COMMERCIAL ACCOUNTS
E-Commerce Infrastructure for Global Trade
Within this effort for a major IT product
distributor, currently in its third continuation
contract, IT GlobalSecure has developed a
corporate web site and secure corporate intranet
for the purpose of selling the products and
services of forty IT security vendors. This site
will enter full production in Summer-Fall 2001,
is currently being used internally, and is
unique its ability to support web traffic in
numerous languages. This web system, integrated
within existing business processes, tracks both
ground-based and web-based sales and prospects,
with data mining support, in accordance with the
stringent marketing requirements identified by
our customer (See Dunhill Marketing Effort,
Below). Our third continuation contract is
focused on expanding the fulfillment support for
this web site, and will entail integration of
the web site with third-party logistics service
providers to handle product delivery world-wide.
Technologies and disciplines employed in this
effort to date include: Microsoft IIS,
E-Commerce Server and BizTalk, ISA Connector,
machine translation commercial products, Cobalt
LINUX appliances, VPN and secured mobile
platform technologies, Cobalt Qube firewall, SQL
Server, Macromedia Dreamweaver, Merchant
Services, EMUMail (tailored for international
usage), Active Server Pages, FrontRange sales
solutions, and custom code in Perl, Visual
Basic, XML for reseller and affiliate content
exchange, and Javascript.
IT Marketing Analysis and Advertising
Campaign
IT GlobalSecure defined the customer markets,
purchasing interests and criteria of customers
being pursued, the strategies to attain and
increase the customer base, and methods employed
to measure the success of any individual
marketing effort or advertising campaign. The
services for which marketing strategies defined
for global expansion were: High Assurance
(Infrastructure) Engineering Services, Insurance
(Infrastructure Assessment and Remediation)
Services, Law Enforcement (Forensic) Services,
Claims Handling (Privacy and Trust), and
remote-access security services for distributed
mobile operations. The following vertical
markets were specifically assessed, with
emphasis placed on regional areas of interest in
Europe and Asia: Telecommunications, Insurance
Companies, Diplomatic/Government Communities,
Law Enforcement, Gaming, Banking, and Law Firms.
Web Based advertising (press releases,
e-mailings, online sponsored advertising) and
conventional advertising campaigns using
print-based (magazines, direct mail, brochures)
and video-based media were compiled, exercised,
and assessed for their ability to reach
prospects and/or impact web traffic and product
inquiries.
WanWang Security Services for Cellular
Communications
IT GlobalSecure has provided security design
and assessment services for a Chinese
Internet-Protocol-based, wireless, “last mile,”
broadband solution that enables affordable
network service for its customer base. The
security effort required a system engineering
evaluation and formation of design upgrades of
hardware solutions employing recently patented
software known as Dynamic Forward Routing (DFR).
Issues of significance for the WanWang
Communications system, which IT GlobalSecure was
the lead on response, included key management,
review of DFR security, IP-layer security
techniques, and interfaces for other systems
into the WanWang network. Additional work
includes deployment of the China National
Broadcasting Company National Network, called
Prosperity. Activity in deploying this is at an
early stage, and will include not only Internet
access for E-Mail and WWW support, but
Voice-over-IP service, point-of-sales for
commercial stores, restaurants, cash pockets
(ATMs), EDI systems, and very high speed
points-of-presence. It Global Secure is the lead
company with ChinaTelCom for this effort.
Quixotic Solutions Services for Secured
Network Gaming
IT GlobalSecure staff supported the design
and prototyping of a secure three-layer protocol
to create electronic digital contracts for games
played over a network. The protocol ensures that
games cannot be manipulated during game play,
and that games are played fairly (not “rigged”
by a game provider) when played over a network.
This fraud-prevention protocol features a
communications layer, transaction layer, and
application interface. The design efforts of the
IT GlobalSecure team resulted in the integration
of a variety of encryption algorithms for secure
communications, a robust transaction protocol
for reliability, authentication, and
non-repudiation, and an application interface
incorporating cryptographic elements for
securing of game events within a game
application.
Bell Atlantic Security Management
IT GlobalSecure staff provided technical
expertise for a major PKI initiative, as well as
development and deployment of an integrated
password and account management system. This
work was a continuation of the early expertise
that IT GlobalSecure staff gained in public key
infrastructures (PKI) – having presented a paper
at the fist NIST “Invitational Workshop on
Public Key Infrastructures – Toward Secure
Enterprise Management” in 1995, while this
technology was still uncommon in the commercial
sector.
