KSP Composite Computerization Model

958 views

Published on

KSP Composite Computerization Model

  • Be the first to comment

  • Be the first to like this

KSP Composite Computerization Model

  1. 1. Sanjay Sahay, ADGP, Police Computer Wing, Bangalore Police Department KSP Composite Computerization Model GOVERNMENT OF KARNATAKA
  2. 2. Presentation Structure • Evolution • DC and Networking • Software / CCTNS • Police IT - CCTNS Interface / Governance Structure • Capacity Building • Project Challenges • Future plans • Conclusion
  3. 3. IT Evolution at KSP CCIS •Digitized Crime Data •Crime Search & Reports CIPA • End User Infrastructure • Hardware • LAN POLNET • Inter-state Police communication • Voice and Data NATGRID • National Intelligence Grid Police IT • ERP
  4. 4. Chronology of Computerization 1994: CCIS 2005: G-Care 2008: e-Beat 2009: KSP WAN 2010: 'Police IT' 2011: KSP DC 2012: CCTNS P r e - C C T N S C C T N S M/s HP Signs MSA on Dec 7, 2011 as SI M/s GT Signs MSA on Jun 21, 2012 as SPMU
  5. 5. KSP Computerization Model Enterprise Model People Process Technology Infrastructure Governance • Internal Champions • Capacity Building • Nodal Officers • Sys Admins • Handholding • BPR • Integration • Automation • ERP • Web Service • Active Directory • SMS Gateway • e-Pen • KSP DC • KSP WAN • DR Centre • EMS • Centralized AV • Automated Backup • Core Team • SCRB Nodal Officer • District Nodal Officer • Central NOC • Helpdesk
  6. 6. CONFEDENTAIL : INTERNAL USE ONLY Core Infrastructure
  7. 7. Disaster Recovery Center • Disaster Recovery Center for KSP is located at NIC Data Center, Shastri Park, New Delhi. • NIC has provided 4 racks and Infrastructure facility to host the DR site. • The Network connectivity between DC and DR has been established through 4 Mbps MPLS Link. • The DR Implementation is in progress and DR will be made operational in next 3 months. Sl. No. Name of Device Capacity Quantity 1. Server 10 2 Storage 32 TB 1 3 Network Switches 2 4 SLB / GSLB 1 5 Firewall 1 6 NIPS 1 14 FCIP Router 2 15 FC Switch 1
  8. 8. KSP Wide Area Network 45 locations 1,2 & 4 Mbps leased line 1458 locations 512 Kbps and 1 Mbps VPNoBB 45 Mbps aggregation bandwidth 16 Mbps Internet leased line KSPDC
  9. 9. Karnataka State Police Wide Area Network Type of Network Number of Links at Initiation Number of Links at Present MPLS 39 45 VPNoBB 1350 1458 ILL 2 2 Type of Network Initial Bandwidth Present Bandwidth MPLS (Aggregation) 10 Mbps 45 Mbps • Karnataka State Police Wide Area Network, (KSPWAN) was created in the year 2009 with BSNL • This was successfully implemented jointly by BSNL and the Karnataka State Police. • This Network is a combination of 45 MPLS and 1458 VPNoBB connections • Connects all police station and higher offices across the state. • Fixed IP has been implemented on VPNoBB connection • In addition 16 Mbps Internet leased line has also been provided.
  10. 10. Network Availability
  11. 11. KSP Databases Name of Database Description Police IT Police IT Database for all functional modules CCIS Crime and Criminal database MVVC Motor Vehicle Database G-care GIS Database
  12. 12. DC IT-Infrastructure - Hardware Sl. No. Name of Device Capacity Quantity 1. Server 24 (46 VM) 2 Storage 32 TB 1 3 Network Switches 7 4 Routers 2 5 SLB / GSLB 2 6 Firewall/UTM 4 7 NIPS 2 8 SIEM 1 9 Tape Library 1 10 Racks 6 11 NAS 1 12 MCU 1 13 MUX 2 14 FCIP Router 2 15 FC Switch 2 DC IT-Infrastructure - Software Sl. No. Name of Software 1. Windows Server 2008 R2 2 Redhat Enterprise Linux 3 Ubuntu Linux 4 MS SQL 2008 R2 5 MS Share Point 6 PMIS 7 EMS 8 Data Protector 9 Arcsight Express 10 Radware Absolute Vision 11 Zimbra Mail server 12 EVA Command view 13 VMWare vSphere 14 MS Hyper-V 15 MS Visual Studio 16 MS VSS 17 Kaspersky End Point Protection Anti Virus 18 Windows Software Update Service
  13. 13. Hardware Details Sl. No. Computers & Peripherals Total 1 Desktops 8233 2 Thin Clients 1585 3 Laptop 614 4 Laser Jet Printers 1478 5 MFPs 1419 6 Dot Matrix Printer 1447 7 Servers 198 8 UPS 4464 9 Scanner 1235 10 Web Camera 882 11 LCD TV 37 12 Switches 2180 13 Projector 74 12 Digital Cameras 906 13 Electronic Pens 906 14 External Hard disk 1317 Total Hardware 26975 Total Hardware Hardware at each Unit Sl. No Unit Server Desktops Laptop Scanner DMP Laser MFP UPS 1 Police Station - 5 - 1 1 1 - 2 2 Circle Office - 3 - 1 1 - 1 2 3 Sub Division Office - 3 - 1 1 - 1 2 4 District Police Office 1 50 4 10 15 20 15 10
