DAF26BX02-NV502 — Project Authentication on the Move (ATOM): Context-Aware Authentication Framework for Austere Environments

Award Maximum: $150,000 Period of Performance: 3 months Phase Type: Phase I

OBJECTIVE: The objective of this Phase I effort is to design and demonstrate the feasibility of a dynamic, portable, and context-aware authentication framework prototype for secure identity and mission-authorization in austere, disconnected, or high-mobility environments. This Phase I effort will focus on defining the framework architecture, modeling identity-validation requirements for tactical environments, and demonstrating operational independent static infrastructure. This solution should provide a foundation for robust, cross-domain access control—adaptable to Air, Land, Sea, or Space transportation—aligned with the Department of the Air Force's (DAF) Zero Trust and expeditionary security strategies.

DESCRIPTION: Modern DAF operations are increasingly defined by mobility, expeditionary reach, and the necessity to operate in contested or infrastructure-sparse environments. Traditional authentication methods—such as Common Access Card (CAC) and Public Key Infrastructure (PKI)—were designed for stationary personnel within predictable, fixed-network environments. In multi-domain and joint logistics corridors, these legacy dependencies create operational friction, introduce significant access delays, and present systemic cyber vulnerabilities when connectivity to centralized identity providers is degraded or unavailable.

To address this critical gap, the DAF seeks the development of Project ATOM (Authentication on the Move): a secure, context-aware, and portable authentication framework capable of validating identity and mission-relevant authorization at the tactical edge. This solution must function independently of static, cloud-based infrastructure, enabling continuous, Zero Trust access control that moves with the warfighter or autonomous asset. The solution may demonstrate capabilities such as:

• Context-Aware Authentication: Utilizing multi-modal inputs—such as biometric, behavioral, and situational environmental data—to verify identity and authorization levels dynamically

• Disconnected Operation: Maintaining robust authentication and access control protocols in Denied, Degraded, Intermittent, and Limited (DDIL) environments without reliance on persistent backhaul to a central identity server

• Cross-Domain Portability: Ensuring seamless identity and access validation across diverse transportation domains, including Air, Land, Sea, and Space

• Zero Trust Integration: Implementing granular, policy-based access control that adapts to real-time changes in the mission environment and potential adversarial activity

• Resilient Infrastructure: Withstanding harsh expeditionary conditions, including electromagnetic interference (EMI) and limited hardware resources, while maintaining low-latency performance

• Scalable Interoperability: Integrating with existing Department of War (DoW) identity standards and mission-critical applications to minimize friction while maximizing security posture

This topic seeks technologies capable of enabling decentralized identity validation that support modernization efforts outlined in the DAF Zero Trust Strategy and the broader objective of resilient, multi-domain operations.

PHASE I: Establish the technical feasibility of Project ATOM, a secure, context-aware, and portable authentication framework for multi-domain tactical operations. This Phase I effort focuses on designing the decentralized identity architecture, modeling access-control logic for high-mobility environments and demonstrating core functionality in a controlled testbed. Key activities may include:

• Domain-Specific Requirements Analysis: Define a specific operational use case (Air, Land, Sea, or Space) to serve as the baseline for system design, including identity requirements for personnel or autonomous assets.

• Architecture Development: Design the framework's technical architecture, focusing on secure identity containment, distributed trust logic, and local authorization protocols that function without persistent reach-back to central servers.

• Feasibility Modeling: Conduct a comprehensive assessment of the system's ability to maintain security posture in DDIL environments, identifying key technical bottlenecks.

• Prototype Preparation: Develop an implementation plan to demonstrate a prototype in a controlled testbed to validate context-aware authentication against simulated mission events, such as network loss or unauthorized access attempts.

• Integration Planning: Evaluate compatibility with existing DAF Zero Trust architectures and mobile edge-computing standards to ensure a clear pathway toward operational integration in Phase II.

Deliverables may include:

• Concept of Operations (CONOPS) Document: Detailed plan outlining the selected domain, operational scenarios, and the role of Project ATOM within existing mission workflows.

• System Architecture & Design Document: Technical specifications for identity validation, trust logic, and local access-control mechanisms.

• Feasibility Assessment: Technical report detailing performance in simulated disconnected or high-mobility scenarios, including latency and security threshold findings.

• Phase II Transition Plan: A roadmap for scaling a prototype into a hardened solution, including integration strategy with DoW Zero Trust initiatives and mobile edge hardware.

