The Generalized Security Framework Metadata

Metadata describes a digital item, providing (if known) such information as creator, publisher, contents, size, relationship to other resources, and more. Metadata may also contain "preservation" components that help us to maintain the integrity of digital files over time.

Title

  • Main Title The Generalized Security Framework

Creator

  • Author: Detry, Richard J.
    Creator Type: Personal
  • Author: Kleban, Stephen D.
    Creator Type: Personal
  • Author: Moore, Patrick C.
    Creator Type: Personal

Contributor

  • Sponsor: United States. Department of Energy.
    Contributor Type: Organization
    Contributor Info: US Department of Energy (United States)

Publisher

  • Name: Sandia National Laboratories
    Place of Publication: Albuquerque, New Mexico
    Additional Info: Sandia National Labs., Albuquerque, NM, and Livermore, CA (United States)

Date

  • Creation: 2001-06-01

Language

  • English

Description

  • Content Description: The Generalized Security Framework (GSF) consists of a set of libraries, classes, and tools that provide developers with the ability to easily secure distributed applications and collaborative environments. The GSF uses and enhances the Generic Security Services API (GSSAPI) to provide authentication, authorization, data protection, delegation, and auditing. It currently works with either DCE or Kerberos as the underlying security mechanism, and it has been designed so support for PKI can be easily added in the future. DCE/Kerberos is a scaleable, mature, robust security infrastructure embraced and accredited throughout the Nuclear Weapons Complex (NWC) for a secure collaborative modeling and simulation environment. The goal of the GSF is to provide a common security foundation that can be applied and extended to create secure distributed applications, independent of the communications protocol. The GSF provides a number of extensions that embed GSF security in specific remote communication APIs, such as Java sockets and Java RMI. The extensions have been designed and implemented in such a manner as to require minimum changes to application code in order to move from an unsecure application to a secure application. The advantage of this approach is that security can be enforced reliably and consistently since very little is required of the application developer. In this paper, the authors describe the goals, design, and implementation of the Generalized Security Framework.
  • Physical Description: vp.

Subject

  • Keyword: Implementation
  • Keyword: Simulation
  • Keyword: Communications
  • Keyword: Design
  • Keyword: Security
  • Keyword: Nuclear Weapons
  • STI Subject Categories: 45 Military Technology, Weaponry, And National Defense

Source

  • Other Information: PBD: 1 Jun 2001

Collection

  • Name: Office of Scientific & Technical Information Technical Reports
    Code: OSTI

Institution

  • Name: UNT Libraries Government Documents Department
    Code: UNTGD

Resource Type

  • Report

Format

  • Text

Identifier

  • Report No.: SAND2001-8338
  • Grant Number: AC04-94AL85000
  • DOI: 10.2172/784196
  • Office of Scientific & Technical Information Report Number: 784196
  • Archival Resource Key: ark:/67531/metadc716471