The Department of Homeland Security (DHS) has launched a new effort to ascertain the real-world risks posed by the loss of positioning, navigation and timing (PNT) service and how those risks might be reduced, said James Platt, director of DHS’s PNT Program Management Office. On the table is testing, best practices, partnerships, a new management approach and possibly standards and a backup system.
The focus of that effort is on PNT as it relates to critical infrastructure, which is in line with NSPD-39: U.S. Space-Based Position, Navigation, and Timing Policy (National Security Presidential Directive-39). For more details on NSPD-39, see the Federation of American Scientists’ Fact Sheet.
“I’d like to read you just a few things that our secretary, (DHS) Secretary (Kirstjen) Nielsen said regarding critical infrastructure and the world that we’re in today,” Platt told attendees at the Civil GPS Service Interface Committee (CGSIC) meeting Tuesday.
She told those attending the standup of the National Risk Management Center in September that in the months prior to 9/11 then-CIA director George Tenet said the systems were blinking red. “We’d heard enough chatter to know that danger was coming we just didn’t know where.” Recently Dan Coats, the director of the National Intelligence Agency, said something similar, Nielsen continued.” “The system is ‘blinking red once again. …Our digital lives are in danger like never before. But it’s more than that; we are witnessing an historic change across the entire threat landscape.’ ”
“So that’s the environment that we’re facing right now,” said Platt. “It’s not just about the hackers that are going to put something out there and hack into the local system. We have to realize that there are nation states that are willing to target our critical infrastructure.”
To address this, Platt’s team — which is now part of that new National Risk Management Center — is working on a risk management structure and reaching out to industry to establish partnerships.
“Over 90 percent of the critical structure in the United States is owned by the private sector,” Platt said. “So, if they’re using GPS and they’re dependent on GPS — or heavily reliant — it’s up to us to help them understand the risk. But ultimately those companies are going to make decisions on the overall risk picture that they’re facing and we have to make a compelling argument that they should at least address the PNT vulnerabilities that potentially exist.”
To do that Platt’s team is doing testing to help industry understand those risks. They are sharing best practices with manufacturers and end users. He also mentioned the possibility of more advanced steps like having standards for certain receivers and possibility of a backup system.
“We can’t back up GPS for everything. If we could — if we could field a system that matched GPS in every aspect and we could do it on a budget that’s less, then why would we need GPS? The answer’s pretty simple; we can’t do that. We have to find ways of identifying what’s critical, making sure there’s security and resiliency in those critical systems.”
The 58thmeeting of the Civil GPS Service Interface Committee (CGSIC) meeting took place Monday and Tuesday in conjunction with the ION GNSS+ 2018 technical meeting.