A Cloud-Oriented Cross-Domain Security Architecture
Nguyen, D Thuy
Gondree, Mark A.
Shifflet, David J.
Levin, Timothy E.
Irvine, Cynthia E.
MetadataShow full item record
The Monterey Security Architecture addresses the need to share high-value data across multiple domains of different classification levels while enforcing information flow policies. The architecture allows users with different security authorizations to securely collaborate and exchange information using commodity computers and familiar commercial client software that generally lack the prerequisite assurance and functional security protections. MYSEA seeks to meet two compelling requirements, often assumed to be at odds: enforcing critical, mandatory security policies, and allowing access and collaboration in a familiar work environment. Recent additions to the MYSEA design expand the architecture to support a cloud of cross-domain services, hosted within a federation of multilevel secure (MLS) MYSEA servers. The MYSEA cloud supports single-sign on, service replication, and network-layer quality of security service. This new cross domain, distributed architecture follows the consumption and delivery model for cloud services, while maintaining the federated control model necessary to support and protect cross domain collaboration within the enterprise. The resulting architecture shows the feasibility of high-assurance, cross-domain services hosted within a community cloud suitable for interagency, or joint, collaboration. This paper summarizes the MYSEA architecture and discusses MYSEA's approach to provide an MLS-constrained cloud computing environment.
RightsThis publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
Showing items related by title, author, creator and subject.
Newman, Jim; Racoosin, Charlie; Lan, Wenschel; Begley, Rhett; Crawford, Niki; McGowan, Jeremy; McClenning, Robert (Monterey, California: Naval Postgraduate School, 2018-04); NPS-18-N264-AProject Summary: This executive summary combines the work of three theses that researched the feasibility of a small satellite (SmallSat) constellation to increase intelligence, surveillance, and reconnaissance (ISR) in ...
Naval Postgraduate School Center for Homeland Defense and Security (CHDS) (Monterey, California. Naval Postgraduate SchoolCenter for Homeland Defense and Security, 2006-10);October 2006. Welcome to Volume 2, Issue Three of Homeland Security Affairs. This issue is dedicated to the memory of Lacy Suiter. I believe Lacy would be embarrassed by the idea of dedicating an issue of anything to him. ...
Hibshi, Hanan; Breaux, Travis (Monterey, California. Naval Postgraduate School, 2019-03-07); CMU-IT-18-227Department of Defense (DoD) information assurance (IA) certification and accreditation relies on a multi-tier risk framework where security assessment aligns with NIST information assurance control set. The human analyst ...