An applied model for secure information release between federated military and non-military networks

Classical information flow models focus on maintaining the confidentiality or the integrity of the information objects. The federation of military systems, among themselves and with non-military information systems brings secure information release as a new requirement to consider when implementing the model to use. This paper presents a model for information confidentiality and release based on a combination of secure state transactions and the inverse Role-Based Access Control (R-BAC) paradigm. The hybrid model is then tailored to a multi-domain implementation able to securely release information products among a wide variety of security domains. The outcome is the emulation of an accredited multi-level security domain system, which enables a single information domain across all mission partners, including non-military ones. The implementation is then verified and validated during a military operational exercise, and is considered ready for further industrialization.