Employing Web Services between Domains with Restricted Information Flows

Abstract

Web services technology is becoming more widespread for military use, in addition to being common in civilian systems. This technology is defined by a number of standards, each addressing a different aspect of communication, integration and interoperability. This makes Web services highly suited for integrating civil and military systems. In a civil-military scenario, there are strict demands for security and control of information flow between systems. Web services support application level security, and in the long term, security in Web services based systems should be provided using these standards. However, current security policies often demand the use of other, existing security measures, such as the use of a so-called diode. A diode is placed between networks or domains, and ensures that information can only flow one way between these networks, for example from a civil network to a military network domain. In this paper, we investigate the use of Web services technology in networks where a data diode is in use.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jun 01, 2011
Accession Number
ADA546960

Entities

People

  • Frank T. Johnsen
  • Trude Hafsoe

Organizations

  • Norwegian Defence Research Establishment

Tags

Communities of Interest

  • C4I

DTIC Thesaurus Topics

  • Command And Control
  • Communication Systems
  • Computing System Architectures
  • Information Exchange
  • Language
  • Markup Languages
  • Military Operations
  • Network Protocols
  • Networks
  • Service Oriented Architecture
  • Standards
  • Transport Protocols
  • Web Service
  • Xml

Fields of Study

  • Computer science

Readers

  • Agent-Based Social Robotics and Mobile-Assisted Learning in Virtual Environments.
  • Joint Military Operations and Doctrine.
  • Systems Analysis and Design