You are here

Security Policy Enforcement and Compliance System (SPECS)

Award Information
Agency: Department of Defense
Branch: Air Force
Contract: FA8750-06-C-0153
Agency Tracking Number: O053-NC6-1030
Amount: $99,994.00
Phase: Phase I
Program: SBIR
Solicitation Topic Code: OSD05-NC6
Solicitation Number: 2005.3
Solicitation Year: 2005
Award Year: 2006
Award Start Date (Proposal Award Date): 2006-04-27
Award End Date (Contract End Date): 2007-04-27
Small Business Information
4515 Seton Center Parkway, Suite 320
Austin, TX 78759
United States
DUNS: 158034665
HUBZone Owned: No
Woman Owned: Yes
Socially and Economically Disadvantaged: No
Principal Investigator
 Arthur Keen
 Technical Team Lead
 (512) 342-0010
Business Contact
 Darrin Taylor
Title: Vice President
Phone: (512) 342-0010
Research Institution

While the advantages of the Global Information Grid (GIG) cannot be overstated, the challenge of maintaining security policies effectively is a daunting task. This huge network incorporates a diverse array of components and is designed to be highly dynamic and mobile. Asserting control over the GIG is critical to operational success yet is often too cumbersome via traditional means. Although systems exist for managing security policy on enterprise-scale networks, they tend to assume relatively static network configurations in which updates are deployed largely manually. Along with being lengthy, labor-intensive operations, such reconfigurations can misinterpret or overlook governing security policies and controls, leaving portions of the network vulnerable to attack. We propose the Security Policy Enforcement and Compliance System (SPECS), a framework for managing security policy on super-sized, diverse and dynamic networks. SPECS automates policy management by encoding policies in an ontology to facilitate automated enforcement given operational requirements. By linking policies to the controls that enforce them, SPECS can rapidly deploy existing policies into new or changing operational environments, and it can update existing environments in response to changes in the policies themselves. This end-to-end modeling also enables SPECS to quickly assess compliance for assured levels of network security.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government