research-article

Design and Assurance Strategy for the NRL Pump

Authors:

Myong H. Kang,

Andrew P. Moore,

Ira S. MoskowitzAuthors Info & Claims

Computer, Volume 31, Issue 4

Pages 56 - 64

https://doi.org/10.1109/2.666843

Published: 01 April 1998 Publication History

Publisher Site

Abstract

In the past 20 years, only a handful of high-assurance, multilevel, secure computers have been built, and even these are rarely used in operational environments. Such systems suffer a host of disadvantages: They cost too much, lack user-friendly features and development environments, take too much time to evaluate and certify, and do not scale well for secure distributed computing. This lack of satisfactory security solutions is disturbing in light of the trend toward open and distributed computing, which increases a system's vulnerability to attack. The authors propose basing security solutions instead on a multiple single-level security architecture, which uses commercial (nonsecure) products for general-purpose computing and special- purpose high-assurance devices to separate data at different security levels. A multiple single-level architecture is a viable and practical solution to distributed multilevel secure computing. The keystone of this architecture is a trusted device that "pumps" data from a low security level to a higher one. The authors describe the software design and assurance argument strategy for this device, the Network NRL Pump, which can be used in any multilevel secure distributed architecture.

References

[1]

M. Kang J. Froscher and I. Moskowitz, "A Framework for MLS Interoperability," Proc. High-Assurance Systems Eng. Workshop, IEEE CS Press, Los Alamitos, Calif., 1996, pp. 198-205.

Crossref

Google Scholar

[2]

M. Kang J. Froscher and I. Moskowitz, "An Architecture for Multilevel Secure Interoperability," Proc. Computer Security Applications Conf., IEEE CS Press, Los Alamitos, Calif., 1997, pp. 194-204.

Crossref

Google Scholar

[3]

M. Kang and I. Moskowitz, "A Pump for Rapid, Reliable, Secure Communication," Proc. ACM Conf. Computer and Comm. Security, ACM Press, New York, 1993, pp. 119-129.

Crossref

Google Scholar

[4]

M. Kang I. Moskowitz and D. Lee, "A Network Pump," IEEE Trans. Software Eng., May 1996, pp. 329-338.

Crossref

Google Scholar

[5]

I. Moskowitz and M. Kang, "Covert Channels—Here to Stay?" Proc. Computer Assurance Conf., IEEE CS Press, Los Alamitos, Calif., 1994, pp. 235-243.

Google Scholar

[6]

A. Moore and C. Payne, "Increasing Assurance with Literate Programming Techniques," Proc. Computer Assurance Conf., IEEE CS Press, Los Alamitos, Calif., 1996, pp. 187-198.

Google Scholar

[7]

D. Harel, et al., "Statemate: A Working Environment for the Development of Complex Reactive Systems," IEEE Trans. Software Eng., Apr. 1990, pp. 403-414.

Digital Library

Google Scholar

[8]

S. Kromodimoeljo, et al., "EVES: An Overview," Tech. Report CP-91-5402-43, ORA Canada, Ottawa, Ontario, 1993.

Google Scholar

[9]

Whitebox DeepCover: User Reference Manual, Reliable Software Technologies, Sterling, Va., 1996.

Google Scholar

[10]

M. Kang A. Moore and I. Moskowitz, "Design and Assurance Strategy for the NRL Pump," NRL Memo 5540-97-7991, Naval Research Laboratory, Washington, D.C., Dec. 1997.

Crossref

Google Scholar

Cited By

View all

Novakovic CParker D(2019)Automated Formal Analysis of Side-Channel Attacks on Probabilistic SystemsComputer Security – ESORICS 201910.1007/978-3-030-29959-0_16(319-337)Online publication date: 23-Sep-2019
https://dl.acm.org/doi/10.1007/978-3-030-29959-0_16
Norman GParker DZou X(2017)Verification and control of partially observable probabilistic systemsReal-Time Systems10.1007/s11241-017-9269-453:3(354-402)Online publication date: 1-May-2017
https://dl.acm.org/doi/10.1007/s11241-017-9269-4
Aldini ABernardo M(2011)Component-oriented verification of noninterferenceJournal of Systems Architecture: the EUROMICRO Journal10.1016/j.sysarc.2010.06.00557:3(282-293)Online publication date: 1-Mar-2011
https://dl.acm.org/doi/10.1016/j.sysarc.2010.06.005
Show More Cited By

