SFINKS: Secure Focused Information, News, and Knowledge Sharing

Cross-agency collaboration and sharing of digital data is critical to respond to or prevent threats to U.S. interests. While traditional hierarchical information sharing approaches ensure that only relevant information is delivered to authorized nodes, the resulting organizational overhead severely impedes timely sharing of critical information. Although alternative approaches to secure data release have previously been proposed, they all have had severe practical limitations. We are developing SFINKS - a flexible collaboration platform that enables secure and focused information sharing across organizations. SFINKS uses two key technologies developed at ISI to support a new concept of fine-grained semantically controlled information visibility. The Hands infrastructure provides a semantic network-based data model, search and filtering capabilities, distributed systems support and fine-grained control of resource visibility. The Adaptive Trust Negotiation and Access Control (ATNAC) provides flexible access control and trust management.

[1]  F. Lehmann,et al.  Semantic Networks in Artificial Intelligence , 1992 .

[2]  Carl M. Ellison,et al.  Public-key support for group collaboration , 2003, TSEC.

[3]  John F. Sowa,et al.  Principles of semantic networks , 1991 .

[4]  Dong-Ho Kim,et al.  Dynamic authorization and intrusion response in distributed systems , 2003, Proceedings DARPA Information Survivability Conference and Exposition.

[5]  Ninghui Li,et al.  RT: a Role-based Trust-management framework , 2003, Proceedings DARPA Information Survivability Conference and Exposition.

[6]  Li Qin,et al.  Concept-level access control for the Semantic Web , 2003, XMLSEC '03.

[7]  Ninghui Li,et al.  A Framework for Role-Based Access Control in Group Communication Systems , 2004, ISCA PDCS.

[8]  Li Zhou,et al.  Adaptive trust negotiation and access control for grids , 2005, The 6th IEEE/ACM International Workshop on Grid Computing, 2005..

[9]  Peter Sewell,et al.  Cassandra: distributed access control policies with tunable expressiveness , 2004, Proceedings. Fifth IEEE International Workshop on Policies for Distributed Systems and Networks, 2004. POLICY 2004..

[10]  Marianne Winslett,et al.  Negotiating Trust on the Web , 2002, IEEE Internet Comput..

[11]  Li Zhou,et al.  Adaptive trust negotiation and access control , 2005, SACMAT '05.

[12]  Trevor Jim,et al.  SD3: a trust management system with certified evaluation , 2001, Proceedings 2001 IEEE Symposium on Security and Privacy. S&P 2001.

[13]  K.E. Seamons,et al.  Automated trust negotiation , 2000, Proceedings DARPA Information Survivability Conference and Exposition. DISCEX'00.

[14]  Marianne Winslett,et al.  PeerTrust: Automated Trust Negotiation for Peers on the Semantic Web , 2004, Secure Data Management.

[15]  Elisa Bertino,et al.  /spl Xscr/-TNL: an XML-based language for trust negotiations , 2003, Proceedings POLICY 2003. IEEE 4th International Workshop on Policies for Distributed Systems and Networks.