USA flag logo/image

An Official Website of the United States Government

Security Policy Enforcement and Compliance System (SPECS)

Award Information

Agency:
Department of Defense
Branch:
Office of the Secretary of Defense
Award ID:
78764
Program Year/Program:
2006 / SBIR
Agency Tracking Number:
O053-NC6-1030
Solicitation Year:
N/A
Solicitation Topic Code:
N/A
Solicitation Number:
N/A
Small Business Information
21st Century Technologies Inc.
6011 West Courtyard Drive Bldg 5, Suite 300 Austin, TX -
View profile »
Woman-Owned: No
Minority-Owned: No
HUBZone-Owned: No
 
Phase 1
Fiscal Year: 2006
Title: Security Policy Enforcement and Compliance System (SPECS)
Agency / Branch: DOD / OSD
Contract: FA8750-06-C-0153
Award Amount: $99,994.00
 

Abstract:

While the advantages of the Global Information Grid (GIG) cannot be overstated, the challenge of maintaining security policies effectively is a daunting task. This huge network incorporates a diverse array of components and is designed to be highly dynamic and mobile. Asserting control over the GIG is critical to operational success yet is often too cumbersome via traditional means. Although systems exist for managing security policy on enterprise-scale networks, they tend to assume relatively static network configurations in which updates are deployed largely manually. Along with being lengthy, labor-intensive operations, such reconfigurations can misinterpret or overlook governing security policies and controls, leaving portions of the network vulnerable to attack. We propose the Security Policy Enforcement and Compliance System (SPECS), a framework for managing security policy on super-sized, diverse and dynamic networks. SPECS automates policy management by encoding policies in an ontology to facilitate automated enforcement given operational requirements. By linking policies to the controls that enforce them, SPECS can rapidly deploy existing policies into new or changing operational environments, and it can update existing environments in response to changes in the policies themselves. This end-to-end modeling also enables SPECS to quickly assess compliance for assured levels of network security.

Principal Investigator:

Arthur Keen
Technical Team Lead
5123420010
AKEEN@21technologies.com

Business Contact:

Darrin Taylor
Vice President
5123420010
dtaylorz@21technologies.com
Small Business Information at Submission:

21ST CENTURY TECHNOLOGIES, INC.
4515 Seton Center Parkway, Suite 320 Austin, TX 78759

EIN/Tax ID: 541719551
DUNS: N/A
Number of Employees:
Woman-Owned: No
Minority-Owned: No
HUBZone-Owned: No