Proof of Concept Integration of a Single-Level Service-Oriented Architecture into a Multi-Domain Secure Environment.

摘要

Service-Oriented Architecture (SOA) software has revolutionized data interchange in the business world. A SOA software platform integrates independent, unrelated applications into a common architecture, thereby introducing data reuse, interoperability, and loose coupling between the services involved. The U.S. Navy is currently experimenting with a SOA-based research portal called TACFIRE, or Tactical Applications for Collaboration in FIRE (FORCEnet Innovation and Research Enterprise). TACFIRE provides a set of lightweight, XML-based web services derived from the Oracle Collaboration Suite (OCS) 10g SOA. Such web services operating across multiple security domains would provide additional advantages, including improved intelligence aggregation, and real-time collaboration between users in different security domains. However, current TACFIRE implementations provide no multi-domain functionality between different classification levels. To date, the incorporation of a SOA software suite into a multilevel secure environment has neither been designed nor implemented. This project has explored how a SOA software suite could be integrated into a multilevel environment. The OCS 10g has been configured to run within the Monterey Security Architecture (MYSEA) multilevel testbed. This thesis addresses DoD requirements for building enterprise-level computing architecture capable of providing a full range of information services at all major security classifications and information handling caveats.