Angelo Liguori, F. Benedetto, G. Giunta, Nils Kopal, Arno Wacker
{"title":"SoftGap:一个多独立安全级别的跨域解决方案","authors":"Angelo Liguori, F. Benedetto, G. Giunta, Nils Kopal, Arno Wacker","doi":"10.1109/FiCloud.2015.84","DOIUrl":null,"url":null,"abstract":"Many contexts dealing with sensitive data are constantly looking for high assurance security solutions. The Multilevel Security represents one of the toughest unresolved problems faced over many years. Information and Communications systems need to exchange data, their software needs to be patched and updated hence, they need a connection to the Internet. Attacks can be launched using this connection, and through a compromised host attackers can steal and illicitly disclose information. In this paper we present a novel Multi Independent Levels of Security solution that enforces the separation of networks and data flow control through the use of a Separation Kernel Hypervisor. We show the robustness of our solution through a theoretical evaluation, supported by tools designed for the analysis of security protocols.","PeriodicalId":182204,"journal":{"name":"2015 3rd International Conference on Future Internet of Things and Cloud","volume":"59 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-08-24","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"SoftGap: A Multi Independent Levels of Security Cross-Domain Solution\",\"authors\":\"Angelo Liguori, F. Benedetto, G. Giunta, Nils Kopal, Arno Wacker\",\"doi\":\"10.1109/FiCloud.2015.84\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Many contexts dealing with sensitive data are constantly looking for high assurance security solutions. The Multilevel Security represents one of the toughest unresolved problems faced over many years. Information and Communications systems need to exchange data, their software needs to be patched and updated hence, they need a connection to the Internet. Attacks can be launched using this connection, and through a compromised host attackers can steal and illicitly disclose information. In this paper we present a novel Multi Independent Levels of Security solution that enforces the separation of networks and data flow control through the use of a Separation Kernel Hypervisor. We show the robustness of our solution through a theoretical evaluation, supported by tools designed for the analysis of security protocols.\",\"PeriodicalId\":182204,\"journal\":{\"name\":\"2015 3rd International Conference on Future Internet of Things and Cloud\",\"volume\":\"59 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-08-24\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 3rd International Conference on Future Internet of Things and Cloud\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/FiCloud.2015.84\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 3rd International Conference on Future Internet of Things and Cloud","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/FiCloud.2015.84","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
SoftGap: A Multi Independent Levels of Security Cross-Domain Solution
Many contexts dealing with sensitive data are constantly looking for high assurance security solutions. The Multilevel Security represents one of the toughest unresolved problems faced over many years. Information and Communications systems need to exchange data, their software needs to be patched and updated hence, they need a connection to the Internet. Attacks can be launched using this connection, and through a compromised host attackers can steal and illicitly disclose information. In this paper we present a novel Multi Independent Levels of Security solution that enforces the separation of networks and data flow control through the use of a Separation Kernel Hypervisor. We show the robustness of our solution through a theoretical evaluation, supported by tools designed for the analysis of security protocols.