Shipboard Cross Domain Secure Solutions Navy SBIR FY2018.1 Sol No.: Navy SBIR FY2018.1 Topic No.: N181-092 Topic Title: Shipboard Cross Domain Secure Solutions Proposal No.: N181-092-0235 Firm: Innoflight, Inc. 9985 Pacific Heights Blvd Suite 250 San Diego, California 92121 Contact: Trevor Coolidge Phone: (858) 638-1580 Web Site: http://www.innoflight.com Abstract: Transfer of data from one security or administrative domain to another is referred to as a Cross Domain Solution (CDS). As information networks become more integral to immediate decisions, the tried and true method of manual inspection of all information crossing security boundaries becomes ineffective. The proposal being put forth outlines an effective automated mechanism which combines a hardware appliance with implanted software guards to protect both the sending and receiving domain from cross contamination. Two major concepts are to be explored within this research effort. The first concept creates specific software protocols that will be used in support of Navy Strategic Systems Program (SSP) identified needs. The second concept focuses on practical methods to determine if the protocols created are operationally correct, and most importantly that the developed mechanisms are immune to covert channel vulnerabilities. These concepts will work in concert with the proposed hardware to create a technology solution that addresses this important need while still meeting NSA information assurance requirements. Benefits: A CDS application appliance with software guards will serve to coordinate activities and maintain data consistency between multiple security domains. This will reduce the need for time-consuming release procedures which prevent fluid and effective operations. Potential commercial applications extend to any business that requires information of differing levels of sensitivity. In a DOD context this means Unclassified, Secret, and Top-secret. In industry this could imply unrestricted, proprietary, or sensitive data. Return