  14. 14. KSP Security Solution Defense in Depth technology adopted in KSP to ensure each layer is protected from attacks. • Two Tier Security protection from all traffic. • Full fledge Intrusion Prevention System. • SIEM for log management and Event Analysis. • OS hardening. • Regular patch management. • End point protection for Servers and Desktops • Role based Access. • Vulnerability assessment for Critical assets.
  15. 15. Core Functionalities • Crime • Law & Order • Traffic Administration • Administration • Finance • Stores Ancillary support • Armed Reserve • Motor Transport • Training Technical Modules • Wireless • Forensic Science • Laboratory 11 Modules 64 Roles 522 Screen 417 Reports MIS Police IT - ERP
  16. 16. CCTNS • One of the 27 Mission Mode Projects (MMP) Police under NeGP • Centralized Planning / De-centralized Execution • Ministry of Home Affairs (MHA) is the nodal agency • Rs. 2000 Crores for the Scheme in 11th Five-year Plan •Nationwide networked infrastructure for “investigation of crime and detection of criminals” • Aims to cover: • 14000 Police Stations and 6000 higher offices • Software, DC/Network, Client Side Infrastructure, Data Migration, Capacity Building, O&M and handholding • Critical interfaces with: • Citizens • intelligence agencies, passports, road transport authorities, etc.
  17. 17. Police IT - CCTNS • Present Project Duration - 7th Dec, 2011 to 6th Dec, 2014 • SI – HP • SPMU – Grant Thornton
  18. 18. Police IT - CCTNS • GoI accepted Karnataka as Lead State • Both the Projects get integrated • Mission Mode Project • Wipro, the Developer Police IT CCTNS Lead State CCTNS Police IT
  19. 19. Project Governanc e structure ADGP-PCW SCRB-Nodal Officer Regional Nodal Officer System Administrator Hand-holders Police-IT Operators System Integrator SPMU
  20. 20. Internal Resources for CCTNS Project Resources Number SCRB Nodal Officers 26 District / City / Units Nodal Officers 94 System Administrators (MCSE and CCNA) 75 Police IT Operators 3000
  21. 21. External Resources SPMU (GT India) Role Qualifications Project Manager B. Tech + MBA Infrastructure Specialist B. Tech Database and Application Specialist B. Tech Operation Manager B. Com + Domain Expert Consultant MCA SI (HP India) Team Number Core Management 2 Team leads 5 Software Team 30 DC Operations 6 Trainers 35 Hand-holder 115
  22. 22. CCTNS Software Status Transition • Application Handover to SI • Knowledge Transfer • Exit Management Stabilization • Pending changes • Error Fixing • O&M Support Enhancement • System Study • Gap Analysis • Functional Specifications • 'Police-IT' Enhancements CAS/Go-Live • Citizen centric portal • External Integration • Go-Live (April 2014) Legends: Completed Yet to be completed
  23. 23. Citizen Portal Services under CCTNS Transaction Services • Complaint Registration • Tenant Verification • Servant Verification • Permission Request for Processions and Rallies • Passport Verification Status • Arm License Verification Status • Application for Character Certificate Information Services • Missing Persons Listing (with Photographs) • Proclaimed Offenders Listing • Stolen/ Recovered Vehicles Listing • Unidentified Dead bodies (with photographs) Listing • Abandoned / Unclaimed/recovered Properties Listing • Most Wanted Criminals Listing (with photographs)
  24. 24. Other Applications in use G-Care • GIS based Crime Analysis • Crime hotspots on map EMS • Enterprise Monitoring Software, EMS, to monitor the Network, Server, Application and Helpdesk management Mail • Zimbra Mail Messaging • Internal communication mechanism e-Beat • Electronic beat system • RFID based
  25. 25. SMS/e-Pen Integration in FIR SMS Integration  Citizen can track status of his/her application on website of 'Sakala'/KSP using GSC number  Citizen to get SMS update at every stage of FIR lifecycle • Registration • A-Report, B-Report, C-Report • Disposal e-Pen Integration  FIR copy to be signed electronically at time of filing • By Complainant • By Processing Officer  Greater assurance to citizens for service delivery  Transparency in process  Authenticity of information  No scope for Suppression of facts /Denial of service
  26. 26. Service Delivery Scheme under 'Sakala'  15 digit unique GSC number through SMS  Track status on website of 'Sakala'/KSP  Status Update Through SMS
