Multi-Level Security for T&E

Abstract

Multi-level security (MLS) technologies for Test and Evaluation (T&E) will allow information to flow freely between testers who have the appropriate security credentials to access mission essential information while preventing leaks to unauthorized recipients. MLS test systems must incorporate three essential features: first, the system must enforce these restrictions regardless of the actions of system users or administrators, second, enforce these restrictions with incredibly high reliability, and third, allow assured acess for the bidirectional flow of information classified at multiple levels of security to accredited parties across the test infrastructure. These requirements have led developers to implement specialized security mechanisms and apply sophisticated techniques to review, analyze, and test those mechanisms for correct and reliable behavior. These specialized mechanisms constitute point solutions that are certified for use in a specific system configuration and for a particular network architecture, thereby resulting in the need for numerous solutions to address varied test environments. The consequence of this uniqueness is a low degree of efficiency coupled with a low degree of capability. The MLS needs of testing have recently grown significantly to include: (1) new test concepts and related infrastructure enhancements, such as distributed testing over a national test network and passing test data over telemetry streams of multiple classification levels; (2) test operations in an information rich battlespace, such as testing of network centric operations; (3) the need to exchange information with systems and people that have differing levels of authorization for information access, such as testing with coalition partners; and (4) testing of systems that produce, transmit and consume information of varying levels of classification, such as information operations. Test technologies that enable the aforementioned test capabilities will significantly increase efficiency and generate cost savings.

Open PDF

Document Details

Document Type
Project
Publication Date
Oct 01, 2012
Source ID
9_0603941D8Z_3_0400_PB_2012

Tags

Fields of Study

  • Computer science

Readers

  • Aerospace Test and Evaluation
  • Computer Networking
  • Cybersecurity.

Related Documents