© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 1

An OpenArchitecture Framework for Safety and Security

Patrick BikarSolutions Architect, CiscoPublic Safety & Security

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 2

� Public Safety and Security: A Complex Discipline

� An Open Architecture Framework for Safety & Security

� Benefits of Adopting An Open Architecture Framework

� Next Steps

Agenda

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 3

� Public Safety and Security: A Complex Discipline

� An Open Architecture Framework for Safety & Security

� Benefits of Adopting An Open Architecture Framework

� Next Steps

Agenda

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 4

Public Safety and SecurityA Complex Discipline with Many Dimensions

Multiple Organizations

Specific Requirements

Emerging Technologies

Integrators and Providers

Police, Fire, Ambulance, National Crisis Center, Critical Infrastructure protection, MoD, MoI, MoJ, Local Gov, Transport, First Responders, PSAP, Intelligence Services, Prisons, Customs, Immigration,...

Crisis management, Urban security, Border control and critical infrastructure protection, Mass venues and events, Public transport, Prisons and probation, etc.

Sensors, artificial intelligence, video analytics, IPv6, adhoc mobility, biometrics, Cloud computing, Green, spectrum re-use, rich-media collaboration, anywhere/anytime connectivity, mass notification systems, ...

A variety of systems integrators and technology providers offer very advanced solutions, while the equipment in place is often old and outdated.Many Many Many Many

In addition, each country/region/city does things its own way…

� It is an enterprise architect’s worst nightmare!

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 5

What is an Architecture Framework?

� Capture complex requirements and constraints

� Facilitate communications with stakeholders—and consequently more easily obtain their endorsement

� Use well-defined functional building blocks to construct customized solutions

� Architecture scope

� Architecture building blocks

� Architecture methodology

� Architecture principles

Consistent, robust toolbox to:An Open Architecture Framework for Safety & Security must include:

A Standardized Approach to Public Safety & Security is Required

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 6

� Public Safety and Security: A Complex Discipline

� An Open Architecture Framework for Safety & Security

� Benefits of Adopting An Open Architecture Framework

� Next Steps

Agenda

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 7

Intentional/CrimeUnintentional/Incident

National

Local

Citywide

Public Safety

MinorIncident

International

MajorIncident

Large-ScaleDisaster

Homeland Security

SecuritySafety

Border Control and

Critical Infrastructure

Minor Crime

Mass Venues and Events

Public Transport

Prisons and

Probation

Architecture ScopePublic Safety & Security DomainsDomain 1: Crisis ManagementUse Case: Fire in a TunnelDomain 2: Urban SecurityUse Case: Antisocial BehaviorDomain 3: Border Control and Critical Infrastructure ProtectionUse Case: Spanish Med Border; Airport Security

Domain 4: Mass Venues and EventsUse Case: Football HooliganismDomain 5: Public TransportUse Case: Bus Driver AssaultDomain 6: Prisons and ProbationUse Case: Prison Riot

Scale of Emergency

Nature of Emergency

Terrorism

Organized Crime

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 8

De

tec

tio

nA

ss

essm

en

t Dec

isio

nR

es

po

ns

e

RecoveryPreparation and

Prevention

Six Architecture Building BlocksSupporting the Architecture Framework for Safety and Security

Open Architecture

Framework for Safety and Security

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 9

<<Vision>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

ABB1

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

…

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

<<Building-Block>>

ABB2 ABB6ABB3

Stage 3: Systems Engineer

<<capability>><<capability>>

<<capability>><<capability>>

<<capability>><<capability>>

<<capability>><<capability>>

…

<<capability>><<capability>>

Stage 2: Solutions Architect

<<Business Goal>>

… …

<<Business Goal>> …

is addressed by

Is supported by

is addressed byis addressed by

Is supported by Is supported by Is supported by

<<Business Goal>><<Business Goal>>

Stage 1: CIO

Architecture Development Methodology: Overview

<<Challenge>> <<Challenge>> <<Challenge>><<Challenge>>

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 10

Effective chase, interception and

conclusion through Inter-agency

Collaboration

Command & Control Center Virtualization

Unified situation awareness and control

Consolidation and reporting

Common Operational Picture

Emergency Preparedness

Mobility

Data recording

ABB1: C4ISR Operations Center

Apps Networking

…

Unified Clients

Human Id(Biometrics)

