Carleton University - School of Computer Science Honours Project
Fall 2019
Information Exchange Framework
ABSTRACT
The intent of this project is to show that data centric security can be achieved by
implementing parts of an open standard. The standard used is the Information
Exchange Framework Reference Architecture [IEFRA] by the Object Management
Group (OMG), which is an open standard available to everyone. Development
involved implementing several key parts of the IEF. A Packaging and Processing
Service (PPS), a Policy Enforcement Point (PEP), a Policy Decision Point (PDP) and
a Policy Administration Point (PAP). However, the focus in this paper is the PEP and
the PDP. The PEP analyses the Metadata on incoming and outgoing messages to
determine the sharing agreements between the current participant and the receiving
participant. Tests showed that with a proper configuration of the sharing agreements
for each participant, messages were either allowed to be automatically passed to the
next participant or were blocked and discarded.