The Metadata Security Assertion Framework and Evaluation system (MetaSAFE)
Small Business Information
33 Thornwood Drive, Suite 500, Ithaca, NY, 14850
AbstractModern Defense strategy and execution is increasingly net-centric and distributed, allowing for new information flows that cross system, domain, and community of interest boundaries. But these new data flows introduce security risk as sensitive information passes outside of the domain where it was created. To mitigate this risk, the originators of information must assert control over the dissemination of sensitive information, and the receivers of information must validate that this sensitive information was disseminated by trustworthy and valid sources. In both cases, detailed and accurate metadata must be provided with the assurance that it cannot be compromised to misrepresent the associated information. ATC-NY, in collaboration with Architecture Technology Corporation, will develop the Metadata Security Assertion Framework and Evaluation system (MetaSAFE) to enable a guard or other security device to manage the creation and validation of security metadata. MetaSAFE will provide secure association of information with its metadata, and a secure trail of assertions, signed by trusted sources, validating the metadata. The metadata will provide assertions about the classification of the information as well as the security pedigree of the information. Building upon existing ATC-NY pedigree technology, MetaSAFE will provide the most balanced volume- and time-efficient representation of these security assertions.
* information listed above is at the time of submission.