Misuse case driven development of secure information sharing for coalition environment
Sharing information among communities can result in more informed decisions being made faster. Information sharing involves the flow of unclassified and classified information, and consequently should be carefully engineered to avoid flow-based mistakes such as creating covert channels inadvertent...
| Main Author: | |
|---|---|
| Other Authors: | |
| Published: |
Monterey, California. Naval Postgraduate School
2012
|
| Online Access: | http://hdl.handle.net/10945/3340 |
| Summary: | Sharing information among communities can result in more informed decisions being made faster. Information sharing involves the flow of unclassified and classified information, and consequently should be carefully engineered to avoid flow-based mistakes such as creating covert channels inadvertently. This thesis uses misuse cases to identify such misuses of a sharing system. We show that an appropriate distributed role-based access control model imposed upon information brokers can prevent enumerate misuse cases. We use the North Korean nuclear proliferation as a case study to elucidate our claims. |
|---|