Policy Manager for Access Controls in a Tactical Environment

The objective of the this phase 1 proposal is to design and develop an access control policy framework that is a scaleable across the Army enterprise by allowing for the decentralized management and local enforcement of the access control policies, minimize impact on the network with respect to policy traffic, allow for interoperability between Community of Interests (COIs) or domains and allow for individuals to assume multiple roles as dictated on the battlefield. We propose an innovative use of the core RBAC model by extending it to include attribute based access control that will allow the capability to satisfy more complex business needs. NetCentric concept in meeting these critical requirements includes incorporating features that allow for the self-certifying delegation of roles from outside a domain's community of interest by integrating other security services with the access control policy framework.