Air Force to Try In-Flight Software Update
The demonstration would show how the service’s DevSecOps initiative can deliver updates to warfighters in real time.
One of the Pentagon’s key software development leaders said the Air Force is getting ready for a significant showcase of the service’s ability to push out software updates to warfighters in the coming weeks.
“We're working on pretty cool announcements coming in the next few weeks with the ability to update the software of a jet while flying,” Nicolas Chaillan, chief software officer for the U.S. Air Force, said during a webinar Tuesday. “So that’s the kind of stuff that will be game changing.”
Chaillan declined to get into specifics, but the demonstration could serve as a proof of concept for DevSecOps that would show how software updates can be pushed safely and securely to warfighters in real time. He mentioned the demo in response to a moderator question asking whether expectations for what innovative digital architectures can accomplish are too high.
Chaillan leads the Defense Department’s DevSecOps initiative, which includes a team called Platform One and a cloud solution called Cloud One. The initiative aims to to simplify and speed up software development across DOD.
The idea is to create a centralized location with baked-in security protocols so that developers can deploy software updates on condensed timelines, ideally multiple times a day. The initiative relies on an open-sourced system for the orchestration of hardened containers called Kubernetes. Cloud One uses cloud services provided both by Amazon Web Services and Microsoft’s Azure.
The Air Force pulled off a successful demonstration highlighting the importance of Cloud One earlier this month. The exercise brought participants together to simulate blowing up a cruise missile. According to Will Roper, assistant secretary of the Air Force for acquisition, technology and sustainment, Cloud One was the key technology that enabled the success of the exercise.
“The star of the show was the data that enabled its kill chain to take effect...enabled by data going into a cloud, being transported over 4G and 5G communications at machine speeds to culminate in a kill chain that took seconds, not minutes or hours to complete,” Roper said.
Chaillan explained a few more ideas and priorities during the webinar he is mulling to improve the development process across the department. He indicated Cloud One may be expanding to include more providers—and named Google as a potential contender—and he talked about the need to get more of the agency’s workforce up to speed DevSecOps.
“I would say we’re probably at 20% of where we need to be mostly because of scale,” Chaillan said. “We have pockets of talent on every major program, but it’s still just pockets and that’s just not good enough.”