Architecture for Multilevel Secure System Design

Abstract

A high assurance architecture is described for the protection of multilevel secure network, which provides a trusted environment for enforcing multilevel security policies. The presented architecture could prevent unauthorized users on the low side from retrieving sensitive information from the high side, as well as preventing the high side from being exposed to malicious code, such as virus sent from the low side that could damage critical information or system processes. In the simplest terms, the security risks in cross-domain service communication could be minimized.