You are here

Guaranteed Data Integrity in the GIG-NCES Environment

Award Information
Agency: Department of Defense
Branch: Navy
Contract: N00014-06-M-0082
Agency Tracking Number: O053-NC3-4050
Amount: $99,995.00
Phase: Phase I
Program: SBIR
Solicitation Topic Code: OSD05-NC3
Solicitation Number: 2005.3
Timeline
Solicitation Year: 2005
Award Year: 2006
Award Start Date (Proposal Award Date): 2006-03-28
Award End Date (Contract End Date): 2007-03-28
Small Business Information
8616 Phoenix Drive
Manassas, VA 20110
United States
DUNS: N/A
HUBZone Owned: No
Woman Owned: No
Socially and Economically Disadvantaged: No
Principal Investigator
 Dave McNichol
 Executive Systems Engineer
 (703) 365-7379
 dave.mcnichol@assett.net
Business Contact
 George Dasher
Title: President
Phone: (703) 365-8510
Email: george.dasher@assett.net
Research Institution
N/A
Abstract

Our approach is to merge two specific areas of our team's expertise to address the SBIR topic of guaranteed data integrity. The first exploits our knowledge and expertise gained in our IA work on DOD systems including the Defense Message System. The second utilizes and extends the foundational work accomplished by the Federated Trust Research Group (FTRG) in the Department of Computer Science at the University of Virginia. The FTRG is currently in year four of an on-going project to determine whether a web services approach is an effective technique for implementing the privacy and security requirements attendant to medical data in accordance with federal HIPAA regulations for multi-domain, multi-enterprise, medical networks supporting e-healthcare applications. To answer that question, UVa's FTRG has developed a security architecture that uses a standards-based approach, SAML, for authenticating users (humans and software), and XACML for resolving authorization issues. This IA framework is breaking new ground to develop effective techniques to achieve federation (trust exchange across trust domain boundaries such as different organizations). A prototype that implements these core functions of authentication, authorization, and federation has been developed. This research will extend these techniques to support guaranteeing data integrity in the GIG/NCO environment.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government