Security Guards for the Future Web

Abstract

This report documents research efforts for the FY03 and FY04 Mission Oriented Investigation and Experimentation (MOIE) project "Security Guards for the Future Web." Traditionally, computer security guards have been used to control what information flows between security domains. Guard technology needs to keep pace with the evolving Web environment. The authors conjectured that a family of security guard services would be needed to provide the full range of functionality necessary to support the future Web. They structured their research into three segments: the browser-based environment, the Web Services environment and the Semantic Web. Their objectives were to investigate how the content and format of data would change in the various Web environments and how mechanisms designed to enforce cross-domain information sharing rules would have to evolve to match that changing content. Their research for the browser-based environment included a requirements analysis and an analysis of alternative architectures for cross-domain information exchanges. Their research for the Web Services and Semantic Web environments focused on two aspects of guards: the type of data that the guard can transfer and the method used to check the content of items. They decided to focus their Web Services and Semantic Web research on highly structured XML data and guards that would automatically check the content using machine-interpretable information sharing rules. They chose to explore guard designs that supported a wide range of security policies and the ability to easily replace or update the information sharing rules. Their approach entailed three steps: (1) creating an operational scenario for use in their experiment, (2) building a prototype for experimentation, and (3) conducting tests with the prototype using the generated scenario and capturing the lessons learned.

Document Details

Document Type

Technical Report

Publication Date

Sep 01, 2004

Accession Number

ADA459589

Entities

Tags