A Practical Approach to High Assurance Multilevel Secure Computing Service

Froscher, J. N.; Kang, M.; McDermott, J.; Costich, O.; Landwehr, C. E.

doi:10.21236/ada465588

Cited by 4 publications

(4 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Replication architectures [48] provide a simple technique to achieve near-term multilevel security by copying all information at low security levels to all dominating levels. MYSEA rejects this approach because, when considering many documents or security levels, replication scales so poorly as to be infeasible.…”

Section: Related Workmentioning

confidence: 99%

A cloud-oriented cross-domain security architecture

Nguyen

Gondree

Shifflett

et al. 2010

2010 - Milcom 2010 Military Communications Conference

View full text Add to dashboard Cite

The Monterey Security Architecture addresses the need to share high-value data across multiple domains of different classification levels while enforcing information flow policies. The architecture allows users with different security authorizations to securely collaborate and exchange information using commodity computers and familiar commercial client software that generally lack the prerequisite assurance and functional security protections. MYSEA seeks to meet two compelling requirements, often assumed to be at odds: enforcing critical, mandatory security policies, and allowing access and collaboration in a familiar work environment. Recent additions to the MYSEA design expand the architecture to support a cloud of cross-domain services, hosted within a federation of multilevel secure (MLS) MYSEA servers. The MYSEA cloud supports single-sign on, service replication, and network-layer quality of security service. This new crossdomain, distributed architecture follows the consumption and delivery model for cloud services, while maintaining the federated control model necessary to support and protect crossdomain collaboration within the enterprise. The resulting architecture shows the feasibility of high-assurance, cross-domain services hosted within a community cloud suitable for interagency, or joint, collaboration. This paper summarizes the MYSEA architecture and discusses MYSEA's approach to provide an MLS-constrained cloud computing environment.

show abstract

Section: Related Workmentioning

confidence: 99%

A cloud-oriented cross-domain security architecture

Nguyen

Gondree

Shifflett

et al. 2010

2010 - Milcom 2010 Military Communications Conference

View full text Add to dashboard Cite

show abstract

“…AE Print the first m prime numbersae [3] " AE Fill table p with the first m prime numbersae [11]; AE Print table pae [8] This macro is invoked in definition 2.…”

Section: Understanding the Problemmentioning

confidence: 99%

“…Henceforth, the phrase valid characters refers only to those characters of even parity received before an over ow. 8 …”

Section: Top-level Requirements Structurementioning

confidence: 99%

Increasing Assurance with Literate Programming Techniques

Moore¹,

Payne²,

Charles³

1996

View full text Add to dashboard Cite

show abstract

“…P sat S holds if process P satis es trace speci cation S. Viewing process P as the set of traces in which P may engage and S as the set of acceptable traces, the sat predicate is equivalent to the subset predicate, i.e., process P may engage only in traces allowed by S 7. The parameter a represents the alphabet of all possible repeater events; a^* represents all possible traces formed from these events 8. outbit is the name of the repeater's output port; inbit is the name of the input port.…”

mentioning

confidence: 99%

Increasing assurance with literate programming techniques

Moore

Payne²

Proceedings of 11th Annual Conference on Computer Assurance. COMPASS '96

View full text Add to dashboard Cite

The assurance a r gument that a trusted system satis es its information security requirements must be c onvincing, because the argument supports the accreditation decision to allow the computer to process classi ed information in an operational environment. Assurance is achieved through understanding, but some evidence that supports the assurance a r gument can be di cult to understand. This paper describes a novel application of a technique, called literate programming 11 , that signi cantly improves the readability of the assurance a r gument while maintaining its consistency with formal speci cations that are input to speci cation and veri cation systems. We describe an application of this technique to a simple example and discuss the lessons learned f r om this e ort. Work performed while author was employed by the Naval Research Laboratory. 1 A computer system is trusted if we rely on it for security enforcement. I t i s trustworthy if that reliance is justi ed technically. A computer may be trusted even though it is not trustworthy, because the accreditor may permit its use despite known weaknesses.

show abstract

A Practical Approach to High Assurance Multilevel Secure Computing Service

Cited by 4 publications

References 16 publications

A cloud-oriented cross-domain security architecture

A cloud-oriented cross-domain security architecture

Increasing Assurance with Literate Programming Techniques

Increasing assurance with literate programming techniques

Contact Info

Product

Resources

About