ABB2: Emergency-Grade Network

ABB3: Emergency Collaboration

Remote detection and identification of vehicle (marine, land, air)

Sta

ge

1:

CIO

Sta

ge

2:

SA

Multi-modal

Layer 2 independency

Interoperability

Ad-hocRadio

Emergency Response Automation

Mobile information

ABB4: Sensing & Actuation

ABB5: Empowered Mobile Workforce

ABB6: Citizen-Authority Interaction

Challenges:

Vision:

Goals:

Capabilities:

Sta

ge

3:

SE

Architecture Building-Blocks:

Unified Management

Simulation & Investigation

Note: Only the higher-level building-blocks are represented. The segmentation goes into further

details in the blueprints.

Mobility

Storage

Unified Comms

Compute

Identity

Network Virtualizat.

Traffic Optimization

Resiliency

Apps Extension

Security

Unified Messaging

Collaboration & Conferencing

UC Management

Land Mobile Radio Integration

Object Identification

Fusion, Correlation & Baselining

Actuators

Legacy Integration

Qualitative sensors

Quantitative sensors Personal computing devices

Multi-modal emergency contact

centerPersonal passive

devices

Vehicle computing devices

Public warning system

Emergency communication

devices

By leveraging new technologies, we will significantly reduce illegal immigration, drugs and weapons smuggling, and

monitor movements of Persons of Interest (POI) and increase the efficiency of Border Control personnel

Criminal organizations

abusing from immigrants

Unification of Operations

Inability to predict refugee movement and

profiling potential 'illegal immigrants'

Effectiveness of Deployed UnitsPervasive infrastructure

Strong influence of the public opinion about human rights

Vastness of maritime

border to control and

protectIllegal fishing in out-of-

bound territorial zones

Environment & Pollution Monitoring

Drugs

smuggling

Example of Use Case Analysis: Blue Border Protection

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 11

Architecture Principles

� Openness and adherence to standards

� Focus on requirements and usability

� Secure and confidential operations

� Interoperability

� IP as the platform

� Service-orientation � innovation

� Virtualization of services

� Generalized mobility

� Technology convergence

� Integration with legacy

� COTS equipment

� Low cost of operations.

� Regulation compliance

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 12

Architecture Principles

� Openness and adherence to standards

� Focus on requirements and usability

� Secure and confidential operations

� Interoperability

� IP as the platform

� Service-orientation � innovation

� Virtualization of services

� Generalized mobility

� Technology convergence

� Integration with legacy

� COTS equipment

� Low cost of operations.

� Regulation compliance

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 13

IPv4IPv4 IPv6IPv6

The Evolution of theMission-Critical Network

Application LayerApplication Layer

Network Network

MiddlewareMiddleware

IPv4 Layer IPv4 Layer

ProtocolProtocol

Bloated Code

Footprint &

Application

complexity

Middle layer of

servers always needed

because of broken

E2E model

Patterned network

Infrastructure including

NAT

1970’s era network protocol

Security

Mobility

NAT Traversal

P2P Code

NAT Traversal

Directory service

Client/server

DNS Routers

DHCP

Transport

Interoperable?

Application Application

LayerLayer

IP Infrastructure IP Infrastructure

ServicesServices

IPv6 Layer ProtocolIPv6 Layer Protocol

Smaller application

code &

Faster development

leveraging

Service Oriented

Network Architecture

Middle layer is IP

network

infrastructure

line routers, DNS

More powerful

Flexible

Next-gen

Network

Protocol

Small code footprint

Relies on Service

Oriented

Network Architecture

to reduce software

complexity &

footprint size

Mobility

Auto-configuration

DNS

Security

NAT Traversal

P2P connections

Multicast

Distribution

Transport

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 14

� Public Safety and Security: A Complex Discipline

� An Open Architecture Framework for Safety & Security

� Benefits of Adopting An Open Architecture Framework

� Next Steps

Agenda

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 15

Benefits of an Open Architecture Framework for Safety and Security

Service-orientation � unlocks innovation

Methodology to link business goals to functional building blocks

Common reference � standard

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 16

Public Safety references in Europe

Country User Project Architecture Building-block

relevance

SPA City of Rivas •Reduces Costs and Decreases Energy Consumption, support green practices