PHASE II: Advance Project ATOM from a Phase I feasibility study to a high-fidelity, field-validated authentication and identity framework for multi-domain tactical operations. This phase will deliver a robust, portable, and context-aware solution capable of maintaining Zero Trust security standards in DDIL environments, ensuring secure interoperability between human operators and autonomous mission systems. Key activities may include:

• Develop and Refine Prototype: Build a hardened, field-ready iteration of the ATOM authentication framework, incorporating secure identity containers and cross-domain portability protocols.

• Optimize for Operational Edge: Implement secure communication channels between authenticated human and machine agents, ensuring low-latency authentication and mission-authorization in high-mobility environments (e.g., transport, dismounted maneuvers, or orbital shifts).

• Demonstrate System Integration: Execute integration of the ATOM framework with mission-critical systems, including autonomous transport platforms, Intelligence, Surveillance, and Reconnaissance (ISR) nodes, and logistics command platforms.

• Validation in High-Mobility Environments: Conduct rigorous testing and validation exercises to confirm system performance, focusing on resilience against signal disruption, hardware constraints, and adversarial interference during transport, dismounted movement, or orbital shift.

• Quantify Performance Metrics: Establish and track key performance indicators (KPIs), specifically focusing on authentication confidence, system latency, resilience, and automated failure-handling protocols.

• Align with DAF Zero Trust Strategy: Ensure full compliance with DAF cybersecurity requirements, facilitating seamless interoperability with legacy and next-generation expeditionary security architectures.

Deliverables may include:

• Fully Functional ATOM Framework: A portable, hardware-agnostic authentication prototype ready for tactical deployment and integration.

• Integration Interface Modules: Middleware or Application Programming Interfaces (APIs) enabling secure communication between ATOM and existing mission-platform logistics or ISR systems.

• Prototype Validation Report: Detailed analysis of system performance, including stress-test results in DDIL conditions and data on authentication latency and resilience.

• Performance Metrics Dashboard: A quantitative summary of identity validation efficacy, system reliability, and failure-handling success rates during operational simulation.

• Operational Deployment Roadmap: A comprehensive plan for transitioning the framework into DAF operational use, including security accreditation pathways and hardware-compatibility specifications.

• Updated CONOPS: Refined Concept of Operations detailing the framework's use across varied Air, Land, Sea, and Space operational domains.

PHASE III DUAL USE APPLICATIONS: Project ATOM may transition from a high-fidelity prototype into an operational, enterprise-grade authentication and identity framework for use across Joint All-Domain Command and Control (JADC2) environments, U.S. Transportation Command (USTRANSCOM) logistics corridors, and beyond. Key military applications include:

• Joint All-Domain Integration: Integration with JADC2 and Contested Logistics frameworks, providing a unified, Zero Trust identity layer that secures communication across geographically dispersed air, land, sea, and space assets.

• Logistics & Transportation Modernization: Supports USTRANSCOM and the Defense Transportation System by enabling secure, automated identity verification for global supply chain movements, even in infrastructure-sparse or denied environments.

• Expeditionary Basing & Autonomy: Enhances security for expeditionary operations by providing resilient, machine-to-machine (M2M) authentication for autonomous transport fleets and sensor nodes, reducing reliance on persistent central network connectivity.

The decentralized, context-aware architecture developed for Project ATOM has significant dual-use potential for high-mobility, mission-critical sectors. Potential commercial applications include:

• Commercial Logistics & Supply Chain: Provides secure, "always-on" identity verification for automated intermodal transport, long-haul trucking, and maritime logistics, particularly where network connectivity is intermittent.

• Space Mobility & Infrastructure: Offers critical authentication standards for commercial space operators, satellite servicing, and ground-station providers requiring secure, decentralized access control in orbit and at the edge.

• Emergency Response & Critical Infrastructure: Serves first responders and disaster-relief organizations operating in austere environments, ensuring reliable, secure access to vital data and command platforms when standard commercial networks are unavailable.

Project ATOM may transition into the DAF and broader DoW enterprise through collaboration with Portfolio Acquisition Executive (PAE) and cybersecurity acquisition authorities. Concurrently, the technology may be further matured for commercial licensing, targeting logistics tech integrators, space mobility providers, and industrial automation firms seeking to implement robust Zero Trust architectures in edge-computing environments.

Technology Readiness Level (TRL) at Phase III Entry: Following Phase II, the capability is expected to reach approximately TRL 6–7. Phase III activities may mature the technology toward TRL 8–9 through operational integration, certification, and field deployment.