Towards Fit for Purpose Security in Military Systems
ABSTRACT
In security critical communities such as the military, system design is underpinned by the separation and sharing of resources based upon protective markings, user clearance and a ‘need to know’ policy. However, this approach can impede the ability to respond to changing resource and information sharing requirements. To address the problem, this paper proposes ‘fit for purpose’ security which seeks to balance flexibility against high assurance through the Non-Persistent Capability Concept (NPC2). The NPC2 is applied in the design, development and implementation of adaptable security. This paper focuses on the NPC2 architecture and presents some preliminary findings from a small-scale prototype based on the proposed framework. The work has application in markets other than the military and should be of interest to system and security architects and decision makers alike.
AUTHORS
General Dynamics UK, Newbridge, Communications Research Centre, Cardiff University, Cardiff
UK
Linda Finch is employed by General Dynamics United Kingdom Limited as a Security Research Engineer. She is currently pursuing her Ph.D, sponsored by the organisation, and is affiliated to Cardiff University. Her research interests lie in engineering ‘Fit for Purpose Security’ through the synthesis of security policy, control mechanism and architecture, where the security profile of a system may be dynamically modified in accordance with changes detected in the external environment.
General Dynamics UK, Ltd.
Richard Vaughan is a senior network research engineer at General Dynamics UK Ltd where is engaged in projects related to tactical networking and routing. He also maintains a keen research interest in security, QoS, and embedded systems.
Published In
Journal of Information Warfare
The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.
Quick Links
Archive