  27. 27. Sl. Service Name (under sakala) Maximum no. of days to get service delivered 1 Arms License Issue and Renewal Verification 30 2 Certification of Finger Print 20 3 Issue of copy of FIR to the complainant 1 4 License for Amplified Sound System 3 5 License for Amusement 15 6 Missing Report of documents, Mobile phone etc. 1 7 No objection to return to India permission in respect of Tibetans 20 8 No obligation to return to India (NORI) Certificate 20 9 NOC for Passport Verification 20 10 NOC for petrol pump, gas-agency, hotel, bar etc. 7 11 NOC for Residential Permit Extension 7 12 Permission for Peaceful Assembly and procession 15 13 Police Clearance Certificate 20 14 Police verification Certificate for Coolies/Loader/Class IV Security Staff/Supervisor at Airport 20 15 Police Verification Certificate for domestic servants/house keeping 20 16 Police Verification Certificate for Institutions/ Companies 20 17 Police verification Certificate for Marriage Alliances 20 18 Police verification Certificate for Training Apprenticeship at PSUs/trainees/Workers at Govt. Institutions 20 19 PVC for Central /State Govt. employees if request is received directly by the employee 20 20 Receipt and Disposal of Petitions 45 21 Service Verification 20
  28. 28. List of Other Services SL Functions/Services Type 1 First Information Report G2G 2 Crime Details (Spot Mahazar ) G2G 3 Property Seizure G2G 4 Arrest/Court Surrender Memo G2G 5 Charge Sheet/ Final Report G2G 6 Court Disposal G2G 7 19 Sakala Services (Citizen) G2C 8 Service Verification (under Sakala) G2E 9 Police Service Verification for companies (under Sakala) G2E
  29. 29. • Integration using web-service • Electronic FIR Transfer • Electronic Charge- sheet Transfer • Online Acknowledgment from Courts Court Integratio n KSP-DC High Court Server Jurisdictional Courts Jurisdictional PS e-Court Police-IT FIR&Charge- sheets Acknowledgments
  30. 30. Capacity Building at KSP Training Infrastructure Mapping of End-Users Deployment of Trainers Training for 75 System Administrators Basic Training for End-Users Training Curriculum Basic IT & Police IT Training for Nodal Officers of all Units Training for Technical Teams of all Units Police IT Training for End-Users & Handholding
  31. 31. Capacity Building under CCTNS Basic IT • 20 Trainers • Training at 18 locations • 45th Batch in Progress • Trained 17,794 till end of Jan, 2014 Police-IT • 13 Trainers • Training at 16 locations • 23rd Batch in Progress • Trained 2481 till end of Jan, 2014 Basic System Admin • A+/N+ Curriculum • 5th Batch in Progress • Trained 135 till end of Jan, 2014 Pre-CCTNS Training Basic IT •6000 Police IT •12000 System Admin •75
  32. 32. Capacity Building under CCTNS • Change Management Program • Training for Trainers
  33. 33. Project Challenges Technical Issues • Performance Issues in Search and Reports Project Delays • Team Mobilization by SI • Transition between the previous and current SI • Decision making at senior management levels of SI People Issues • Quality of handholding resources for local troubleshooting • Quality of Trainers • Absenteeism from training programs • Use of system administrators for non-technical purposes
  34. 34. Challenges in e-Governance • Inadequate Specifications of present and future Requirements • Absence of internal champion to lead and sustain the transformation • Inadequate people capacity • Lack of consultants with deep domain expertize • Project Execution Challenges • Lack of belongingness of most of the system integrators
  35. 35. Future Plans Advanced Solutions External System Integration
  36. 36. Future Plans… • ISO 27001 Security Policy • Upgrade of Application from .NET 1.5 to .NET 4.0 and DB from SQL server 2008 to 2012 • Video Conference between jails and courts for trials • Building Redundant link at all levels for failover protection • Any time anywhere access with data, voice and Video over SSL VPN • Vulnerability Assessment and Penetration Testing for proactive protection
  37. 37. CONFEDENTAIL : INTERNAL USE ONLY
  38. 38. CONFEDENTIAL : INTERNAL USE ONLY Key Functions and Services SL Functions/Services Type Current Load Future Load 1 First Information Report G2G 2 Crime Details (Spot Mahazar ) G2G 3 Property Seizer G2G 4 Arrest/Court Surrender Memo G2G 5 Charg Sheet/ Fina Report G2G 6 Court Disposal G2G 7 19 Sakala Services G2C 8 Service Verification G2E 9 Police Service Verification for cos. G2E
  39. 39. CONFEDENTIAL : INTERNAL USE ONLY Issues and Challenges 4. challenges we faced a) b) c) 5. issues presently on hand a) b) c)
