Modernizing Software Development in the US Navy

Опубликовано 12 июля 2018, 18:05

AWS Public Sector Summit 2018 - Washington, D.C.

Today, applications are developed amongst various vendors for use supporting Naval Forces on shore and at sea, with different requirements all having to be managed by infrastructure. The Collaborative Software Factory (CSF) is a US Navy Research and Development project designed to bring modern application development to the Navy.

In this session you will learn how the CSF is designed as an opinionated way to develop software destined for the fleet. It is designed to help application teams leverage DevOps methodologies using a polyglot platform in Red Hat OpenShift, modern application frameworks, and integrating security into software pipelines. Of the hundreds of security controls necessary for an application accreditation, the approach taken aims to provide many of them via inheritance. AWS and the underlying Red Hat OpenShift container platform provide control matrixes and mappings to help assurance teams with automating accreditation of software. This, plus security features such as code scanning and OpenSCAP scans built into the pipeline, help to rapidly deliver software to the fleet while still meeting compliance and security requirements.

By leveraging containers and a managed container platform to provide a stable, consistent platform for applications to be developed, the Navy was able to standardize deployments at sea, such as the upcoming Compile to Combat 24 effort.

This effort takes advantage of the AWS GovCloud (US) services accredited at DoD SRG Impact Level 5, such as Amazon EC2, Amazon Simple Storage Service (S3), AWS Key Management Service (KMS) and others to provide elastic scalability to application consumers to leveraging continuous integration and on-demand testing environments.

Speakers: Richard Jack, Rob Nolen, Philip Osip