Multi-level security for service-oriented architectures

Authors:
HariGovind V. Ramasamy;Matthias Schunter
Affiliations:
IBM Zürich Research Laboratory, Rüschlikon, Switzerland;IBM Zürich Research Laboratory, Rüschlikon, Switzerland
Venue:
MILCOM'06 Proceedings of the 2006 IEEE conference on Military communications
Year:
2006

Citing 5
Cited 0

A Network Pump

IEEE Transactions on Software Engineering
Capacity estimation and auditability of network covert channels

SP '95 Proceedings of the 1995 IEEE Symposium on Security and Privacy
Xen and the art of virtualization

SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles
Multi-Level Security Requirements for Hypervisors

ACSAC '05 Proceedings of the 21st Annual Computer Security Applications Conference
Looking Back at the Bell-La Padula Model

ACSAC '05 Proceedings of the 21st Annual Computer Security Applications Conference

Quantified Score

Hi-index	0.00

Visualization

Abstract

Multi-level security (MLS) is a wellestablished and thoroughly studied approach towards security. Service-oriented architectures are emerging in the commercial world and promise increased flexibility and better interoperability. While both concepts have substantial merit, there is no well-established approach for combining both. In this paper, we propose a conceptual design for MLS in a service-oriented architecture and describe how the conceptual design can be realized in today's defense networks that are structured into mutually isolated network zones with different confidentiality classifications.