OneGroup™ provides secure transactions for a group of users or secure transactions using, simultaneously, or a group of servers. |
Most of the existing secure transaction products provide security only between two participants, either user-to-user or user-to-server. However, new secure transaction concepts, applications, and requirements go beyond those simple network arrangements, and often include multiple participants or multiple network components. In such a scenario, in order to complete a transaction, users/servers must interact with more than two parties in real time. Therefore, security products for such transactions must also simultaneously support multiple participants. OneGroup™ has the following features:
OneSec™ is the existing security platform for development and run-time support for the various secure applications. OneGroup™ server is used by the Group Administrators, GCs and SCs:
OneGroup™ client is used by GMs:
The architecture of the OneGroup system and secure messaging application is shown below. Although all participating entities, servers and clients, are located in one “plane”, they are shown in a form of a hierarchical arrangement to emphasize their logical relationships. Various relationships and transactions are shown in different colours: black transactions represent authorizations of SCs by the GCs. Red represents administration functions performed by GC and SCs at the OneGroup™ servers. Exchange of group keys between OneGroup™ servers and GMs are shown in blue, while secure group transactions are shown in green. OneGroup™ server runs on Windows but in future will run on and will be tightly integrated with SELinux (Secure Linux). SELinux provides mandatory access control architecture incorporated into Linux kernel through separation of information based on confidentiality and integrity requirements. |