Content-based information protection and release in NATO operations

Authors:
Alessandro Armando;Matteo Grasso;Sander Oudkerk;Silvio Ranise;Konrad Wrona
Affiliations:
Alessandro Armando DIBRIS, U. of Genova, Italy and Security and Trust Unit, FBK-Irst, Trento, Italy, Trento, Italy;Security and Trust Unit, FBK-Irst, Trento, Italy, Trento, Italy;Agent Sierra Consultancy Services, Amsterdam, Netherlands;Security and Trust Unit, FBK-Irst, Trento, Italy, Trento, Italy;NATO Communications and Information Agency, The Hague, Netherlands
Venue:
Proceedings of the 18th ACM symposium on Access control models and technologies
Year:
2013

Citing 2
Cited 0

A fine-grained access control system for XML documents

ACM Transactions on Information and System Security (TISSEC)
A unified attribute-based access control model covering DAC, MAC and RBAC

DBSec'12 Proceedings of the 26th Annual IFIP WG 11.3 conference on Data and Applications Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

The successful operation of NATO missions requires effective and secure sharing of information among coalition partners and external organizations, while avoiding the disclosure of sensitive information to untrusted users. To resolve the conflict between confidentiality and availability, NATO is developing a new information sharing infrastructure, called Content-based Protection and Release. We describe the architecture of access control in NATO operations, which is designed to be easily built on top of available (service-oriented) infrastructures for identity and access control management. We then present a use case scenario drawn from the NATO Passive Missile Defence system for simulating the consequences of intercepting missile attacks. In the system demonstration, we show how maps annotated with the findings of the system are filtered by the access control module to produce appropriate views for users with different clearances and terminals under given release and protection policies.