Vehicle Electronics & Architecture (VEA)

Implementing Cybersecurity Risk Management Framework for the MAPS Base Kit

by Matt Nowc; Andrey Shvartsman; Ed Moon; Lucas Tucker


The Modular Active Protection System (MAPS) Science and Technology Objective (STO) program led by the CCDC- Ground Vehicle Systems Center (CCDC-GVSC) has undertaken and committed to delivering a product baseline that can readily support performance requirements for Vehicle Protection System (VPS) capabilities while meeting cybersecurity requirements. DoD investments in a cyber-secure common kit can provide many benefits to the DoD as each program (i.e., Abrams, Bradley, Stryker, AMPV) will be able to leverage the initial investments without having to create their own technical solution per platform. It is broadly acknowledged that implementing security controls early in the product’s life cycle provides better capabilities, reduces vulnerabilities, reduces program schedule, and reduces program cost compared to attempting to add cybersecurity later in the production and test phases. As the MAPS open-architecture enables programs to leverage occupant and vehicle protection capabilities from other current programs, exemplifying Horizontal Technology Insertion (HTI), it will also support effective and efficient reuse for cyber-security required by the Risk Management Framework (RMF) to protect the VPS itself, in turn enhancing overall vehicle protection.