Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Enforcing messaging security policies

: Likavec, J.; Wolthusen, S.


Cole, J.; Wolthusen, S. ; IEEE Computer Society, Task Force on Information Assurance; Association for Computing Machinery -ACM-, Special Interest Group on Security, Audit and Control -SIGSAC-:
Third IEEE International Workshop on Information Assurance 2005. Proceedings : IWIA 2005
Los Alamitos, Calif.: IEEE Computer Society, 2005
ISBN: 0-7695-2317-X
International Workshop on Information Assurance (IWIA) <3, 2005, Maryland>
Conference Paper
Fraunhofer IGD ()
security; security enforcement; cryptographic control

A system for enforcing messaging security policies for both store and forward and streaming messaging protocols on COTS operating system platforms is described. Messaging protocols are subjected to interception, transformation, and filtering based on dynamically configurable security policies. Transformations include the automatic policy-based application of cryptographic confidentiality, integrity, and authenticity mechanisms and filtering primarily based on Bayesian analysis. The system provides a low cost, fine granularity compartmentalization mechanism for secure environments as well as for sensitive but unclassi- fied environments using COTS operating systems and application programs without affecting user or application behavior in which the mediation of access to key material and messaging provides protection against malware and insider attacks.