Index Terms

Design and Assurance Strategy for the NRL Pump
1. Computer systems organization
  1. Architectures
    1. Distributed architectures
  2. Dependable and fault-tolerant systems and networks
2. Software and its engineering
  1. Software organization and properties
    1. Software system structures
      1. Distributed systems organizing principles
        Organizing principles for web applications
      2. Software architectures

Recommendations

Quantitative security assurance metrics: REST API case studies
ECSA '18: Proceedings of the 12th European Conference on Software Architecture: Companion Proceedings

Security assurance is the confidence that a system meets its security requirements based on specific evidences that an assurance technique provide. The notion of measuring security is complex and tricky. Existing approaches either (1) consider one ...
System security assurance: A systematic literature review
Abstract
System security assurance provides the confidence that security features, practices, procedures, and architecture of software systems mediate and enforce the security policy and are resilient against security failure and attacks. ...
Highlights
- Systematic literature review of security assurance of the ICT and CPSs.
- Study ...
IPsec/VPN security policy correctness and assurance
Managing security policies: Modeling, verification and configuration

With IPsec/VPN policies being widely deployed, how to correctly specify and configure them is critical in enforcing security requirements, especially among different administrative domains across the Internet. Under current practice, IPsec/VPN policies ...

Comments

Information & Contributors

Information

Published In

Computer Volume 31, Issue 4

April 1998

76 pages

ISSN:0018-9162

Issue’s Table of Contents

Publisher

IEEE Computer Society Press

Washington, DC, United States

Publication History

Published: 01 April 1998

Qualifiers

Research-article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

8
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 18 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Novakovic CParker D(2019)Automated Formal Analysis of Side-Channel Attacks on Probabilistic SystemsComputer Security – ESORICS 201910.1007/978-3-030-29959-0_16(319-337)Online publication date: 23-Sep-2019
https://dl.acm.org/doi/10.1007/978-3-030-29959-0_16
Norman GParker DZou X(2017)Verification and control of partially observable probabilistic systemsReal-Time Systems10.1007/s11241-017-9269-453:3(354-402)Online publication date: 1-May-2017
https://dl.acm.org/doi/10.1007/s11241-017-9269-4
Aldini ABernardo M(2011)Component-oriented verification of noninterferenceJournal of Systems Architecture: the EUROMICRO Journal10.1016/j.sysarc.2010.06.00557:3(282-293)Online publication date: 1-Mar-2011
https://dl.acm.org/doi/10.1016/j.sysarc.2010.06.005
Irvine CNguyen TShifflett DLevin TKhosalim JPrince CClark PGondree MXu SAsokan NNita-Rotaru CSeifert J(2009)MYSEAProceedings of the 2009 ACM workshop on Scalable trusted computing10.1145/1655108.1655115(39-48)Online publication date: 13-Nov-2009
https://dl.acm.org/doi/10.1145/1655108.1655115
Radhakrishnan MSolworth JLin FLee DLin BShieh SJajodia S(2006)Application security support in the operating system kernelProceedings of the 2006 ACM Symposium on Information, computer and communications security10.1145/1128817.1128848(201-211)Online publication date: 21-Mar-2006
https://dl.acm.org/doi/10.1145/1128817.1128848
Lanotte RMaggiolo-Schettini ATini STroina ATronci E(2004)Automatic Analysis of the NRL PumpElectronic Notes in Theoretical Computer Science (ENTCS)10.1016/j.entcs.2004.02.01199(245-266)Online publication date: 1-Aug-2004
https://dl.acm.org/doi/10.1016/j.entcs.2004.02.011
Ellison RFisher DLinger RLipson HLongstaff TMead N(1999)SurvivabilityIEEE Internet Computing10.1109/4236.8070083:6(55-63)Online publication date: 1-Nov-1999
https://dl.acm.org/doi/10.1109/4236.807008
Chang LMoskowitz IBlakeley BKienzle DZurko MGreenwald S(1998)Parsimonious downgrading and decision trees applied to the inference problemProceedings of the 1998 workshop on New security paradigms10.1145/310889.310921(82-89)Online publication date: 1-Jan-1998
https://dl.acm.org/doi/10.1145/310889.310921

Abstract

References

Cited By

Index Terms

Recommendations

Quantitative security assurance metrics: REST API case studies

System security assurance: A systematic literature review

IPsec/VPN security policy correctness and assurance

Comments

Information

Published In

Publisher

Publication History

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations