Title :
Security approach for rapid prototyping in multilevel secure systems
Author :
Ashby, V.A. ; Gregg, Thomas ; Lee, Annabelle
Author_Institution :
MITRE Corp., McLean, VA, USA
Abstract :
Use of rapid prototyping to develop Multilevel Secure (MLS) systems requires that security be included in the rapid prototyping process. The literature shows some examples of rapid prototyping applied to secure components. However, little guidance is available for using a rapid prototype to develop an MLS system, consisting of multiple components, that can be accredited in the DOD environment. A methodology is proposed for including security in the rapid prototyping process. In this methodology, assurance that security has been correctly incorporated is provided by four foundation documents: the security concept of operations, the security policy, the security architecture, and the certification and accreditation plan. This methodology increases the probability of producing a rapid prototype without serious security shortfalls
Keywords :
security of data; software engineering; MLS; accreditation; certification; methodology; multilevel secure systems; rapid prototyping; security; security architecture; security concept; security policy; Application software; Certification; Data security; Design engineering; Multilevel systems; Prototypes; Software prototyping; System testing; Systems engineering and theory; US Department of Defense;
Conference_Titel :
Computer Security Applications Conference, 1989., Fifth Annual
Conference_Location :
Tucson, AZ
Print_ISBN :
0-8186-2006-4
DOI :
10.1109/CSAC.1989.81073
