Myong H. Kang, Margery Li, B. Montrose, Amitabh Khashnobish, S. Elliott, M. Bell, Steven D. Pieper
{"title":"海上综合感知系统安全体系结构概述","authors":"Myong H. Kang, Margery Li, B. Montrose, Amitabh Khashnobish, S. Elliott, M. Bell, Steven D. Pieper","doi":"10.1109/MILCOM.2009.5379809","DOIUrl":null,"url":null,"abstract":"The Comprehensive Maritime Awareness (CMA) system tries to identify anomalous behavior and potential threats associated with the global maritime domain that could impact the United States and coalition partners' security. It analyzes data from multiple sources that impose different data handling requirements, to discover potential threats. Security architecture and mechanisms are essential enablers for data sharing. More data stewards will share their data when they feel secure with the data protection mechanism of the system that will host their data. Critical technologies for data protection and access mediation for CMA are Oracle label security (OLS) and attribute-based access control (ABAC) based on federated identity management. Federated identity providers use security assertion markup language (SAML) 2.0 as a protocol to exchange user identity and attributes. This paper provides a high-level overview of the CMA security architecture. It explains how different security mechanisms seamlessly work together to protect data and mediate access.","PeriodicalId":338641,"journal":{"name":"MILCOM 2009 - 2009 IEEE Military Communications Conference","volume":"48 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-10-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"Overview of the security architecture of the Comprehensive Maritime Awareness system\",\"authors\":\"Myong H. Kang, Margery Li, B. Montrose, Amitabh Khashnobish, S. Elliott, M. Bell, Steven D. Pieper\",\"doi\":\"10.1109/MILCOM.2009.5379809\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The Comprehensive Maritime Awareness (CMA) system tries to identify anomalous behavior and potential threats associated with the global maritime domain that could impact the United States and coalition partners' security. It analyzes data from multiple sources that impose different data handling requirements, to discover potential threats. Security architecture and mechanisms are essential enablers for data sharing. More data stewards will share their data when they feel secure with the data protection mechanism of the system that will host their data. Critical technologies for data protection and access mediation for CMA are Oracle label security (OLS) and attribute-based access control (ABAC) based on federated identity management. Federated identity providers use security assertion markup language (SAML) 2.0 as a protocol to exchange user identity and attributes. This paper provides a high-level overview of the CMA security architecture. It explains how different security mechanisms seamlessly work together to protect data and mediate access.\",\"PeriodicalId\":338641,\"journal\":{\"name\":\"MILCOM 2009 - 2009 IEEE Military Communications Conference\",\"volume\":\"48 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2009-10-18\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"MILCOM 2009 - 2009 IEEE Military Communications Conference\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/MILCOM.2009.5379809\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"MILCOM 2009 - 2009 IEEE Military Communications Conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MILCOM.2009.5379809","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Overview of the security architecture of the Comprehensive Maritime Awareness system
The Comprehensive Maritime Awareness (CMA) system tries to identify anomalous behavior and potential threats associated with the global maritime domain that could impact the United States and coalition partners' security. It analyzes data from multiple sources that impose different data handling requirements, to discover potential threats. Security architecture and mechanisms are essential enablers for data sharing. More data stewards will share their data when they feel secure with the data protection mechanism of the system that will host their data. Critical technologies for data protection and access mediation for CMA are Oracle label security (OLS) and attribute-based access control (ABAC) based on federated identity management. Federated identity providers use security assertion markup language (SAML) 2.0 as a protocol to exchange user identity and attributes. This paper provides a high-level overview of the CMA security architecture. It explains how different security mechanisms seamlessly work together to protect data and mediate access.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
