The impact on quality of service when using security-enabling filters to provide for the security of run-time extensible virtual environments

Download
Author
Salles, Ernesto J.
Date
2002-09Advisor
Bret, Michael, J.
Capps, Michael
Second Reader
McGregor, Don
Metadata
Show full item recordAbstract
The Naval Postgraduate School is developing NPSNET-V, a Run-Time Extensible Virtual Environment (RTEVE) framework. RTEVEs differ from traditional VEs in that applications within the environment can both discover and use new object types and behaviors at runtime. As the use of this technology has become more valuable to organizations, the need for adequate security has arisen, particularly for sensitive military and commercial applications. The level of security measures employed by these applications must be weighed against their impact on Quality of Service (QOS). To address RTEVE security issues, we developed a taxonomy identifying twenty-five information assurance (IA) areas within RTEVEs. We then designed and implemented a Security Management System for NPSNET-V (NSMS) that provided security through the use of three communications filters that provide for encryption, sequencing verification, and integrity. This design addressed four of the twenty-five areas identified in the taxonomy: component authentication; and communications confidentiality, integrity, and authentication. Analysis of the encryption, sequencing, and integrity filters indicates that their use introduces a negligible delay of 0.111 milliseconds for a 156 byte data packet, at the cost in packet size increase of 41 bytes; this indicates the technical feasibility of RTEVE data packet security at minimal cost to QOS.
Description
This thesis done in cooperation with the MOVES Institute
Rights
This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.Collections
Related items
Showing items related by title, author, creator and subject.
-
U.S. SECURITY CLEARANCES: REDUCING THE SECURITY CLEARANCE BACKLOG WHILE PRESERVING INFORMATION SECURITY
Berger, Benjamin F. (Monterey, CA; Naval Postgraduate School, 2019-03);From 2014-2018, the U.S. federal government security clearance backlog increased from 190,000 investigations to 710,000 investigations, according to a 2018 Government Accountability Office report. The backlog of security ... -
Immigration adjudication reform: the case for automation
Sanford, Abigail J. (Monterey, California: Naval Postgraduate School, 2014-09);A bill that has passed the United States Senate, S. 744, proposes a Lawful Prospective Immigrant (LPI) status and a path to Citizenship for an estimated 11–12 million undocumented immigrants in the United States. United ... -
Comparison of data integrity models
Ivan, Thomas R. (Monterey, California. Naval Postgraduate School, 1991-03);Data integrity in computer based information systems is a concern because of the damage that can be done by unauthorized manipulation or modification of data. While a standard exists for data security, there currently is ...