• Home
• About Us
  • Services
  • Case Studies
  • Clients
  • Framework Agreements
  • Certifications and Accreditations
  • Memberships
  • History
  • Contact Us
• In Focus
  • Improving Data Handling
  • UK National Security Strategy
  • UK Cyber Security Strategy 2009
  • Through Life Capability Management (TLCM)
  • Information Sharing
  • Information Exploitation
  • Connecting to Secure Government Networks
  • Acquisition Reform
  • Business Continuity Planning and Management
  • Information Superiority
  • London 2012 Olympic and Paralympic Safety and Security Strategy
  • Addressing Sustainability
• Services
  • Enterprise Analysis and Architecture
  • Technology and Business Change
  • Information Security
  • Secure Systems
  • Project and Programme Management
• Markets
  • Government
  • Defence
  • Critical National Infrastructure
  • Aerospace
• Newsroom
  • Press Releases
  • Events
  • Media Contacts
• Publications
  • White Papers
  • Case Studies
  • Brochures
• Careers
  • Opportunities and Development
  • Our value to clients
  • VEGA People
  • Consultants
  • Career Events
  • Vacancies
  • Upload your CV
  • Careers Contacts
• Contact Us
  • Locations

Modernized Integrated Database (MIDB)

VEGA was asked by the UK Ministry of Defence to help them achieve full security accreditation to enable UK participation in a US shared military intelligence system.

Background

The Modernized Integrated Database (MIDB) is a US Department of Defense Intelligence Information System (DODIIS) intelligence mission application. It serves as the primary repository for data production and dissemination of military intelligence involving worldwide orders of battle, facilities, command and control networks, targeting, battle damage assessments, and other related information required for strategic assessments and national policy decision-making.

The UK MIDB is managed by the IIS Delivery Team. Since the organisation did not have the in-house technical skills to carry out the role of a Security Assurance Coordinator (SAC) and security design scrutiniser, it decided to award the role to an external organisation. VEGA was consequently selected on the basis of its proven track record and security expertise.

How VEGA Helped

As SAC, VEGA was asked to manage the security evaluation and assurance process for MIDB in order to ensure that the system could be operated securely, did not present an unmanageable risk to national security, and ultimately would achieve full accreditation.

This involved VEGA consultants undertaking a review of system security plans, system designs, and accreditation evidence submitted by the Prime Contractor. The Security Risk Assessment generated several functional system security requirements. These were translated into Security Enforcing Functions (SEFs) which were analysed, in order to assess the practicality of engineering a system design solution to implement these SEFs. VEGA actively managed the security engineering process to ensure that the security schedule was adhered to and no significant delay was imposed on the project due to security related challenges.

VEGA was able to nurture an excellent working relationship and trust between the Defence Security and Assurance Services (DSAS), CESG, the Prime Contractor and Defence Intelligence Services. This enabled the security design of the system to mature with the minimal of disruption, with the SAC managing the security risk and mitigation strategy, with only minimal oversight, when required from DSAS and CESG.

Value Delivered

VEGA exceeded the customer’s expectations by providing a higher level of service, support, continuity and management, which had not been specified in the original contract. As a result of VEGA’s involvement, MIDB achieved full accreditation and evaluation for the MIDB data cut mechanism and the MIDB infrastructure, on time, and to budget. This enabled the client to ’hand over’ an accredited secure system to the lead user who could share intelligence data at a range of classifications, with a more widespread user base, facilitating the timely dissemination of valuable intelligence data.