Security Challenges with Cross-Domain Information Exchange: Integrity and Guessing Attacks
Original version
Engelstad, P. E. (2015, October). Security challenges with cross-domain information exchange: Integrity and guessing attacks. In Military Communications Conference, MILCOM 2015-2015 IEEE (pp. 1596-1605). IEEE. http://dx.doi.org/10.1109/MILCOM.2015.7357673Abstract
Current research on cross-domain information ex-change is advocating to move away from the inflexible Bell-LaPadula (BLP) model, into a more complex policy-driven securitymodel where information objects and end-users are characterizedin terms of complex meta-data. It will lead to higher flexibilitybut will also rely not only on guards, but also on automaticor semi-automatic tools for forming and processing the meta-data. In this paper, we point out some potential pitfalls withthis approach. The paper focuses specifically on the relaxation ofthe BLP security model for confidentiality and discusses securityconcerns that arise from the use of such tools in combinationwith guards.