Beyond the Enclave

By Dr. Myron L. Cramer

This paper was presented at the Purdue University Center for Education and Research
in Information Security (CERIAS) on February 13, 2008.

"Beyond the Enclave: Evolving Concepts in Security Architectures,"
CERIAS, February 2008

There is a need for new concepts in security architectures to support information sharing.

This presentation discusses evolving concepts in security architectures. Current security architectures are based on the enclave architecture model. This model organizes and separates networked information systems into trusted, untrusted, and shared areas. Security components are located within these areas to provide the required security services based upon system requirements. While this model has many advantages in a basic client server business model, it has limitations with the evolving need to share information. This talk discusses the enclave security architecture and how it is implemented within enterprise networks. It also discusses information sharing needs that are difficult to meet within the constructs of the enclave as well as some of the security limitations of the enclave model. Potential solutions include incorporating new architectural concepts and new technologies to provide a greater variety of robust enterprise implementation options.

CERIAS Web Site

This seminar is available on the CERIAS web site.