NATO automated information system co-operative zone technologies

• Autorzy: Diepstraten M. , Parker R.
• Języki publikacji: EN

Abstrakty

EN

The core components of NATO's automated information systems (AIS) include directory services (DS), e-mail, web services, and military message handling systems (MMHS) to exchange information with similar capabilities in NATO's member nation systems or systems that are under control of multi-national coalitions. NATO has developed the concept of information exchange gateways (IEGs) to meet this requirement. This paper introduces the concept of combining symmetric co-operative zones (CZs) to form these information exchange gateways. A generic framework for the co-operative zone network and security architecture is introduced in support of co-operative zone development. It is shown how a co-operative zone network interface can be integrated with the NATO general-purpose segment communications system (NGCS). Development of the NATO co-operative zones is based on an evolutionary approach. A baseline co-operative zone configuration, supporting directory services, e-mail and web services, has been tested and validated on the allied systems interoperability testbed (ASIT). This paper reports the results of the test and validation program. The paper concludes with an overview of planned evolutionary steps for co-operative zone development. Subjects covered in this overview are extension of information services, enhancement of security architecture, and operational deployment (i.e., scalability and manageability).

Słowa kluczowe

EN

information exchange; firewall technologies; directory services; messaging services; web services; INFOSEC

• Wydawca: Instytut Łączności - Państwowy Instytut Badawczy
• Czasopismo: Journal of Telecommunications and Information Technology
• Rocznik: 2003
• Tom: nr 4
• Strony: 37--46
• Opis fizyczny: Bibliogr. 18 poz., tab., rys.

Twórcy

autor

Diepstraten M.

• Communications and Information Systems Division, NATO Consultation, Command and Control Agency, The Hague, The Netherlands

autor

Parker R.

• Communications and Information Systems Division NATO Consultation, Command and Control Agency The Hague, The Netherlands

Bibliografia

• [1] Capability Package 5A0050/9B0020 “Provide Bi-SC Static AIS Core Capability”.
• [2] W. Stallings, “Network Security Essentials, Applications and Standards”. Upper Saddle River, NJ: Prentice Hall, 1999.
• [3] Paragraph 23 of the “Primary Directive on Security”, jointly issued as AC/35-D/2004 under the NATO Security Committee and AC/322-D/0052 by the NATO C3 Board, 17 June 2002.
• [4] NATO Information Management Policy (ref. a Annex II to PO(99) 189).
• [5] NATO GPS Communications System Programme. Vol. II: Technical System Plan, ed. 3, Jan. 1999.
• [6] NATO General Purpose Segment (GPS) Communications System (NGCS), Security Architecture, Version 1.31, 3 May 2001.
• [7] Microsoft Exchange 5.5 (SP 4). Microsoft corporation, http://www.microsoft.com/exchange/default.asp
• [8] NC3B ISSC DS WG, “NATO directory interoperability model”, June 2001, http://nra.nacosa.nato.int/ds/zdocs/dsahwg45.zip
• [9] Combined Communications Electronics Board (CCEB) Allied Message Handling (AMH) International Subject Matter Experts (ISME), “Allied Communication Publication (ACP) 133 – Common Directory Services and Procedures”, March 2000.
• [10] Data connection limited. DS directory version 2.4.01., http://www.dataconnection.com/dirs/diridx.htm
• [11] Microsoft metadirectory services, Microsoft corporation, http://www.microsoft.com/windows2000/technologies/directory/MMS/default.asp
• [12] Microsoft Internet security and acceleration server 2000 SP1, Microsoft corporation, http://www.microsoft.com/isaserver/
• [13] Common criteria website, http://www.commoncriteria.org/cc/cc.html
• [14] Firewall 1, checkpoint, http://www.checkpoint.com/products/protect/firewall-1.html
• [15] Windows NT 4.0 security set-up for NATO classified systems (NR to NS), Version 4 (includes SP6), INFOSEC Command NACOSA, July 2000.
• [16] Realsecure managed intrusion protection service (ISS), http://www.iss.net/products services/managed services/service intrusion.php
• [17] Standard NATO Agreement (STANAG) 4406, “Military Messager handling service edition 1”, Dec. 1998.
• [18] AC/322 (NPMA-PAC) WP-2, “NATO PKI CONOPS, v. 1.3”, 5 July 2001.