EditWYSIWYGAttach PDF Raw View►More Actions▼More Actions


Restore topic to revision: You will be able to review the topic before saving it to a new revision

Copy text and form data to a new topic (no attachments will be copied though).
Name of copy:
You will be able to review the copied topic before saving

Rename/move topic... scans links in all public webs (recommended)
Rename/move topic... scans links in CBI_ComputerSecurity web only
Delete topic... scans links in all public webs (recommended)
Delete topic... scans links in CBI_ComputerSecurity web only

Revision Date Username Comment
1829 Dec 2015 - 17:40ThomasMisa 
1729 Dec 2015 - 17:39ThomasMisa 
1608 Dec 2014 - 10:47ThomasMisa 
1522 Jul 2014 - 17:15ThomasMisa 
1422 Jul 2014 - 16:57ThomasMisa 
1322 Jul 2014 - 16:49ThomasMisa 
1222 Jul 2014 - 14:35ThomasMisa 
1122 Jul 2014 - 14:12ThomasMisa 
1022 Jul 2014 - 14:07ThomasMisa 
922 Jul 2014 - 14:01ThomasMisaAttached file Screen_shot_2014-07-22_at_1.58.23_PM.png 
earlier first

Render style:     Context:


 History: r18 | r10 < r9 < r8 < r7
[X] Hide this message.
Notice: On June 30, 2016, UMWiki service will be decommissioned. If you have information in UMWIki that needs to be preserved, you should make plans to move it before that date. Google Sites is anticipated to be the most popular and appropriate alternative for users because it offers a more modern and user-friendly interface and unlimited capacity. To learn more about the features of Google Sites and other alternatives, and to identify which one best fits your needs, see the University’s Website Solution Selection Guide. If you have concerns or would like help regarding this change and your options, please contact Technology Help at help@umn.edu
You are here: UMWiki>CBI_ComputerSecurity Web>Systems>SystemsBlacker (revision 8)

Current Activitieslock Who is Who?lock People Programs Publications CSHW_2014 Systems Events Mechanisms

BLACKER

 

A proof-of-concept implemented by SDC and Burroughs, later merged as UNISYS, BLACKER was the first computer network security project, and only the second project of any kind, to achieve the Trusted Computer System Evaluation Criteria (TCSEC) A1 rating, which it earned in 1991. A U.S. Department of Defense project, BLACKER was the first end-to-end trusted encryption system on the U.S. Defense Data Network (DDN).(1)(2) BLACKER was a long-term project that began in the late 1970s, and consisted of four devices fielded in the late 1980s. The BLACKER hardware centered around the BLACKER Front End (BFE), a smart encryption box that functioned between the host computer and the Packet Switch. A "cigarette-box sized" removable device, the BLACKER Initialization-parameters Carrier (BIC), then provided host-specific operational and security parameters. The other devices then controlled the permissions for message exchange, and handled key distribution, ensuring that only authorized hosts were allowed to communicate.(3)

BLACKER employed the Bell-LaPadula security model, where a DDN computer served as a "subject," and the encrypted connection to a second host was the "object." However, applying the Bell-LaPadula model to network security was not a straigtforward process, requiring the development team to reevaluate networking security requirements in relation to Bell-LaPadula, and marked the end of the dominance of Bell-LaPadula in computer security.(4)(5) BLACKER was implemented on the DDN using a Cisco Systems' DDN X.25, which used BLACKER Front-end Encryption and BLACKER emergency mode operation. The BFE allowed host machines to communicate securely over unsecured packet-switched networks, creating a virtual network, called the "Red" network, between the BFE secured devices. The packet-switched network carrying both the secured BFE traffic, and unsecured traffic, was called the "Black" network.(6)(7)

Notes

1 , 7 : http://www.fas.org/irp/program/security/blacker.htm

2 , 5 : Donald MacKenzie, Mechanizing Proof: Computing, Risk, and Trust, New York (MIT Press, 2001), 181, 190-191.

3 : lock Clark Weissman, "BLACKER: Security for the DDN Examples of A1 Security Engineering Trades," IEEE Computer Society Symposium on Research in Security and Privacy (IEEE, 1992), 286. (Login required)

4 : lock Clark Weissman, "BLACKER: Security for the DDN Examples of A1 Security Engineering Trades," IEEE Computer Society Symposium on Research in Security and Privacy (IEEE, 1992), 287. (Login required)

6 : lock Emil V. DeRenzo, et al, "The Integrated Tactical Data Network (ITDN): Multi-Security Level Tactical/Strategic Connectivity Through Existing Packet Switching Technology," Military Communications Conference, 1990. MILCOM '90, Conference Record, A New Era (IEEE, 1990), 2-4, 6. (Login required)


Edit | WYSIWYG | Attach |  PDF |  History: r18 | r10 < r9 < r8 < r7 |  Backlinks |  Raw View | More topic actions...
Topic revision: r8 - 03 Oct 2013 - 15:40:22 - norqu036
 
Signed in as lewi0740 (NicLewis) | Sign out
UMWiki UMWiki
This site is powered by FoswikiCopyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding UMWiki? Send feedback