Dynamic Cross Domain Information Sharing - A Concept Paper on Flexible Adaptive Policy Management
Citation:
Michael Atighetchi, Jonathan Webb, Partha Pal, Joseph Loyall, Azer Bestavros, Michael J. Mayhew.
Dynamic Cross Domain Information Sharing - A Concept Paper on Flexible Adaptive Policy Management.
2nd ACM Workshop on Assurable & Usable Security Configuration (SafeConfig)at the 17th ACM Conference on Computer and Communications Security (CCS 2010), October 4 2010
Formats: Abstract:
Paper [PDF]
Slides [PDF]
Information exchange across domains is essential for todays asymmetric warfare environment to make mission-critical information available to war fighters, no matter where it exists and when it becomes available. Dissemination of new information needs to carefully balance the need-to-know by consumers with the responsibility-to-share by providers. The right amount of sharing, governed by policies defining what information can cross domain boundaries, when, and under what circumstances, is highly context-dependent and dynamic. Dynamic management of those policies is a key challenge. This paper describes the design of concepts and services to support dynamic lifecycle management and deconfliction of policies governing cross domain information flows. We describe how the design provides scalable, on-the-fly reconfiguration of both local and cross domain security policies while confining sensitive policy information to their respective local domains.
