High-level design process for NATO high assurance ABAC guard

In the paper we describe the development process for the High Assurance ABAC Guard (HAAG), which is one of the important security enablers the NATO future information sharing architectures, including Information Exchange Gateway Scenario D and Future Mission Networks. The HAAG implements Attribute-based Access Control (ABAC) for information requests, and enforces Content-based Protection and Release policies. Our system design process incorporates a structured way of collecting requirements and takes into account a security risk assessment of the system. The process is based on industry standards and best practices. It is accompanied by a definition of a Common Criteria Protection Profile, which captures security requirements for the HAAG. All phases of the system design process are perfor med using an integrated modelling environment based on Eclipse and open-source tools. The environment allows us to build and maintain a relatively complex model and, to a large extent, automatically generate the required design documentation.