Friday, June 10, 2005

One Way Gates, Guard Solutions, MLS, One Way Transfer

Here is an off shoot of the Cross Domain Solution (SABI) post. Typically, organization will want what is known as a One Way Gate or Guard or MLS. The definintions between these
tend to blur as you are looking for a technical solution for your cross domain issues.

Here is a definition of Each:

Guard:
According to the NSTISSI 4009, a guard is more of a process. Guards Process limiting the exchange of information between systems.

More on guards:
http://www.gotroot.com/Trusted+Guards

One Way Gate:
Can be considered a guard solution. It is a device or process that supports and gives assurance of a one way transfer of data.

Multi-Level Security or (MLS): MLS is the concept of processing information with different classifications and categories that simultaneously permits access by users with different security clearances and denies access to users who lack authorization. -- National Information Assurance Glossary

The concepts between guards and MLS are similar. The term guard is very general and can include One Way Gates and MLS, but Multi-Level Security is specifically for different classifications.

And example of a one way gate would be a OWLs data diode and NetSecs One Way Transfer [ see RSS below for links].

You may have a hell of a time finding a One Way Gate, Guard Solution, One Way Transfers solution for your Cross Domain. If you have the funds you may need NSA's ISSEs but is best to get your own CDS team involved. This team may be a few levels higher than your present organization if your working for the government.

Useful Guards/MLS/One Way Transfer Links [ You'll need an RSS Aggregator.. My Yahoo! and Newsgator are free ]:

http://del.icio.us/rss/elamb/Guards

Add instantly with these buttons:

Subscribe in NewsGator Online



0 Comments:

Post a Comment

<< Home