Open Architecture Security Tools

In this research proposal, we seek to develop two key technologies that will advance the state-of-the-art in security engineering. First we wish to develop a Secure Component Integration Protocol (SCIP) that will allow a message-based, protocol-driven approach to integration and interoperability of security components. Secondly, we propose to develop a set of security component application programming interfaces (SCAPIs) that will be built on top of SCIP for specific component types or security areas. These APIs will package the services offered by individual components so they can be used in a variety of applications. Collectively, the SCIP protocol and SCAPIs will make it possible to build security tools and solutions using a component-based approach. This will enable plug and play among products such as firewalls, intrusion detection tools, routers, etc. even when different vendors supply them. Our long-term vision is to create a component market in security. To enable this, we will seek industry and vendor acceptance by forming a standards body to evolve the SCIP protocol and SCAPIs.