Partitioning Communication System
- Partitioning Communication System
Partitioning Communication System is an high-assurance computer security architecture based on an information flow separation policy. The PCS extends the four foundational security policies of a MILS (Multiple Independent Levels of Security) separation kernel to the network:
* End-to-end Information Flow
* End-to-end Data Isolation
* End-to-end Periods Processing
* End-to-end Damage Limitation
The PCS leverages the separation kernel to enable application layer entities to enforce, manage, and control application layer security policies in such a manner that the application layer security policies are:
* Non-bypassable,
* Evaluatable,
* Always-invoked, and
* Tamper-proof.
The result is a communications architecture that allows the separation kernel and the PCS to share responsibility of security with the application.
The PCS was invented by OIS. OIS collaborated extensively on the requirements for the PCS with:
* National Security Agency
* Air Force Research Laboratory
* University of Idaho
* Lockheed Martin
* Boeing
* Rockwell Collins
The following companies are producing MILS separation kernels:
* Green Hills Software
* LynuxWorks
* Wind River Systems
References
* cite journal
last = Vanfleet | first = W. Mark
last2 = Luke | first2 = Jahn A.
last3 = Beckwith | first3 = R. William
last4 = Taylor | first4 = Carol
last5 = Calloni | first5 = Ben
last6 = Unchenick | first6 = Gordon
title = MILS - Architecture for High-Assurance Embedded Computing
journal = Crosstalk
issue = Aug 2005
date = 2005-08
url = http://www.stsc.hill.af.mil/crosstalk/2005/08/0508Vanfleet_etal.html
* [http://www.omg.org/news/meetings/workshops/SBC_2004_Manual/06-3_Buesing_etal_revised.pdf Presentation at OMG Software Based Communications Workshop]
* cite web
last = Beckwith
first = R. William
authorlink = Bill Beckwith
title = MILS Partitioning Communication System
publisher = Objective Interface Systems, Inc.
url = http://www.ois.com/pcs/
Wikimedia Foundation.
2010.
Look at other dictionaries:
System 7 — Infobox OS name = System 7 caption = Screenshot of System 7.5.3 developer = Apple Computer family = Mac OS Classic source model = Closed source latest release version = 7.6.1 latest release date = April 7 1997 kernel type = Monolithic for 68k,… … Wikipedia
Distributed operating system — A distributed operating system is the logical aggregation of operating system software over a collection of independent, networked, communicating, and spatially disseminated computational nodes.[1] Individual system nodes each hold a discrete… … Wikipedia
Event partitioning — The goal of event partitioning is to be an easy to apply systems analysis technique for turning large systems into a collection of smaller, simpler, minimally connected, easier to understand ‘mini systems’ / use cases. The approach is explained… … Wikipedia
LOCUS (operating system) — Infobox OS name = LOCUS developer = UCLA family = Unix source model = Closed source working state = Historic kernel type = Monolithic kernel license = Proprietary LOCUS was a distributed operating system developed at UCLA during the 1980s. It was … Wikipedia
IBM System i — The IBM System i is IBM s previous generation of systems designed for IBM i users, and was subsequently replaced by the IBM Power Systems in April 2008. In 2006, the platform was rebranded to System i as part of IBM s Systems branding initiative … Wikipedia
Multiple Independent Levels of Security — Multiple Independent Levels of Security/Safety (MILS) is a high assurance security architecture based on the concepts of separation[1] and controlled information flow; implemented by separation mechanisms that support both untrusted and… … Wikipedia
PCS — may refer to: Contents 1 Medicine 2 Military 3 Science and technology 4 Other fields Medicine Post … Wikipedia
Objective Interface Systems — Objective Interface Systems, Inc. Type Private Industry Computer software Computer hardware Publishing Research and development … Wikipedia
Life Sciences — ▪ 2009 Introduction Zoology In 2008 several zoological studies provided new insights into how species life history traits (such as the timing of reproduction or the length of life of adult individuals) are derived in part as responses to… … Universalium
Automated Tissue Image Systems — (ATIS) are computer controlled automatic test equipment (ATE) systems classified as medical device and used as pathology laboratory tools (tissue based cancer diagnostics) to characterize a stained tissue sample embedded on a bar coded glass… … Wikipedia
