National Technical Reports Library - NTRL

National Technical Reports Library

The National Technical Information Service acquires, indexes, abstracts, and archives the largest collection of U.S. government-sponsored technical reports in existence. The NTRL offers online, free and open access to these authenticated government technical reports. Technical reports and documents in its repository may be available online for free either from the issuing federal agency, the U.S. Government Publishing Office’s Federal Digital System website, or through search engines.




Details
Actions:
Download PDFDownload XML
Download

Generalized Security Framework.


DE2001784196

Publication Date 2001
Personal Author Detry, R. J.; Kleban, S. D.; Moore, P. C.
Page Count 23
Abstract The Generalized Security Framework (GSF) consists of a set of libraries, classes, and tools that provide developers with the ability to easily secure distributed applications and collaborative environments. The GSF uses and enhances the Generic Security Services API (GSSAPI) to provide authentication, authorization, data protection, delegation, and auditing. It currently works with either DCE or Kerberos as the underlying security mechanism, and it has been designed so support for PKI can be easily added in the future. DCE/Kerberos is a scaleable, mature, robust security infrastructure embraced and accredited throughout the Nuclear Weapons Complex (NWC) for a secure collaborative modeling and simulation environment. The goal of the GSF is to provide a common security foundation that can be applied and extended to create secure distributed applications, independent of the communications protocol. The GSF provides a number of extensions that embed GSF security in specific remote communication APIs, such as Java sockets and Java RMI. The extensions have been designed and implemented in such a manner as to require minimum changes to application code in order to move from an unsecure application to a secure application. The advantage of this approach is that security can be enforced reliably and consistently since very little is required of the application developer. In this paper, the authors describe the goals, design, and implementation of the Generalized Security Framework.
Keywords
  • Computer security
  • Nuclear weapons
  • Security
  • Communications
  • Design
  • Implementation
  • Simulation
Source Agency
  • Technical Information Center Oak Ridge Tennessee
Corporate Authors Sandia National Labs., Albuquerque, NM.; Department of Energy, Washington, DC.
Document Type Technical Report
NTIS Issue Number 200125
Contract Number
  • AC04-94AL85000
Generalized Security Framework.
Generalized Security Framework.
DE2001784196

  • Computer security
  • Nuclear weapons
  • Security
  • Communications
  • Design
  • Implementation
  • Simulation
  • Technical Information Center Oak Ridge Tennessee
  • AC04-94AL85000
Loading