry. - Register the WSDL and XML Schemas in
the MDR.
NCES Service Registry
Register endpoint
https//service.nces.dod.mil/wasp/uddi/bsc/web
Your Data Asset
DoD Metadata Registry
Register
Pointer to WSDL file
Register
Enterprise Catalog
http//metadata.dod.mil
36
Integration with NCES Servicesfor COI Case
Studies
37
NCES Lessons Learned

• Posted to Developers Community on DKO
• Command and Control Space Situational Awareness
  (C2 SSA) COI
• https//www.us.army.mil/suite/doc/7000110
• Maritime Domain Awareness Data Sharing COI
• https//www.us.army.mil/suite/doc/7166679
• STRATCOM Global C2 Data Pilot
• https//www.us.army.mil/suite/doc/7000580
• Please post additional lessons learned as they
  are identified

38
Additional NCES References

• NCES Public Site
• http//www.disa.mil/nces/
• NCES Users Guide
• http//www.disa.mil/nces/nces_user_guide.html
• NCES Developers Community (hosted on DKO)
• https//www.us.army.mil/suite/page/384284
• NCES Techguide
• http//metadata.dod.mil/mdr/ns/ces/techguide/

39
NCES URLs

• Defense Knowledge Online
• https//www.dko.dod.mil
• Collaboration
• E-CollabCenter https//www.e-collabcenter.com
• Defense Connect Online https//www.dco.dod.mil
• DoD Metadata Registry
• https//metadata.dod.mil
• DoD Discovery Metadata Specification
• https//metadata.dod.mil/mdr/irs/DDMS
• Federated Search
• https//search.nces.dod.mil/mse
• Enterprise Catalog
• https//search.nces.dod.mil/catalog
• Service Discovery
• https//service.nces.dod.mil/wasp/uddi/bsc/web
• Joint Enterprise Directory Service
• https//jeds.gds.disa.mil

40
NCES High-Level Schedule
FY07

• DKO-N Joint user access Jan
• Metadata Registry V6.0 Feb
• Service Discovery Update Feb
• Service Security Update Feb
• Milestone B - Mar
• Content Discovery Centralized Search (SIPR) Apr
• Release SOAF RFP - May
• Deploy ESM May
• Converged DoD/DNI Federated Search Specification
  - Jun
• Award Collaboration Button 2- Jun
• M2M Messaging Upgrade Aug
• Deploy People Discovery Attribute Service
  (SIPR) Sep
• Federated Search (SIPR) Sep

FY08

• Deploy People Discovery Attribute Service
  (NIPR) - Nov
• Award SOAF - Nov
• Federated Search (NIPR) - Dec
• Milestone C - Mar

FY06

• Deploy DKO-S Jun
• Deploy Collaboration Button 1 NIPR - Aug

FY09

• Initial Operational Capability - Jan
• Scale Capabilities - Jan
• Transition Users/Sustain Capabilities - Jan

41
www.disa.mil
42
Federated Search Use Case
COI, POR, C/S/A Data Sources populated from
applications, databases, web content, etc.
Capabilities
Interfaces
Enterprise Services DECC Columbus
Community of Interest
Program of Record
IC Community
EC
Enterprise Catalog
DS
DS
DS
DS
FS
Federated Search
External Applications, Services, and Data Sources
DS
DS
DS
For immediate discoverability users may post
metadata to the Enterprise Catalog
Query is federated and results returned.
Users
DS
Data Source
NCES Fed Search Aggregator
Enterprise Web Content is crawled and indexed
NCES Service Discovery
NCES Security Service
NCES Enterprise Catalog
User Authorized by NCES Security Services
Aggregated results returned
Fed Search Aggregator discovers data sources from
Service Discovery
User Submits Search Query
DECC Columbus San Antonio
DS (Web Enabled)
DS (Web Enabled)
User Logs into DOL Portal, DKO, or COI Application
Results viewed by user
NCES Enterprise Services Management
Federated Search enables information sharing
within and between COIs and PORs
43
Messaging Use Case
Weather Channels A - 20854 B 20374 C
22209 D 75201 E 60601 F 95101
Interfaces
POR Database 1
POR Database 2
POR Database 3
M
Messaging Interface
NCES Security Service
Update Published
A
B
C
D
E
F
DECC Columbus San Antonio
M
NCES Messaging Service
Receives update to subscribed Channel
User Subscribes to Channel
User Authorized by NCES Security Services
Message Store Messaging
Updates
M2M Messaging
Information Displayed on UDOP
User Logs into UDOP
View Weather info
44
DKO Success Stories
45
Why NCES?
As-Is Environment
Pre-NCES OODA Loop
Observe
Orient
Act
Decide
Stove-piped information Large OODA Loop
To-Be Environment
Post NCES OODA Loop
Observe
Orient
Act
Decide
Shared, accessible information Small OODA Loop
NCES creates a shared information space,
increasing decision velocity
46
Todays Challenges

• Substantial time and effort required to
• Identify, aggregate, and coordinate information
  and deliver operational plans
• Identify and aggregate historical and event
  information from internal and external sources
• Sharing information to support dynamic
  situational awareness is difficult to attain and
  maintain in active combat operations
• Logistics, maintenance, and operational mission
  information is difficult and time consuming to
  correlate
• Asset visibility is difficult to achieve and
  maintain

47
NCES Benefits

• NCES will enable
• Increased user access to accurate and relevant,
  automatically updated, information
• Decreased planning cycle times
• Rapid user access to local and enterprise
  information/intelligence sources
• Accurate and relevant information retrieval from
  local and enterprise sources
• Rapid exchange of information in support of
  shared situational awareness
• Global visibility on combat support information