Jericho Systems Selected by US Army for Phase II SBIR Award
- Research effort will prototype cloud-enabled, federated RESTful services with dynamic access control for Distributed Common Ground System-Army
Jericho Systems Corporation, a pioneer in externalized attribute-based access control (ABAC) and content filtering software solutions, announced that it has received a Phase II Small Business Innovation Research (SBIR) award from the U.S. Army.
Under the two year award, Jericho Systems will develop a standards-based architecture and prototype that enables single-sign on (SSO) and ABAC security for RESTful services for Distributed Common Ground System (DCGS)-Army. The Phase II effort provides important next steps toward the fielding of interconnected net-centric systems that meet mission and data security requirements.
Critical Infrastructure Protection (CIP) Market Forecast 2016-2026
Representational state transfer (REST) is a popular Web 2.0 architectural approach that supports highly interactive, browser-based user sessions and real-time access to cloud-based resources. For the Army to benefit from REST-based services, REST must be integrated into the enterprise’s Identity and Access Management (IdAM) security architecture.
Jericho Systems will reduce the Army’s information technology (IT) burden by providing technical guidance for an integrated, cost-effective RESTful solution that can be deployed in Phase III. Phase II deliverables will include use cases, a Concept of Operations (CONOPS), a prototype, and a roadmap to implementation. Use of architectural standards, including WS-Trust and WS-Federation, will enable diverse SSO credentialing mechanisms within the overall enterprise capability.
“A standardized RESTful access control architecture will benefit the Army in multiple ways,” said Jericho Systems Cybersecurity Architect Bill Doyle. “It will improve user experience, promote system interoperability, maximize software code reuse, and enhance the warfighters’ ability to work together in secure, collaborative data exchanges.”
Jericho Systems’ commercial off-the-shelf ABAC software, EnterSpace® Decisioning Service, will provide the enterprise-ready authorization engine for the prototype; additional new components will be delivered as part of the Phase II effort.
Tim Schmoyer, Jericho Systems Vice President of Engineering, said, “Jericho Systems’ Phase II effort will enable secure information sharing for DCGS -- between enclaves in constrained operational environments and with the enterprise -- while leveraging existing DCGS-Army (DCGS-A) ABAC architecture and IT applications.”
Jericho Systems previously delivered REST-based work for the Air Force and DCGS, including:
- Demonstration of an OpenID credential and a SAML attribute assertion to authenticate and authorize users.
- Drafting a RESTful technical design document and an SSO service specification.
“Jericho is proud to support the Department of Defense enterprise in developing the next generation of dynamic access control,” said Brynn Mow, CEO of Jericho Systems. “Jericho’s cutting-edge technology for access control in RESTful environments is the ideal choice for protecting the Army’s most sensitive information.”
Source : Jericho Systems Corporation - view original press release
Jan 25 - 26, 2017 - London, United Kingdom