•No1, No2, No3, No4, No5, No6

IRL Dublin Airport •Video Surveillance•Storage

•No1, No4

UK North Wales Police

•Voice services network to all 75 police stations with appr. 2.500 phones

•No2, No3, No5

European country

Police •Centralized Command&Control: Data Center, Mission Critical Network,UC in police stations

•No1, No2, No3, No6

SWI Police and City of Zurich

•Wireless Video Surveillance for Euro2008 •Mobile Access Router in cars

•No2, No4, No5

European country

MoJ •Justice campus (switching, security, wireless ) •No2

European country

Highway operations

•Fiber to the highway: UC, video surveillance, sensors, emergency poles on IP, 30% less salt

•No2, No3, No4

UK Derbyshire Fire Brigade

•Unified Wireless Network to improve productivity, location services for asset control,

•No5

No1: Command & Control No2: Mission-Critical Network No3: Incident CollaborationNo4: Sensing & Actuation No5: Mobile Force No6: Citizen-Authority Interaction

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 17

� Public Safety and Security: A Complex Discipline

� An Open Architecture Framework for Safety & Security

� Benefits of Adopting An Open Architecture Framework

� Next Steps

Agenda

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 18

Next Steps

� Join the IPI workgroup:

� Read more on Cisco Open Platform for Safety and Security on: www.cisco.com/go/copss

THANK YOU FOR YOUR ATTENTION …

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 19

BACKUP SLIDES

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 20

Command and ControlEmergency Prevention, Preparation, Response, and Recovery

[C2] Description

� Provides up-to-date situational awareness, actionable intelligence, and decision support tools

� C2 contains:

– Common operational picture (COP)

– Unified process management

– Identity, information, and intelligence management

– Simulation and investigation

Cisco Open Platform for Safety and Security

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 21

[MCN] Description

�Today, first responders must rely on a variety of heterogeneous networks

�MCN is required to optimize emergency operations through a unified, scalable, resilient, secure, and intelligent network platform

�MCN features:

– IP-layer abstraction

– Traffic optimization (QoS, resilience, multicast, traffic engineering, etc.)

– Self-defense (network access control, VPN, firewall, etc.)

– Mobility (wireless, geolocation, etc.)

– Data center technologies (high-performance computing, WAN optimization, etc.)

– Rapid deployment, etc.

Mission-Critical NetworkEmergency Prevention, Preparation, Response, and Recovery

Cisco Open Platform for Safety and Security

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 22

[S&A] Description

�S&A provides the Operations Center with a stream of local information and the means for swift, automated remote action.

�S&A contains:

– Quantitative sensors

– Qualitative sensors (including real-time analytics)

– Human identification (biometrics)

– Object identification (including RFID)

– Sensor correlation and baselining

– Actuators

– Legacy integration

Sensing and ActuationEmergency Prevention, Preparation, Response, and Recovery

Cisco Open Platform for Safety and Security

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 23

[CAI] Description

Works in two directions:

� Citizen to authority:single point of contact for citizens to request emergency support

� Authority to citizen:sometimes referred to as “reverse-112”; allows authority to warn a specific group of individuals when an immediate danger is threatening (e.g., fire, bomb, bacteriological attack)

Citizen-Authority InteractionEmergency Prevention, Preparation, Response, and Recovery

Cisco Open Platform for Safety and Security

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 24

[MF] Description

� Deployed forces must be as effective in the field as they would be in the office, e.g.:

– Security guard’s handheld device enabling remote access to video surveillance cameras

– Police vehicle equipped with a mobile router providing secured access to central databases

– Firefighter’s suit enhanced with an array of biosensors

� Rescue teams must be accurately briefed using the whole available information: location, type of accident, casualties, etc.

� Information must be role-based and presented through an intuitive GUI

Mobile ForceEmergency Prevention, Preparation, Response, and Recovery

Cisco Open Platform for Safety and Security

© 2009 Cisco Systems, Inc. All rights reserved. Cisco PublicPresentation_ID 25

[IC] Description

�Optimal collaboration of the first responders between themselves and with the operations center

� Independent on the specific technology used (IP, analog or digital radio, etc.) or on the medium (voice, video, IM, SMS)

�Ad hoc communication groups, linking all persons within a certain geographical area, independently of their communication device or their organization

Incident CollaborationEmergency Prevention, Preparation, Response, and Recovery

Cisco Open Platform for Safety and Security