Sec. 1559. ASSESSMENTS OF WEAPONS SYSTEMS VULNERABILITIES TO RADIO-FREQUENCY ENABLED CYBER ATTACKS
431 words·~2 min read·
/statute-compilations/comps-17475/sec-1559A research copy — for the controlling text, always check the official state or federal source. Not legal advice.
## SEC. 1559 ASSESSMENTS OF WEAPONS SYSTEMS VULNERABILITIES TO RADIO-FREQUENCY ENABLED CYBER ATTACKS **[**[10 U.S.C. 2224 note](/us/usc/t10/s2224)**]** ###
(a)Assessments The Secretary of Defense shall ensure that the activities required by and conducted pursuant to section 1647 of the National Defense Authorization Act for Fiscal Year 2016 (Public Law 114-92; 129 Stat. 1118) and the amendments made by section 1712 of the William M.
(Mac)Thornberry National Defense Authorization Act for Fiscal Year 2021 (Public Law 116-283; 134 Stat. 4087) include regular assessments of the vulnerabilities to and mission risks presented by radio-frequency enabled cyber attacks with respect to the operational technology embedded in weapons systems, aircraft, ships, ground vehicles, space systems, sensors, and datalink networks of the Department of Defense. ###
(b)Elements The assessments under subsection
(a)with respect to vulnerabilities and risks described in such subsection shall include— ####
(1)identification of such vulnerabilities and risks; ####
(2)ranking of vulnerability, severity, and priority; ####
(3)development and selection of options, with associated costs and schedule, to correct such vulnerabilities, including installation of intrusion detection capabilities; ####
(4)an evaluation of the cybersecurity sufficiency for Military Standard 1553; and ####
(5)development of integrated risk-based plans to implement the corrective actions selected. ###
(c)Development of Corrective Actions In developing corrective actions under subsection (b)(3), the assessments under subsection
(a)shall— ####
(1)consider the missions supported by the assessed weapons systems, aircraft, ships, ground vehicles, space systems, sensors, or datalink networks, as the case may be, to ensure that the corrective actions focus on the vulnerabilities that create the greatest risks to the missions; ####
(2)be shared and coordinated with the principal staff assistant with primary responsibility for the strategic cybersecurity program; and ####
(3)address requirements for deployed and nondeployed members of the Armed Forces to analyze data collected on the weapons systems and respond to attacks. ###
(d)Intelligence Informed Assessments The assessments under subsection
(a)shall be informed by intelligence, if available, and technical judgment regarding potential threats to embedded operational technology during operations of the Armed Forces. ###
(e)Coordination ####
(1)Coordination and integration of activities The assessments under subsection
(a)shall be fully coordinated and integrated with activities described in such subsection. ####
(2)Coordination of organizations The Secretary shall ensure that the organizations conducting the assessments under subsection
(a)in the military departments, the United States Special Operations Command, and the Defense Agencies coordinate with each other and share best practices, vulnerability analyses, and technical solutions with the principal staff assistant with primary responsibility for the Strategic Cybersecurity Program.
Connectionstraces to 3
2 references not yet in our index
- 129 Stat. 1118
- 134 Stat. 4087
Citation graph
cites case law
Sec. 1559
ASSESSMENTS OF WEAPONS SYSTEMS VULNERABILITIES TO RADIO-FREQUENCY ENABLED CYBER ATTACKS
Stat.129 Stat. 1118
Stat.134 Stat. 4087
Cites 5Cited by 0 across 0 sources