The adoption of XML as the underlying paradigm by which a wide range of commercial, Government and Military systems communicate is fundamentally changing the way in which systems interact. Since many mission critical data flows for government, DoD, and commercial systems occur across security domains or organizational boundaries, XML-enablement of cross domain controlled interfaces, to include Guard systems, is a pertinent research and development endeavor that, once proven, will likely find itself on the fast-track to producing an operational commercially viable capability. Operational cross domain solutions, like the ISSE Guard, are already successfully utilizing XML technology to include XML DTD-based and schema-based validation techniques. However, more R&D is needed. The Extensible Stylesheet Language Transformations (XSLT), XML Path Language (XPath), Security Assertion Markup Language (SAML), and XML Access Control Language (XACL) are but a few of the XML technologies which appear to have applicability to the controlled interfaces of tomorrow. This effort will focus on: determining if, and where, these technologies can be employed, assessing what the potential security, infrastructure and performance related implications are of their integration into future controlled interfaces, and demonstrating, via one of more prototypes, the use of leading edge XML technology in a guard application.
Keywords: Xml Guard, Xml Controlled Interface, Xml Content Inspection, Xml Transformation, Xml Signing, Isse Guard