Title :
Information Assurance Using a Defense In-Depth Strategy
Author :
Dauch, Kevin ; Hovak, Adam ; Nestler, Roger
Abstract :
Information assurance is an essential part of data dissemination and requires availability, integrity, authentication, confidentiality and non-repudiation of information systems. A defense in depth security architecture will protect data in motion, data at rest and data at the edge. This paper discusses those various states of data, their vulnerabilities and a set of solutions that have been developed to aid in the overall protection of assets. The solution provided involves leveraging several technologies including: LevelLock, PuriFile and SINBAD. The combination of these products create a framework that can both proactively and reactively ensure data assets are created, modified and transferred in a consistent manner, based on policy. An organization seeking to fully protect its information resources should seek to implement a multi-strategy defense congruous with the solution provided here.
Keywords :
data integrity; security of data; LevelLock; PuriFile; SINBAD; data assets; data dissemination; defense in-depth strategy; depth security architecture; information assurance; Computer security; Data engineering; Data security; Information security; Intellectual property; Mobile communication; Mobile computing; Protection; Protocols; Smart phones; Information Assurance; Network-Based Boundary Control;
Conference_Titel :
Conference For Homeland Security, 2009. CATCH '09. Cybersecurity Applications & Technology
Conference_Location :
Washington, DC
Print_ISBN :
978-0-7695-3568-5
DOI :
10.1109/CATCH.2009.25
