Date: 10/02/2024

Vendor: University of Missouri-Columbia

Technology/Topic: Low-Overhead Zero Trust for Communication and Computation Tasks in Tactical Warfighting Edge Networks

URL: https://missouri.edu

TEM Presentation Slide Deck

TEM Presentation Video (milTube)

______________________________________________

Welcome to the Technical Exchange Meeting (TEM)!

Tactical Warfighting Edge Network (TEN) environments are critical to deploy applications in the Internet of Battlefield Things (IoBT). With TENs involving dynamic interactions of edge devices and users, cyber attacks aim to disrupt computation and communication (C&C) tasks in a critical mission. Therefore, implementing a suitable Zero Trust (ZT) security architecture is necessary to enforce e.g., the law of least privilege, microsegmentation, and continuous authentication/access verification to limit attack impacts. However, there is a need to transform ZT security principles that are typically developed for unconstrained data center environments with reliable networking and abundant computing power and are not suitable in a TEN setting that is characterized as Denied, Disrupted, Intermittent, and Limited (DDIL). In this talk, we present a novel ZT architecture viz., Arculus with a risk-based ZT scale approach that tailors security measures to scenario-associated risk levels, while having low resource overheads. Specifically, we devise a Bayesian Network model to evaluate communication request risk based on metrics indicating possible attacks. In addition, we formulate a ZT metric based on the evaluated risk, environmental constraints, and entity attributes resulting in an assigned grade reflecting these factors. We tie this ZT architecture to Task-Based Access Control (TBAC) that secures C&C tasks in TENs relating to a collaborative drone swarm (CDS) use case by dynamically assigning and revoking privileges in a just-in-time manner.

The presenters will demonstrate how the Arculus-TBAC can handle DDIL constraints (e.g., limited battery, physical hijacking and network partition scenarios) via a sliding-scale ZT approach to ensure mission success in a situation-aware manner. In addition, they will describe the implementation of our Arculus-TBAC approach using a realistic CDS testbed featuring a ‘stealthy reconnaissance and resupply mission’ in a TEN setting, and demonstrate the efficiency (i.e., without excessive privileges) and efficacy (i.e., ability to handle DDIL constraints) of our Arculus approach to secure TEN-based applications. 

Reading Link: https://zadar.us/disa/tem/papers/TBAC-Arculus-ZT-TWE-MILCOM24.pdf

______________________________________________

To join the DISA TEM mailing list, please contact: disa.tem@mail.mil

______________________________________________

Disclaimer:

— TEMs do not serve as a marketing venue or request for proposal actions.

— TEMs shall not be interpreted as a commitment by the Government to issue a solicitation or ultimately award a contract.

— TEMs do not serve as an endorsement of any presented technologies or capabilities

— Presentations will not be considered as proposals nor will any awards be made as a result of a TEM session.

— TEMs are public open forums – no proprietary or sensitive information should be presented during TEM sessions. Only publicly-facing content is permissible in DISA TEM sessions.

The owner of this website has made a commitment to accessibility and inclusion, please report any problems that you encounter using the contact form on this website. This site uses the WP ADA Compliance Check plugin to enhance accessibility.