High Assurance Guard

High Assurance Guard

A High Assurance Guard (HAG) is a Multilevel security computer device which is used to communicate between different Security Domains, such as NIPRNet to SIPRNet. The HAG is one example of a Controlled Interface between security levels. HAGs are approved through the Common Criteria process.

Operation

The HAG runs a multiple hardware virtualization machine on separate processor - one subsystem for the lower classification, one subsystem of the higher classification. The hardware runs a type of Knowledge Management software that examines traffic going from the higher classification side and rejects any traffic that is classified higher than the lower classification. In general, the HAG allows lower classified data that resides on a higher classified system, to be moved to another lower classified system. For example, in the US, it would allow unclassified information residing on a classified secret system to be moved to another unclassified system. Through various rules and filters, the HAG ensures that the data is of the lower classification and then allows the transfer.

Importance, risks

The HAG is mostly used in email and DMS environments as certain organizations may only have unclassified network access, and they need to send a message to an organization that has only secret network access. The HAG provides them this ability.


Wikimedia Foundation. 2010.

Игры ⚽ Нужно решить контрольную?

Look at other dictionaries:

  • British Home Guard — Infobox Military Unit unit name=Home Guard initially Local Defence Volunteers caption=Walter Rankin LDV painted in 1940 by Sir William Oliphant Hutchison role=Defence from invasion country=United Kingdom branch=British Army dates=14 May 1940 3… …   Wikipedia

  • Life assurance — Life Life (l[imac]f), n.; pl. {Lives} (l[imac]vz). [AS. l[imac]f; akin to D. lijf body, G. leib body, MHG. l[imac]p life, body, OHG. l[imac]b life, Icel. l[imac]f, life, body, Sw. lif, Dan. liv, and E. live, v. [root]119. See {Live}, and cf.… …   The Collaborative International Dictionary of English

  • Life guard — Life Life (l[imac]f), n.; pl. {Lives} (l[imac]vz). [AS. l[imac]f; akin to D. lijf body, G. leib body, MHG. l[imac]p life, body, OHG. l[imac]b life, Icel. l[imac]f, life, body, Sw. lif, Dan. liv, and E. live, v. [root]119. See {Live}, and cf.… …   The Collaborative International Dictionary of English

  • Multilevel security — or Multiple Levels of Security (abbreviated as MLS) is the application of a computer system to process information with different sensitivities (i.e., at different security levels), permit simultaneous access by users with different security… …   Wikipedia

  • Controlled interface — A controlled interface is a multilevel security system used to transfer low classification data between security domains. The data to be transferred may theoretically move in either direction; the purpose of the controlled interface is to ensure… …   Wikipedia

  • Multiple Single-Level — or Multi Security Level (MSL) is a method of separating different levels of data by using separate PCs or virtual machines for each level. It aims to give some of the benefits of Multilevel security without needing special changes to the OS or… …   Wikipedia

  • XTS-400 — Infobox OS name = XTS 400 website = [http://www.baesystems.com/ProductsServices/bae prod csit xts400.html www.baesystems.com] developer = BAE Systems source model = Closed source latest release version = 6.5 latest release date = August 2008… …   Wikipedia

  • Clearswift — Limited Type Private Industry Computer security Founded UK (1982) Headquarters Theale …   Wikipedia

  • biblical literature — Introduction       four bodies of written works: the Old Testament writings according to the Hebrew canon; intertestamental works, including the Old Testament Apocrypha; the New Testament writings; and the New Testament Apocrypha.       The Old… …   Universalium

  • literature — /lit euhr euh cheuhr, choor , li treuh /, n. 1. writings in which expression and form, in connection with ideas of permanent and universal interest, are characteristic or essential features, as poetry, novels, history, biography, and essays. 2.… …   Universalium

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”