From multilevel security to multiple independent levels of security/safety: the evolution illustrated through a novel cross-domain architecture

Q4 Business, Management and Accounting

International Journal of Mobile Network Design and Innovation Pub Date : 2017-03-14 DOI:10.1504/IJMNDI.2017.10003739

Angelo Liguori

{"title":"From multilevel security to multiple independent levels of security/safety: the evolution illustrated through a novel cross-domain architecture","authors":"Angelo Liguori","doi":"10.1504/IJMNDI.2017.10003739","DOIUrl":null,"url":null,"abstract":"Since years organisations classify information according to security schemes and various criteria. The requirement to protect information characterised by a hierarchy of sensitivity levels led to the definition of multilevel security. Multilevel security represents one of the toughest problems that security engineers are still facing, due to the fact that it is difficult to manage securely information at different classification levels on the same electronic device or network. It concerns wired and wireless communications, from personal area and wireless sensor networks to wide area and satellite networks. The problem becomes even more critical when users with various clearances, privileges, and roles need to operate simultaneously on these security-motley data. Recently, a new approach gathered the endorsement of industry and academia, the so-called multiple independent levels of security/safety. In this article, we show the evolution that drove the multilevel security into this new paradigm, highlighting the benefits and the drawbacks of the former together with the improvement of the latter and its open issues. A novel cross-domain solution is presented as the thread in-between the two approaches.","PeriodicalId":35022,"journal":{"name":"International Journal of Mobile Network Design and Innovation","volume":"11 1","pages":"22"},"PeriodicalIF":0.0000,"publicationDate":"2017-03-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Mobile Network Design and Innovation","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1504/IJMNDI.2017.10003739","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"Business, Management and Accounting","Score":null,"Total":0}

引用次数: 0

Abstract

Since years organisations classify information according to security schemes and various criteria. The requirement to protect information characterised by a hierarchy of sensitivity levels led to the definition of multilevel security. Multilevel security represents one of the toughest problems that security engineers are still facing, due to the fact that it is difficult to manage securely information at different classification levels on the same electronic device or network. It concerns wired and wireless communications, from personal area and wireless sensor networks to wide area and satellite networks. The problem becomes even more critical when users with various clearances, privileges, and roles need to operate simultaneously on these security-motley data. Recently, a new approach gathered the endorsement of industry and academia, the so-called multiple independent levels of security/safety. In this article, we show the evolution that drove the multilevel security into this new paradigm, highlighting the benefits and the drawbacks of the former together with the improvement of the latter and its open issues. A novel cross-domain solution is presented as the thread in-between the two approaches.

查看原文本刊更多论文

从多级安全到多个独立的安全/安全级别:通过一种新的跨域体系结构说明的演变

多年来，组织根据安全方案和各种标准对信息进行分类。保护以敏感等级为特征的信息的需求导致了多级安全的定义。由于难以对同一电子设备或网络上不同级别的信息进行安全管理，多级安全是安全工程师仍然面临的最棘手的问题之一。它涉及有线和无线通信，从个人区域和无线传感器网络到广域和卫星网络。当具有不同权限、特权和角色的用户需要同时操作这些混杂的安全数据时，问题变得更加严重。最近，一种新的方法得到了工业界和学术界的认可，即所谓的多重独立的安全/安全级别。在本文中，我们将展示推动多级安全进入这种新范式的演变过程，强调前者的优点和缺点，以及后者的改进及其开放问题。提出了一种新的跨域解决方案，作为两种方法之间的线程。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Journal of Mobile Network Design and Innovation Business, Management and Accounting-Management Information Systems

CiteScore

0.30

自引率

0.00%

发文量

期刊介绍： The IJMNDI addresses the state-of-the-art in computerisation for the deployment and operation of current and future wireless networks. Following the trend in many other engineering disciplines, intelligent and automatic computer software has become the critical factor for obtaining high performance network solutions that meet the objectives of both the network subscriber and operator. Characteristically, high performance and innovative techniques are required to address computationally intensive radio engineering planning problems while providing optimised solutions and knowledge which will enhance the deployment and operation of expensive wireless resources.