IEEE Transactions on Software Engineering
Capacity estimation and auditability of network covert channels
SP '95 Proceedings of the 1995 IEEE Symposium on Security and Privacy
Xen and the art of virtualization
SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles
Multi-Level Security Requirements for Hypervisors
ACSAC '05 Proceedings of the 21st Annual Computer Security Applications Conference
Looking Back at the Bell-La Padula Model
ACSAC '05 Proceedings of the 21st Annual Computer Security Applications Conference
Hi-index | 0.00 |
Multi-level security (MLS) is a wellestablished and thoroughly studied approach towards security. Service-oriented architectures are emerging in the commercial world and promise increased flexibility and better interoperability. While both concepts have substantial merit, there is no well-established approach for combining both. In this paper, we propose a conceptual design for MLS in a service-oriented architecture and describe how the conceptual design can be realized in today's defense networks that are structured into mutually isolated network zones with different confidentiality classifications.