skip to main content
10.1145/2462410.2462427acmconferencesArticle/Chapter ViewAbstractPublication PagessacmatConference Proceedingsconference-collections
demonstration

Content-based information protection and release in NATO operations

Published: 12 June 2013 Publication History

Abstract

The successful operation of NATO missions requires effective and secure sharing of information among coalition partners and external organizations, while avoiding the disclosure of sensitive information to untrusted users. To resolve the conflict between confidentiality and availability, NATO is developing a new information sharing infrastructure, called Content-based Protection and Release. We describe the architecture of access control in NATO operations, which is designed to be easily built on top of available (service-oriented) infrastructures for identity and access control management. We then present a use case scenario drawn from the NATO Passive Missile Defence system for simulating the consequences of intercepting missile attacks. In the system demonstration, we show how maps annotated with the findings of the system are filtered by the access control module to produce appropriate views for users with different clearances and terminals under given release and protection policies.

References

[1]
E. Damiani, S. De Capitani di Vimercati, S. Paraboschi, and P. Samarati. A fine-grained access control system for XML documents. ACM Trans. Inf. Syst. Secur., 5(2):169--202, May 2002.
[2]
S. De Capitani di Vimercati, S. Foresti, S. Jajodia, and P. Samarati. Access control policies and languages in open environments. In Secure Data Management in Decentralized Systems, 2007.
[3]
X. Jin, R. Krishnan, and R. Sandhu. A Unified Attribute-Based Access Control Model Covering DAC, MAC and RBAC. In DBSec, 2012.
[4]
S. Oudkerk. NATO Profile for the 'Binding of Metadata to Data Objects' - version 1.0. Technical Note 1455, NC3A, The Hague, Netherlands, 2011.
[5]
K. Wrona and G. Hallingstad. Development of High Assurance Guards for NATO. In Military Comm. and Info. Sys. Conf. (MCC), 2012.

Cited By

View all
  • (2024)DCS Deployment in SDN-Based SystemsData-Centric Security in Software Defined Networks (SDN)10.1007/978-3-031-55517-6_7(89-105)Online publication date: 12-Apr-2024
  • (2024)Data-Centric SecurityData-Centric Security in Software Defined Networks (SDN)10.1007/978-3-031-55517-6_2(5-36)Online publication date: 12-Apr-2024
  • (2023)Towards Data-Centric Security for NATO OperationsDigital Transformation, Cyber Security and Resilience10.1007/978-3-031-44440-1_15(75-92)Online publication date: 1-Nov-2023
  • Show More Cited By

Index Terms

  1. Content-based information protection and release in NATO operations

      Recommendations

      Comments

      Information & Contributors

      Information

      Published In

      cover image ACM Conferences
      SACMAT '13: Proceedings of the 18th ACM symposium on Access control models and technologies
      June 2013
      278 pages
      ISBN:9781450319508
      DOI:10.1145/2462410
      Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

      Sponsors

      Publisher

      Association for Computing Machinery

      New York, NY, United States

      Publication History

      Published: 12 June 2013

      Permissions

      Request permissions for this article.

      Check for updates

      Author Tags

      1. NATO information sharing infrastructure
      2. XACML
      3. attribute-based access control

      Qualifiers

      • Demonstration

      Conference

      SACMAT '13
      Sponsor:

      Contributors

      Other Metrics

      Bibliometrics & Citations

      Bibliometrics

      Article Metrics

      • Downloads (Last 12 months)4
      • Downloads (Last 6 weeks)0
      Reflects downloads up to 20 Feb 2025

      Other Metrics

      Citations

      Cited By

      View all
      • (2024)DCS Deployment in SDN-Based SystemsData-Centric Security in Software Defined Networks (SDN)10.1007/978-3-031-55517-6_7(89-105)Online publication date: 12-Apr-2024
      • (2024)Data-Centric SecurityData-Centric Security in Software Defined Networks (SDN)10.1007/978-3-031-55517-6_2(5-36)Online publication date: 12-Apr-2024
      • (2023)Towards Data-Centric Security for NATO OperationsDigital Transformation, Cyber Security and Resilience10.1007/978-3-031-44440-1_15(75-92)Online publication date: 1-Nov-2023
      • (2022)End-to-End Protection of IoT Communications Through Cryptographic Enforcement of Access Control PoliciesData and Applications Security and Privacy XXXVI10.1007/978-3-031-10684-2_14(236-255)Online publication date: 13-Jul-2022
      • (2018)Attribute Based Encryption for Information Sharing on Tactical Mobile NetworksMILCOM 2018 - 2018 IEEE Military Communications Conference (MILCOM)10.1109/MILCOM.2018.8599802(1-9)Online publication date: Oct-2018
      • (2017)Verification techniques for policy based systems2017 IEEE SmartWorld, Ubiquitous Intelligence & Computing, Advanced & Trusted Computed, Scalable Computing & Communications, Cloud & Big Data Computing, Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI)10.1109/UIC-ATC.2017.8397415(1-6)Online publication date: Aug-2017
      • (2016)SMT-based Enforcement and Analysis of NATO Content-based Protection and Release PoliciesProceedings of the 2016 ACM International Workshop on Attribute Based Access Control10.1145/2875491.2875493(35-46)Online publication date: 11-Mar-2016
      • (2016)Tactical CAC profile for NATO OLP? Performance estimations for NATO OLP cryptographic evolution stageMILCOM 2016 - 2016 IEEE Military Communications Conference10.1109/MILCOM.2016.7795382(533-538)Online publication date: Nov-2016
      • (2015)A SMT-based Tool for the Analysis and Enforcement of NATO Content-based Protection and Release PoliciesProceedings of the 20th ACM Symposium on Access Control Models and Technologies10.1145/2752952.2752954(151-155)Online publication date: 1-Jun-2015
      • (2015)Compiling NATO authorization policies for enforcement in the cloud and SDNs2015 IEEE Conference on Communications and Network Security (CNS)10.1109/CNS.2015.7346913(741-742)Online publication date: Sep-2015
      • Show More Cited By

      View Options

      Login options

      View options

      PDF

      View or Download as a PDF file.

      PDF

      eReader

      View online with eReader.

      eReader

      Figures

      Tables

      Media

      Share

      Share

      Share this Publication link

      Share on social media