ObjectSecurity, the leader for application security policy automation, and Promia, Inc., a leading provider of secure technologies to government and industry, today announced that they have completed a joint project milestone for US Navy on a Promia Raven™ engineering and support contract.
The purpose of the planned spiral development project is to provide an Information Assurance (IA) platform for the development and operation of secure and reliable systems for government, commercial and military organizations, and to specifically support the cyber defense of Navy’s SOA and Cloud applications. These systems also provide extended cyber situational awareness with improved battle damage assessment. The project focuses on what really matters in cyber security: a high performance trust architecture with development tools that enforce the paradigm; lifecycle education and training; and proactive, dynamic Information Assurance (IA). Without an effective means to efficiently manage information assurance for dynamically changing, interconnected SOA & Cloud applications, and particularly a facility to expedite (1) agile change, (2) rapid certification and accreditation (C&A), (3) flexible policy management, the intended benefits of Navy SOA & Cloud adoption are lost.
Future phases call for the technology to be jointly developed using enhanced versions of existing program tools and installed equipment to provide extended service at minimal cost and impact to existing systems (incl. Promia Raven / Blocker / Notebook, ObjectSecurity OpenPMF, NuParadigm, HP Labs ZBAC). The project milestone just completed included designing a next-generation full-stack, high-assurance security intrusion detection and enforcement architecture and XML information assurance features: (1) “Constraining” high assurance SOA & Cloud application development environment; (2) Run Time hardened, trusted runtime platform with full-stack protection hosts SOA/Cloud applications and protection; (3) Management system with global, full-stack policy management & automation, reporting, accreditation automation & decision support, configuration, versioning, scanning, testing.
Dr. Ulrich Lang, CEO and co-founder of ObjectSecurity commented: “As part of this project, we have managed to scope a viable architecture for high-assurance SOA and Cloud applications. To achieve high application assurance for SOA and Cloud, we use a highly innovative combination of automated security and compliance policy management and enforcement capabilities, network intrusion detection / monitoring / reporting capabilities, a hardened hardware appliance”. John Mullen, CEO and co-founder of Promia added: ”This project moves our product strategy forward together with ObjectSecurity, NuParadigm, and HP Labs technology (ZBAC). The partnership combines top experts and technologies from around the world with a seasoned team who know Navy networks, understand Navy personnel and have worked successfully for years in the field to support Navy objectives.”