Cross-Domain RSS Processor and Router
Agency / Branch:
DOD / NAVY
In the previous Phase I research, RedPhone Security (RPS) developed a lightweight prototype following a pattern introduced in John Rushby's 1983 paper titled "A Distributed Secure System." In Phase I a separation kernel formal model was augmented with a public key cryptographic functions; this cryptography was used to enhance and guard a reference monitor protected by a separation kernel. The development effort to accomplish the subsequent prototype for this enhanced reference monitor was small because the enhancement itself resulted in a relatively tiny formal model and software implementation. Phase II will extend the Phase I prototype into additional prototypes that embody capable, usable, useful and certifiable Distributed Secure Routers. By accomplishing an initial consensus of reviewers, Phase I demonstrated the feasibility of a relatively tiny enhancement to the reference monitor concept and separation theorem. In Phase II we put this system forward as the subject of the fairly heavyweight testing and analysis efforts typically associated with an Evaluated Assurance Level of 6. We propose to obtain EAL6 assurance artifacts that have been, historically speaking, dearly-bought. Our approach is reasonable primarily because the Phase I efforts produced a fair amount of evidence demonstrating that the required system implementation is quite small.
Small Business Information at Submission:
2019 Palace Avenue Saint Paul, MN 55105
Number of Employees: