MYSEA: The Monterey Security Architecture

Irvine, Cynthia E.; Nguyen, Thuy D.; Shifflett, David J.; Levin, Timothy E.; Khosalim, Jean; Prince, Charles; Clark, Paul C.; Gondree, Mark

MYSEA: The Monterey Security Architecture

Active / Technical Report | Accession Number: ADA518680 |

Open PDF

Abstract:

Mandated requirements to share information across different sensitivity domains necessitate the design of distributed architectures to enforce information flow policies while providing protection from malicious code and attacks devised by highly motivated adversaries. The MYSEA architecture uses component security services and mechanisms to extend and inter-operate with commodity PCs, commodity client software, applications, trusted components, and legacy single level networks, providing new capabilities for composing secure, distributed multilevel secure solutions. This results in an architecture that meets two compelling requirements first, that users have a familiar work environment, and, second, that critical mandatory security policies are enforced.

Author(s):

Irvine, Cynthia E. ; Nguyen, Thuy D. ; Shifflett, David J. ; Levin, Timothy E. ; Khosalim, Jean ; Prince, Charles ; Clark, Paul C. ; Gondree, Mark

Author Organization(s):

NAVAL POSTGRADUATE SCHOOL MONTEREY CA

Supplementary Note:

DOI: 10.21236/ADA518680

Pagination:

0011

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release

Distribution Statement:

Approved For Public Release; Distribution Is Unlimited.

RECORD

Collection: TR

Identifying Numbers

Monitor Series:

ONR

Subject Terms

Joint Capability Areas:

JCA_6_Net Centric; JCA_5_Command and Control; JCA_6.4.1_Secure Information Exchange; JCA_8_Building Partnerships; JCA_8.2_Shape; JCA_8.2.4_Leverage Capacities and Capabilities of Security Establishments; JCA_6.1.3_Switching and Routing; JCA_6.1_Information Transport; JCA_5.5_Direct; JCA_5.5.1_Communicate Intent and Guidance; JCA_6.4.2_Protect Data and Networks; JCA_6.4_Information Assurance; JCA_5.2.3_Share Knowledge and Situational Awareness; JCA_5.2_Understand; JCA_1_Force Support; JCA_1.3_Human Capital Management; JCA_1.3.1_Personnel and Family Support; JCA_6.2.3_Core Enterprise Services; JCA_6.2.1_Information Sharing; JCA_6.2.2_Computing Services; JCA_6.2_Enterprise Services

Modernization Areas:

Cyber; Fully Networked C3

Communities of Interest:

Cyber

Descriptor(s):

*INFORMATION ASSURANCE, *INFORMATION SECURITY, *ANTIINTRUSION DEVICES, *COMPUTER ACCESS CONTROL, HIGH LEVEL ARCHITECTURE, INTRUSION DETECTION(COMPUTERS), COMPUTER APPLICATIONS, SENSITIVITY, ATTACK, CRYPTOGRAPHY, CLIENT SERVER SYSTEMS

Field(s)/Group(s):

Information Science, Computer Systems Management and Standards

Keyword(s):

*MANDATORY SECURITY POLICIES, AUTHENTICATION, INFORMATION FLOW CONTROLS, OPEN SOURCE

Report Date:

2009 Jan 01

Creation Date:

2010 May 05