Performance Analysis of MYSEA
Loading...
Authors
Ping, Chua Kai
Subjects
Multilevel security, cyber supporting, benchmark, performance penalties, overhead, trusted computing, MYSEA
Advisors
Gondree, Mark A.
Irvine, Cynthia E.
Date of Issue
2012-09
Date
Sep-12
Publisher
Monterey, California. Naval Postgraduate School
Language
Abstract
The Monterey Security Architecture (MYSEA) provides trusted security services, allowing users to access information at different sensitivity levels at the same time. The MYSEA server enforces a mandatory access control policy to ensure that users can only access data for which they are authorized. We would like to know the consequences of the MYSEA design on the performance of the MYSEA system. In articular, have the MYSEA trusted processes introduced any design bottlenecks into the system? The objective of this thesis is to analyze the performance of selected aspects of MYSEA and, when applicable, identify system performance bottlenecks. In the absence of bottlenecks, our secure system performance study can be interpreted as characterizing the "cost of security" in a multilevel security context. We analyze the overhead associated with MYSEA by targeting and benchmarking its components and services. We deployed the netperf tool as a MYSEA service, to observe costs associated with IPSec, the MYSEA trusted proxy and communication among servers in the MYSEA Federation. Our benchmark tests provided useful insights to the performance overhead introduced by MYSEA's design and highlighted the cost of security of selected aspects in MYSEA.
Type
Thesis
Description
Series/Report No
Department
Computer Science
Organization
Identifiers
NPS Report Number
Sponsors
Funder
Format
Citation
Distribution Statement
Approved for public release; distribution is unlimited.