Skip to Main Content
 

Global Search Box

 
 
 
 

Files

File List


41809.pdf (2.23 MB)

ETD Abstract Container

Abstract Header

Design and analysis of a trustworthy, Cross Domain Solution architecture

Daughety, Nathan
http://orcid.org/0000-0002-7770-9590
http://rave.ohiolink.edu/etdc/view?acc_num=ucin1659534305215352

Abstract Details

2022, PhD, University of Cincinnati, Engineering and Applied Science: Computer Science and Engineering.
With the paradigm shift to cloud-based operations, reliable and secure access to and transfer of data between differing security domains has never been more essential. A Cross Domain Solution (CDS) is a guarded interface which serves to execute the secure access and/or transfer of data between isolated and/or differing security domains defined by an administrative security policy. Cross domain security requires trustworthiness at the confluence of the hardware and software components which implement a security policy. Security components must be relied upon to defend against widely encompassing threats -- consider insider threats and nation state threat actors which can be both onsite and offsite threat actors -- to information assurance. Current implementations of CDS systems use sub-optimal Trusted Computing Bases (TCB) without any formal verification proofs, confirming the gap between blind trust and trustworthiness. Moreover, most CDSs are exclusively operated by Department of Defense agencies and are not readily available to the commercial sectors, nor are they available for independent security verification. Still, more CDSs are only usable in physically isolated environments such as Sensitive Compartmented Information Facilities and are inconsistent with the paradigm shift to cloud environments. Our purpose is to address the question of how trustworthiness can be implemented in a remotely deployable CDS that also supports availability and accessibility to all sectors. In this paper, we present a novel CDS system architecture which is the first to use a formally verified TCB. Additionally, our CDS model is the first of its kind to utilize a computation-isolation approach which allows our CDS to be remotely deployable for use in cloud-based solutions.
John Franco, Ph.D. (Committee Member)
John Emmert, Ph.D. (Committee Member)
Marcus Dwan Pendleton, Ph.D. (Committee Member)
Nan Niu, Ph.D. (Committee Member)
Rashmi Jha, Ph.D. (Committee Member)
237 p.
Computer Science
Cross Domain Solution; Trustworthiness; Trusted Computing Base; Data Confidentiality; Formal Verification; Security Analysis

Recommended Citations

Citations

  • Daughety, N. (2022). Design and analysis of a trustworthy, Cross Domain Solution architecture [Doctoral dissertation, University of Cincinnati]. OhioLINK Electronic Theses and Dissertations Center. http://rave.ohiolink.edu/etdc/view?acc_num=ucin1659534305215352

    APA Style (7th edition)

  • Daughety, Nathan. Design and analysis of a trustworthy, Cross Domain Solution architecture. 2022. University of Cincinnati, Doctoral dissertation. OhioLINK Electronic Theses and Dissertations Center, http://rave.ohiolink.edu/etdc/view?acc_num=ucin1659534305215352.

    MLA Style (8th edition)

  • Daughety, Nathan. "Design and analysis of a trustworthy, Cross Domain Solution architecture." Doctoral dissertation, University of Cincinnati, 2022. http://rave.ohiolink.edu/etdc/view?acc_num=ucin1659534305215352

    Chicago Manual of Style (17th edition)

ucin1659534305215352
462
© 2022, some rights reserved.Creative Commons License Design and analysis of a trustworthy, Cross Domain Solution architecture by Nathan Daughety is licensed under a Creative Commons Attribution-NonCommercial-NoDerivs 3.0 Unported License. Based on a work at etd.ohiolink.edu.
This open access ETD is published by University of Cincinnati and OhioLINK.