Success Story: U.S. Air Force Project Provides Advanced Security Protection for Distributed Systems

Home|Success Story: U.S. Air Force Project Provides Advanced Security Protection for Distributed Systems

ObjectSecurity today announced the successful completion of a U.S. Air Force Research Laboratories (AFRL) Small Business Innovation Research (SBIR) phase 1 project (AF073-029), which was primed by their partner Real-Time Innovations (RTI), The Real-Time Middleware Experts. The project, entitled “Proactive Determination of Networked Node Vulnerability,” addresses a pervasive need for improved tools to actively seek out weaknesses in network security before and during a security intrusion event. It was integrated with the U.S. Department of Defense (DoD) vision for its next-generation Global Information Grid (GIG) network infrastructure.

The objectives of the project were to automate vulnerability scanning of network nodes and Data Distribution Service (DDS) standards-based applications, analyze the impact these vulnerabilities have on the network and communicate the resulting information to other nodes and users for appropriate responses. To address these requirements, RTI integrated a number of innovative features that provided a substantial capability within a very short timeframe and with reduced cost.

RTI chose ObjectSecurity OpenPMF 2.0 because of its unique policy-driven application incident monitoring capability for DDS. OpenPMF policy enforcement and incident monitoring had previously been integrated with RTI’s implementation of DDS as part of another U.S. Navy SBIR project.

In addition to providing application policy enforcement and incident monitoring, OpenPMF uniquely enables the automatic generation of fine-grained technical security rules (authorization, incident logging / reporting etc.) for many commercially available middleware platforms such as RTI’s. OpenPMF co-installs within state-of-the-art application development suites (e.g. based on open source Eclipse) to provide a seamless look and feel both for policy generation and runtime incident monitoring.

OpenPMF logically extends the network layer intrusion detection systems (NIDS) by covering application policy based incident monitoring on the application layer. OpenPMF centrally displays incidents within its own GUI, and exports incident alerts into the DDS shared information space. It can also directly send alerts to Promia Raven.

The project outcome is ground-breaking because it combines both network intrusion prevention and policy-driven application layer intrusion prevention in an integrated solution, which firstly ties in with state-of-the-art application development platforms and tools, and which secondly supports the agility of today’s complex, interconnected, rapidly evolving IT landscapes.

 

By |July 9th, 2009|