GOVERNMENT ACCOUNTS
United States Treasury Internet
Modernization Project
In this effort, Ms. Campbell was the
Engineering and Project manager for the Treasury
Communications System Internet architecture,
which supported a base of 250,000 users in Fall
1998. This effort was completed in September
1999, with her work delivered through a TRW
contract to U.S. Treasury. This exceedingly
complex effort was accomplished on budget, on
schedule, and resulted in virtually no
disruption of service for the U.S. Treasury and
its fourteen bureaus (including IRS, ATF, Secret
Service, BEP, BPD, and U.S. Mint). This effort
involved the complete refurbishment of the
formerly largely unsecured and
performance-hampered Internet architecture.
Redundant Internet connections were put into
place, resulting in improvements in the access
speeds and location of Internet Points of
Presence. High-grade Cisco dual-homed routers
were installed, with seven firewalls placed in
parallel (load balanced with F5 Labs Big IP load
balancing equipment). These firewalls were
configured correctly using a newly written and
improved U.S. Treasury Security policy.
Demilitarized zones were created, using separate
firewalls, thereby providing an additional layer
of security for collocated application servers
for the IRS. Virtual private network solutions
(VPNs) were designed and deployed for Secret
Service and Alcohol, Tobacco and Firearms (ATF).
Payment systems for Financial Management Systems
were migrated into new VPN architectures, with
improvements made to the transaction
architecture for digital signatures and
verification receipts. Upon debut, this new
Treasury Internet architecture demonstrated its
ability to support an immediate 8-fold increase
in amount of traffic, with sufficient margin for
future growth. The success of this effort was
extolled as an “excellent illustration of
enterprise service” by both Treasury CIO and
Deupty CIO.
United States Treasury PKI Steering
Committee Consultants Support
Concurrent with the U.S. Treasury Internet
upgrades, our staff supported separate
initiatives championed by the Treasury CIO to
secure critical Treasury payroll, portal, and
claims handling applications. Given the amount
of data exchange required between the U.S.
Treasury agencies and outside agencies (such as
Department of Labor, General Services
Administration, and Social Security
Administration), it became essential to provide
application-layer security, so that the data
could be exchanged between different agencies
(and their firewalls). For this reason, our
staff provided support on the selection of
encryption algorithms, tokens, and integration
techniques for these important document handling
and transaction-based systems.
United States Treasury Account Management
and Sales Support
Our staff have extensive experience in
customer relationship management, as a result of
leading the U.S. Treasury Communications System
Account Management Team, which handled $150M in
annual sales for telecommunications, Internet,
software, and security services delivered
through TRW delivery teams. Our staff have
served as direct interfaces between customers
and a wide range of support organizations,
including first through third level Technical
Support Teams, purchasing organizations, Network
Operations Center(s), and logistics teams
located at AT&T, Sprint, Qwest, and Verizon.
Federal Aviation Administration Free
Flight Chief Scientist
IT GlobalSecure staff have performed as Chief
Scientist for the Free Flight Program, led by
Mr. Charlie Keegan, FAA Director, as a direct
report to Ms. Jane Garvey. As Chief Scientist,
we defined the methods used to secure the
transactions between the Air Traffic Control
systems used for air traffic management, and
third-party receivers of air traffic data. This
effort included management support for
transitioning five air traffic control programs
(AUA-500 organization) into this new
Cabinet-level FAA Agency. Our staff, via
delivery through a TRW support contract, also
designed and developed the FAA Free Flight Web
Site in 1997-8. We were responsible for IT
security, data distribution policy issues, and
establishment of e-mail services for this new
organization.
EDGAR System Contract Support
Our staff, under a contract with SEC through
TRW, provided a security assessment of the
Security and Exchange Commission’s (SEC’s) EDGAR
system (the system that handles all
publicly-traded corporate filings in the US). We
documented the security features and shortfalls
of dial-up and Internet security methods used
within the system, designed approaches for
securing forms submitted for the SEC. Our team
proposed the technical approach used for the
migration from a DOS-based architecture to a
Web-based Java solution. We also supported the
exporting of corporate filing data, so that it
could be read and used by approved value-added
resellers (that bundle additional consumer
services with EDGAR data).
Federal Decision Aid Support System
IT GlobalSecure staff performed as the senior
management and deputy program manager for a
90-person U.S. Government program. We were
responsible for hiring engineers, subcontractor
management, schedule oversight, task and work
package creation, and management reporting. We
managed an additional 35 engineers for
world-wide on-site system support. As technical
lead, we worked to migrate client operations
based on Macintosh desktop applications and VAX
servers to a UNIX-based three-tier Intranet
architecture. This architecture involved secured
forms of office automation, document archival
and synchronization, and collaborative
conferencing for branch sites located around the
world. We were directly responsible for the
design of the system security, with emphasis on
robust user authentication and authorization,
file access control, and B2-level auditing on
both client and servers.
National Computer Crime Squad FBI Forensic
Support Contract
Our staff developed an online investigation
architecture, that supported the complete
business process – from investigation through
evidence collection. Our design satisfied all
storage and analysis requirements.
|
