infosec-news February 2011 archive
Main Archive Page > Month Archives  > infosec-news archives
infosec-news: [ISN] NSA Winds Down Secure Virtualization Platfor

[ISN] NSA Winds Down Secure Virtualization Platform Development

From: InfoSec News <alerts_at_nospam>
Date: Mon Feb 28 2011 - 11:05:20 GMT

By J. Nicholas Hoover
February 24, 2011

After several years in the making and two releases, the National
Security Agency is winding down new development of its secure client
virtualization framework, the High Assurance Platform (HAP).

At HAP's inception, NSA wanted an integrated, networked framework of
virtualization and security technology, but the market had yet to
deliver one. So NSA set out to piece together the disparate hardware and
software that commercial vendors had already placed on the market. "We
saw all of these things," Neil Kittleson, the commercial solutions
center's trusted computing portfolio manager, said in an interview. "And
we saw the need to create custom policy around it to get them all to
work in parallel."

Historically, intelligence agencies have used different computers for
working with differing levels of classified data, but HAP allows
multiple security levels -- from unclassified to top secret -- to
operate on the same machine. HAP is managed by NSA's commercial
solutions center, a group focused on engaging industry. The intent of
the six-year-old program was to leverage purely commercial technologies,
rather than relying on custom code and products designed specifically
for government, as was long the norm for the intelligence community.

The HAP program was intended to push both NSA's tech boundaries and the
industry's own virtualization and security offerings. This close work
with vendors is central to the commercial solutions center's broader
mission. For example, the office has an outreach element that has
vendors come in and talk about emerging capabilities. "We want to know
where they're going, understand that, and help influence development,"
Mike Lamont, chief of the NSA's network solutions office, said in an
interview. Vendors of products being used in the HAP project include
IBM, VMware, Wave Systems, and others.


Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery
Network, Cisco Switches, SAS 70 Type II Datacenter.
Find peace of mind, Defend your Critical Infrastructure.