Communities of Trust in Tactical Coalition Networks

The need for information exchange between security domains has traditionally been approached through the use of guards and security labels. Although these technologies are thoroughly researched and exist in mature implementations, they offer simplistic approaches with several shortcomings. In this paper, we build on the "guard" model and present a framework for trusted information exchange which accommodates a wider range of use cases, network topologies, and authorization models. Our approach can be used on a range of practical levels, down to dismounted soldiers and sensor networks. Central to this framework are the concepts of Communities of Trust and Policy Enforcement Points.

[1]  Andrew S. Tanenbaum,et al.  Distributed systems: Principles and Paradigms , 2001 .

[2]  M. Hauge,et al.  Multi-Topology routing for QoS support in the CoNSIS convoy MANET , 2012, 2012 Military Communications and Information Systems Conference (MCC).

[3]  Robert W. Shirey,et al.  Internet Security Glossary, Version 2 , 2007, RFC.

[4]  Anders Fongen,et al.  Federated Identity Management in a Tactical Multi-Domain Network , 2011 .

[5]  K. Wrona,et al.  Development of high assurance guards for NATO , 2012, 2012 Military Communications and Information Systems Conference (MCC).

[6]  Anders Fongen Optimization of a Public Key Infrastructure , 2011, 2011 - MILCOM 2011 Military Communications Conference.