A framework for MLS interoperability

Distributed object-oriented computing (DOC) is a new computing paradigm that promotes component-based development, location independence, scalability, software reuse, etc. Users of multilevel security (MLS) technology want to take advantage of these new technologies. However, the process of incorporating new technologies into MLS products is slower than the analogous process for non-secure commercial products because MLS products must go through rigorous evaluation/certification procedures. We propose an architectural framework that speeds up the process of introducing new technologies to MLS users. We examine the drawbacks of traditional MLS approaches and take a fresh look at the requirements of MLS users. We then introduce security-critical components that can enable MLS solutions and an MLS architectural framework that can accommodate not only legacy systems but also new technologies, including DOC, without jeopardizing system security. Our framework separates security critical components/functions from the rest of the system because these components must go through rigorous evaluation/certification processes. This approach enables the secure use of new technologies for MLS users.