Multiple Independent Levels of Security (MILS)
Multiple Independent Levels of Security (MILS) is a security architecture in which critical systems are decomposed into components that can be individually constructed to appropriate levels of assurance, and deployed on a single platform that ensures the components stay isolated from inadvertent (or malicious) behavior. A key concept in the MILS architecture is that important security policies be enforced via a "reference monitor", which can be evaluated for correctness. The underlying operating system, called a "separation kernel" in MILS systems, is responsible for ensuring relevant data streams are not able to bypass the reference monitor, and to make sure the reference monitor is tamperproof.
The Trusted Services Engine (TSE), built by Galois, was designed according to the MILS architecture, and has been run on Green Hills' INTEGRITY, as well as SELinux configured as a separation kernel. Galois believes that the MILS has great promise for improving the assurance and reducing the cost of developing and deploying high assurance systems.
Collaborate with Us
Licensing - Obtain a license for one of our advanced technologies.
Research & Development - Solve your toughest problems by exploring new approaches with us.
Training - Learn how to use cutting-edge tools to increase trustworthiness in your critical systems.