Performance Analysis of MYSEA

Ping, Chua K.

Performance Analysis of MYSEA

Active / Technical Report | Accession Number: ADA567427 |

Open PDF

Abstract:

The Monterey Security Architecture MYSEA provides trusted security services, allowing users to access information at different sensitivity levels at the same time. The MYSEA server enforces a mandatory access control policy to ensure that users can only access data for which they are authorized. We would like to know the consequences of the MYSEA design on the performance of the MYSEA system. In particular, have the MYSEA trusted processes introduced any design bottlenecks into the system The objective of this thesis is to analyze the performance of selected aspects of MYSEA and, when applicable, identify system performance bottlenecks. In the absence of bottlenecks, our secure system performance study can be interpreted as characterizing the cost of security in a multilevel security context. We analyze the overhead associated with MYSEA by targeting and benchmarking its components and services. We deployed the netperf tool as a MYSEA service, to observe costs associated with IPSec, the MYSEA trusted proxy and communication among servers in the MYSEA Federation. Our benchmark tests provided useful insights to the performance overhead introduced by MYSEAs design and highlighted the cost of security of selected aspects in MYSEA.

Author(s):

Ping, Chua K.

Author Organization(s):

NAVAL POSTGRADUATE SCHOOL MONTEREY CA

Descriptive Note:

Master's thesis

Pagination:

0168

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release

Distribution Statement:

Approved For Public Release; Distribution Is Unlimited.

RECORD

Collection: TR

Identifying Numbers

Monitor Series:

NPS

Subject Terms

Joint Capability Areas:

JCA_6_Net Centric; JCA_6.4.1_Secure Information Exchange; JCA_6.1.3_Switching and Routing; JCA_5_Command and Control; JCA_6.1_Information Transport; JCA_6.4_Information Assurance; JCA_5.6.1_Assess Compliance with Guidance; JCA_5.6_Monitor; JCA_4.6.1_General Engineering; JCA_4.6_Engineering; JCA_5.3_Planning; JCA_5.2.3_Share Knowledge and Situational Awareness; JCA_5.2_Understand; JCA_7.1.2_Prevent Non-kinetic Attack; JCA_7.1_Prevent; JCA_7_Protection; JCA_1_Force Support; JCA_8_Building Partnerships; JCA_8.2_Shape; JCA_1.2_Force Preparation; JCA_3.2_Engagement

Modernization Areas:

Cyber

Communities of Interest:

Human Systems

Descriptor(s):

*ARCHITECTURE, *CYBERNETICS, *INFORMATION SECURITY, ACCESS, COMMUNICATION AND RADIO SYSTEMS, DEPLOYMENT, MANAGEMENT BENCHMARKING

Field(s)/Group(s):

Information Science, Defense Systems

Keyword(s):

MULTILEVEL SECURITY, CYBER SUPPORTING, PERFORMANCE PENALTIES, OVERHEAD, TRUSTED COMPUTING, MYSEA

Report Date:

2012 Sep 01

Creation Date:

2013 Jan 02