DNS and Multilevel Secure Networks: Architectures and Recommendations

Abstract

The Domain Name System (DNS) protocol was introduced to solve a naming problem in TCP/IP networking, namely, to provide a translation service of system names to network addresses (i.e., Internet Protocol (IP) addresses). The protocol was not developed with a requirement to support multilevel secure (MLS) networks. However, the Department of Defense (DoD) vision for the Global Information Grid (GIG) entails support for multilevel networks. In the future, DNS installations must securely deal with multilevel issues. This paper describes specific design recommendations for providing MLS DNS in the context of the GIG Vision, and the Monterey Security Architecture (MYSEA) Testbed. It also describes several other potential MLS DNS architectures along with their advantages and disadvantages.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Feb 01, 2009
Accession Number
ADA498511

Entities

People

  • Cynthia E. Irvine
  • David J. Shifflett
  • Paul C. Clark
  • Timothy E. Lavin

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Space

DTIC Thesaurus Topics

  • Computer Access Control
  • Computer Programs
  • Computer Science
  • Computers
  • Computing System Architectures
  • Department Of Defense
  • Electronic Mail
  • Global Information Grid
  • Governments
  • Internet
  • Military Research
  • Network Protocols
  • Networks
  • Operating Systems
  • Relational Databases
  • Security
  • Translations

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Systems Analysis and Design