An Infrastructure for Multi-Level Secure Service-Oriented Architecture (MLS-SOA) Using the Multiple Single-Level Approach

Abstract

SOA is the premier framework for integrating complex heterogeneous computing systems in business and government. To utilize SOA in sensitive military systems, however, the requirements for multi-level security (MLS) must be addressed. This paper presents a framework for adding MLS capabilities to existing SOA infrastructure. Specifically, it will allow clients in High to securely utilize services in Low. MLS issues including covert channels, release of identity information, and inference attacks are addressed. Our scheme uses the multiple singlelevels (MSL) approach to offer a practical solution that leverages existing technology. It can be deployed immediately without developing and certifying new high assurance MLS components. The MLS-SOA infrastructure can be installed cleanly on top of regular SOA and MLS components. Operations of existing infrastructure, services, and applications will not be affected. Capabilities provided by this scheme can also be applied to other non-MLS settings with similar requirements for separation and anonymity.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Dec 17, 2009
Accession Number
ADA514453

Entities

People

  • Jim Luo
  • Myong Kang

Organizations

  • United States Naval Research Laboratory

Tags

Communities of Interest

  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Algorithms
  • Authentication
  • Boundaries
  • Computer Access Control
  • Computing System Architectures
  • Cross Domain
  • Distributed Computing
  • Identities
  • Information Systems
  • Infrastructure
  • Military Operations
  • Security
  • Service Oriented Architecture
  • Software Development
  • Standards
  • Storage
  • Web Service

Fields of Study

  • Computer science

Readers

  • Aerospace Engineering
  • Cybersecurity.

Technology Areas

  • AI & ML
  • AI & ML - DoD AI Strategy
  • AI & ML - Machine Translation