Story image

CSIRO's Data61 builds innovative security platform for defence sector

07 Sep 17

CSIRO’s Data61 has developed new technology for government and defence staff that allows them to access multiple computer networks without compromising security.

Currently, government and defence staff use multiple segregated computer networks to maintain and classify data. This, according to Data61, is complicated when staff need to access multiple networks at the same time and transfer data between those networks.

The technology, dubbed ‘Cross-Domain Desktop Compositor’ (CDDC), provides a single interface for staff, which works well in areas with limited physical workspace such as ships, Data61 says.

“In an age where security is at a premium, a new approach to cyber security is needed. The CDDC platform is an example of how we can fundamentally change the way real-world systems are built and engineered, with trustworthiness assured to the highest degree possible without sacrificing usability,” comments DST researcher Mark Beaumont.

The CDDC also provides a seamless and fully integrated secure system, as well as additional functionality such as controlled data transfer and copy-paste.

According to Data61, solutions in the market often trade off security and usability against each other. Buyers who favour usability are more vulnerable to attacks and data leakage between secret networks.

However those who favour security prohibit simultaneous access to data from multiple domains on the same screen.

Behind the CDDC technology is Data61’s seL4 microkernel operating system, which is also used in autonomous helicopters and trucks.

“We have proved that seL4 enforces very strong security requirements, and is free of many classes of security vulnerabilities that plague commodity systems. In the CDDC we are using seL4 to support an integrated view of information, while providing fine-grained control of information flows, including controlled cut-and-paste between separate networks,” explains Toby Murray, senior research in Data61 Trustworthy Systems Team.

The company plans to market CDDC after the Australian Department of Defence conducted successful trials.

“We have developed a roadmap to commercialise this product with the defence market and support from the Defence Innovation Hub,” adds CSIRO’s Data61 CEO Adrian Turner.

“Data61 has world-leading expertise in designing and building trustworthy systems. We have partnered with the DSTG Group to overcome tough cyber-security challenges through deep science, engineering and user experience design.”

The company says that while CDDC is primarily focused on defence, its applications can be extended across government, enterprise, banking, health and autonomous systems.

“It will also be interoperable with existing desktop infrastructure, and cheaper than traditional low to medium assurance products. Existing solutions are often complex and expensive to deploy and maintain – in contrast the CDDC is plug and play,” Beaumont comments.

“We will also enable a local supply chain to develop the platform for further global applications,” Turner concludes.

The CDDC is a finalist in three categories in this year’s 2017 National iAwards. The iAwards recognise technology innovations that have a positive impact on the community.

What MSPs can learn from Datto’s Channel Ransomware Report
While there have been less high profile attacks making the headlines, the frequency of attacks is, in fact, increasing.
Cisco expands security capabilities of SD­-WAN portfolio
Until now, SD-­WAN solutions have forced IT to choose between application experience or security.
AlgoSec delivers native security management for Azure Firewall
AlgoSec’s new solution will allow a central management capability for Azure Firewall, Microsoft's new cloud-native firewall-as-a-service.
How to configure your firewall for maximum effectiveness
ManageEngine offers some firewall best practices that can help security admins handle the conundrum of speed vs security.
Exclusive: Why Australian enterprises are prime targets for malware attacks
"Only 14% of Australian organisations are continuously training employees to spot cyber attacks."
Exclusive: Why botnets will swarm IoT devices
“What if these nodes were able to make autonomous decisions with minimal supervision, use their collective intelligence to solve problems?”
Bitdefender announces security integration with Kaseya
The new partnership will allow VSA by Kaseya’s cloud and on-premises users to deploy and manage security with Bitdefender Cloud Security for MSPs.
Why you should leverage a next-gen firewall platform
Through full lifecycle-based threat detection and prevention, organisations are able to manage the entire threat lifecycle without adding additional solutions.