  40. 40. Current IT infrastructure Applications : Info Response • Number of Applications 13 • Applications currently being used Police IT, Web Application, KSP WEB Application, Zimbra Mail, NNM, OM, Kaspersky, Antivirus Security Center, Arcsite, SM, Falco, EMS, e-Court, Proxy, PMIS, AD, G-Care • Future of the applications • What applications can be delivered SaaS model • Interoperability of SaaS model • Overall SLA * of application required (Ex 98% ) • Does Karnataka Govt. already running any application SaaS model No • View of the department about the future
  41. 41. CONFEDENTIAL : INTERNAL USE ONLY Current IT infrastructure Compute : Info Response • Number of Physical Servers 25 • Typical Physical server configuration : Example ( 2 x Quad core, 24 GB RAM,4 x 1 Gbps NIC) 4 Nos. of AMD Opteron Processor 1.99 GHz, 8 Core, • Number of servers which are more than 60 % to 80 % CPU utilization 4 Servers • Number of servers which are between 40 % to 60 % CPU utilization 14 Servers • Number of Servers which are between 20 % to 40% CPU utilization 7 Servers • Peak and average utilization. daily, weekly, monthly for last 1 year • Any Physical server which are virtualized Yes, 10 Servers • If Yes, what virtualization technology is used ( VMware, Hyper-V, Xen or KVM) Hyper-V, VMware
  42. 42. CONFEDENTIAL : INTERNAL USE ONLY Current IT infrastructure Block Storage (SAN) : File Storage ( NAS ) : Info Response • Model Name : Example { EMC CX4-120 or Netapp FAS 3020 } HP storage works P6500 • Frontend Protocols used : Example { FC ( 4 Gbps) or iSCSI ( 10 Gbps) } FC • Total usable capacity : Exampled { 10 TB } 32 TB • Total used capacity : Example { 4 TB } 26 TB Info Response • Model Name : Example { EMC Celerra or Netapp FAS 3020 } HP X1800 • Frontend Protocols used : • Total usable capacity 1.5 TB • Total used capacity 1.2 TB
  43. 43. Current IT infrastructure Backup : Info Response • Backup Software : Example { Symantec } HP Data Protector • Backup Architecture : LAN Based Backup or SAN based Backup LAN • Backup Target Device : Store backup data on Tapes (LTO) or Disk, or Deduplication appliance Store backup data on Tapes and De-duplication appliance • Backup Policy : Example { Daily Incremental and weekly Full backup } Daily Incremental , Weekly Full backup , Monthly Full Backup • Backup Retention policy ? : How long data has to be maintained for compliance reasons Weekly Tape – 3 Weeks, Monthly Tape – 2 Months, Logs Tape – 3 Years • Backup Window ? : Time given to your IT team to complete full backup ,example { 8 hours on Sat } 8 hours • Restore Window : In how many hours or days the data has to be restored from backup copy and produce it to authorities • How Many Servers are backed up ? Weekly - Critical Servers, Monthly – All Servers • What is full backup Size ? 2614 GB • DO you backup Desktop and laptops as well ? NO • If No, Do you need your employee desktop and laptop to backed up ? • ARCHIVE Policy . Strategy . Volume of Archive data
  44. 44. Current IT infrastructure Network details : Info Response • Network Switches : Director class or modular • What network you are on ? Example { 1 Gbps or 10 Gbps } 1 Gbps • How is your network structured if you have remote offices connected to central application or DC Data Center • Bandwidth Usage 60 to 70 % • Latency Issues if any No • Network losses if any No • User Access Provided : Example Wireless, wired, VPN or Mobile access Wired • Network Load Distribution :Example remote (10%) and Internal ( 90 %) users Internal (100%)
  45. 45. CONFEDENTIAL : INTERNAL USE ONLY Current IT infrastructure Info Response • Firewall : Hardware or software Hardware • Data at Rest Encryption ? Yes or No Yes • Data at Transit Encryption ? Yes or No No • VPN ? Yes or No No • Compliance requirements : Example ( Privacy Acts, ISO , etc) • Interoperability required ? Yes Security device or technology details :
  46. 46. Current IT infrastructure Disaster Recovery Info Response • Do you have DR Site ? Yes or No Yes • If Yes ? Please answer below questions •How Many applications data is replicated to DR In progress •What is RTO and RPO of the applications 2 hours and 6 Hours •What is current bandwidth used 4 Mbps
  47. 47. Current IT infrastructure Current issues Info Response • Any applications issues • Network and security issues • Storage, backup and Archival issues Info Response • Any New applications planned • Any new initiatives • Any other plans CCICI Need to know Future Scale and roadmap

×