Design and Implementation of Wiki Services in a Multilevel Secure Environment

Abstract

The Monterey Security Architecture (MYSEA) provides a distributed multilevel secure networking environment where authenticated users can securely access data and services at different security classification levels. The MYSEA framework utilizes both commercial-off-the- shelf (COTS) products and specialized secure high assurance components that enforce multilevel security (MLS) policy. Some collaboration among MYSEA users is enabled through the use of the Web-based Distributed Authoring and Versioning (WebDAV) mechanism. This thesis extends the existing collaboration capability in MYSEA to include hypertext content-based collaborative authoring and information sharing through the use of the increasingly popular wiki technology. This is accomplished by porting a publicly available wiki engine to run on a proprietary operating system hosting the MYSEA server. Through a systematic selection process, TWiki was chosen as the wiki engine for MYSEA. A three-stage porting methodology was used to aid in troubleshooting porting errors. Functional and security tests were performed to ensure that the wiki engine operates properly while being constrained by the underlying Mandatory Access Control (MAC) and Discretionary Access Control (DAC) enforcement mechanisms. This research is synergistic with the cross-domain information sharing emphasis fostered under various R&D programs in the DoD and intelligence communities.

Document Details

Document Type

Technical Report

Publication Date

Dec 01, 2007

Accession Number

ADA475912

Entities

Tags