A Unified Network Security Architecture for Large, Distributed Networks

Award Information
Agency:
National Aeronautics and Space Administration
Amount:
$98,814.00
Program:
SBIR
Contract:
NNX09CD72P
Solitcitation Year:
N/A
Solicitation Number:
N/A
Branch:
N/A
Award Year:
2009
Phase:
Phase I
Agency Tracking Number:
085053
Solicitation Topic Code:
N/A
Small Business Information
Zron Networks, Inc.
1102 Arboroak Place, Herndon, VA, 20170
Hubzone Owned:
N
Woman Owned:
N
Socially and Economically Disadvantaged:
N
Duns:
826864121
Principal Investigator
 Irfan Ali
 Principal Investigator
 (703) 430-1743
 iali@zronnetworks.com
Business Contact
 Irfan Ali
Title: President & CEO
Phone: (703) 430-1743
Email: iali@zronnetworks.com
Research Institution
N/A
Abstract
In typical, multi-organizational networking environments, it is difficult to define and maintain a uniform authentication scheme that provides users with easy access to required information while maintaining the security and integrity of the underlying information. This proposal offers a unique and innovative architecture for doing so through the utilization of a Proxy Service Listener (PSL) and the implementation of a customized Domain Name Service (DNS) server. The PSL provides a centralized authentication function that acts as a credentialing authority for all network services, thereby enabling a single sign-on mechanism for all services/servers operating within the framework. This allows the implementation of a centralized access control infrastructure; yet, each service has the option to determine the access controls for its clients. Conforming to the Software-as-a-Service (SaaS) paradigm, the proposed solution has multiple benefits. It provides the means for NASA to offer a uniform access methodology to its large number of distributed end users. The proposed solution also provides protection against Denial of Service (DOS) attacks and an effective means for comprehensively monitoring usage of shared networking resources for security auditing and accounting purposes. It can be used to manage connections between services/applications just as effectively as between end users and applications/services.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government