Constraints and System Primitives in Achieving Multilevel Security in Real Time Distributed System Environment
Abstract
The lack of Multilevel Secure (MLS) computer systems within the Department of Defense (DoD) is recognized as a significant shortcoming because it limits data exchange, assimilation and interoperability. A number of recent world events have reinforced the operational need for MLS systems that permit the rapid flow of time critical data between classified systems and less secure field-level execution systems. In addition, within complex military equipment, such as submarines or aircraft, the need exists for real-time collection and analysis of MLS data. Since systems such as these involve multiple subsystems, there is an obvious need for distributed operating system capabilities that can function in such environments. The advent of inexpensive, high-performance workstations and multiprocessor systems has also increased the demand for distributed operating system capabilities. Many development efforts currently underway are implementing client-server architectures to take advantage of the enormous quantities of computing power now available on the user's desktop. Past efforts to build secure systems have resulted in numerous system high computing systems which are limited to a single level of classified data. One result of this has been proliferation of command and control (C2) systems, with one system for each classification level of data. Communication between these systems is typically accomplished via one-way electronic gateways or through the use of magnetic media over an air gap, resulting in significant data redundancy and over classification, time delays, and added expense for redundant equipment and operational costs.
Document Details
- Document Type
- Technical Report
- Publication Date
- Apr 18, 1994
- Accession Number
- ADA278407