Installing and configuring a declassification system – A solution combining Trusted Solaris and FOSS

PDF

Authors
  1. Carbone, R.
  2. Vincent, S.
Corporate Authors
Defence R&D Canada - Valcartier, Valcartier QUE (CAN)
Abstract
In spring 2008, certain project requirements necessitated the use and implementation of a system that could be used to declassify classified data for use on unclassified systems and networks. Some of the researchers at Defence Research Development Canada – Valcartier wished to be able to share declassified versions of their work with others. However, data residing on classified systems and networks cannot easily be transmitted to unclassified systems. Although it can be done, a variety of safeguards, data containment and compartmentalization and various procedures must be followed for doing so. The challenge is not so much the procedures and safeguards, but rather using an accredited system for containing and compartmentalizing the data to be declassified. Since no DND policy is clear on which systems to use or the process by which data can be declassified, the primary author decided that by combining commercially available software with specific FOSS components, a secure system could be built that would satisfy even the most stringent security requirements. The solution chosen was a combination of Trusted Solaris and various commonly used FOSS packages. This memorandum therefore describes how such a system is built and configured.

Il y a un résumé en français ici.

Report Number
DRDC-VALCARTIER-TM-2009-086 — Technical Memorandum
Date of publication
01 Sep 2009
Number of Pages
68
DSTKIM No
CA032905
CANDIS No
532110
Format(s):
Electronic Document(PDF)

Permanent link

Document 1 of 1

Date modified: