Revision as of 23:20, 11 August 2010 edit 199.46.199.230 (talk) No edit summary ← Previous edit		Revision as of 20:45, 16 August 2010 edit undo Bostonvaulter (talk \| contribs) 173 edits added CNSS link Next edit →
Line 1: A '''controlled interface''' is a [[multilevel security]] system used to transfer low-classification data between security domains. The data to be transferred may theoretically move in either direction; the purpose of the controlled interface is to ensure that the data meets the criteria for transfer. This normally means that the data is of the lower classification. The [[Committee on National Security Systems]] (CNSS) publishes the 'NATIONAL INFORMATION ASSURANCE (IA) GLOSSARY', also known as CNSS Instruction No. 4009. In this glossary, a Controlled Interface is defined as follows: "Mechanism that facilitates the adjudication of different interconnected system security policies (e.g., controlling the flow of information into or out of an interconnected system". Within the US government, the Director of Central Intelligence Directive 6/3 (DCID 6/3) requirements for Protection Level 4 and 5 (PL-4 and PL-5), Integrity-High and Availability-High are required for multilevel security systems.

Controlled interface: Difference between revisions