Ms. Deborah L. Farroha Profile

Deborah L. Farroha

Technical Director of Enterprise Systems Engineering and Architecture at US Dept of Defense

SPIE Involvement:

Author

Proceedings Article | 10 May 2019 Presentation + Paper

Building a high performance, secure, reliable and compliant heterogeneous computing capability through the integration of core and edge processing

B. Farroha, D. Farroha

Proceedings Volume 11013, 110130C (2019) https://doi.org/10.1117/12.2518267

KEYWORDS: Clouds, Computing systems, Computer security, Data storage, Telecommunications, Data modeling, Computer architecture, Network security

Read Abstract +

Proceedings Article | 30 April 2019 Presentation + Paper

Exploring the security and operational aspects of the 5th generation wireless communication system

B. Farroha, D. Farroha, J. Cook, A. Dutta

Proceedings Volume 11015, 1101508 (2019) https://doi.org/10.1117/12.2519245

KEYWORDS: Mobile communications, Network security, Information security, Telecommunications, Data communications, Clouds, Network architectures, Networks, Sensors

Read Abstract +

Proceedings Article | 3 May 2012 Paper

Overcoming the challenges of secure mobile applications for network-centric, data-sensitive applications

Bassam Farroha, Deborah Farroha

Proceedings Volume 8405, 840507 (2012) https://doi.org/10.1117/12.919611

KEYWORDS: Mobile devices, Computer security, Network security, Information security, Clouds, Mobile communications, Operating systems, Data communications, Control systems, Defense and security

Read Abstract +

Proceedings Article | 3 May 2012 Paper

A framework for developing reliable corporate services in an agile environment

Deborah Farroha, Bassam Farroha

Proceedings Volume 8405, 840509 (2012) https://doi.org/10.1117/12.919619

KEYWORDS: Information security, Software development, Clouds, Computer security, Network security, Standards development, Data modeling, Commercial off the shelf technology, Information technology, Defense and security

Read Abstract +

Proceedings Article | 3 May 2012 Paper

Securing services in the cloud: an investigation of the threats and the mitigations

Bassam Farroha, Deborah Farroha

Proceedings Volume 8405, 840508 (2012) https://doi.org/10.1117/12.919614

KEYWORDS: Clouds, Computer security, Information security, Data centers, Network security, Information technology, Internet, Control systems, Data storage, Data communications

Read Abstract +

Proceedings Article | 24 May 2011 Paper

Agile enterprise development framework utilizing services principles for building pervasive security

Deborah Farroha, Bassam Farroha

Proceedings Volume 8062, 80620S (2011) https://doi.org/10.1117/12.885180

KEYWORDS: Information security, Computer security, Standards development, Network security, Software development, Clouds, Information technology, Control systems, Computer architecture, Electronic support measures

Read Abstract +

Proceedings Article | 24 May 2011 Paper

A novel approach to implementing digital policy management as an enabler for a dynamic secure information sharing in a cloud environment

Bassam Farroha, Kristine Essman, Deborah Farroha, Andy Cohen

Proceedings Volume 8062, 80620R (2011) https://doi.org/10.1117/12.885179

KEYWORDS: Clouds, Electronic support measures, Information security, Standards development, Control systems, Defense and security, Virtual reality, Computing systems, Network security, Telecommunications

Read Abstract +

The traditional way of approaching the management and enforcement of information systems Policy in enterprise environments is to manually translate laws and regulations into a form that can be interpreted and enforced by enterprise devices. In other words we create system commands for routers, bridges, and firewalls to force data transfers and system access to comply with the current policies and approved rules in order to control access and protect private, sensitive, and classified information. As operational needs and threat levels change, the rules are modified to accommodate the required response. It then falls on System Administrators to manually change the configuration of the devices they manage to adapt their operations accordingly. As our user communities continue to rely more heavily on mission information, and the enterprise systems and networks that provide it, our enterprise needs to progress to more automated techniques that enable authorized managers to dynamically update and manage policies in digital formats. Automated management of access rules that control privileges for accessing secure information and enterprise resources, enabled by Digital Policy and other Enterprise Security Management (ESM) capabilities provides the means for system administrators to dynamically respond to changing user needs, threat postures and other environmental factors. With the increased popularity of virtual environments and advent of cloud enterprise services, IA management concepts need to be reexamined. Traditional ESM solutions may be subjected to new classes of threats as physical control of the assets that implement those services are relinquished to virtual environments. Additional operational factors such as invoking critical processing, controlling access to information during processing, ensuring adequate protection of transactions within virtual environments and executing ESM provisions are also affected. The paper describes the relationships among relevant ESM enterprise services as they impact the ability to share and protect enterprise information. Central to this is the ability to adopt and manage digital policies within the enterprise environment. It describes the management functions that have to be supported, and the challenges that have to be addressed to ensure an effective implementation. Since the adoption of cloud services is becoming an important consideration for the evolution of enterprise architectures, the paper also explores the implications of shifting from traditional to virtual enterprise environments.

Proceedings Article | 24 May 2011 Paper

Analyzing the requirements for a robust security criteria and management of multi-level security in the clouds

Bassam Farroha, Deborah Farroha

Proceedings Volume 8062, 80620Q (2011) https://doi.org/10.1117/12.885023

KEYWORDS: Clouds, Computer security, Data modeling, Information security, Information technology, Data processing, Data storage, Network security, Defense and security, Data centers

Read Abstract +

Proceedings Article | 28 April 2010 Paper

Security core to the edge: securing critical information through enhanced Cross Domain Systems (CDS) to the tactical edge

Bassam Farroha, Deborah Farroha, Melinda Whitfield

Proceedings Volume 7707, 77070M (2010) https://doi.org/10.1117/12.850647

KEYWORDS: Computer security, Information security, Clouds, Data communications, Standards development, Telecommunications, Defense and security, Networks, Cadmium sulfide, Reliability

Read Abstract +

Proceedings Article | 28 April 2010 Paper

Enterprise systems security management: a framework for breakthrough protection

Bassam Farroha, Deborah Farroha

Proceedings Volume 7707, 77070O (2010) https://doi.org/10.1117/12.850660

KEYWORDS: Information security, Computer security, Clouds, Control systems, Network security, Homeland security, Data communications, Information assurance, Data processing, Telecommunications

Read Abstract +

Proceedings Article | 29 April 2009 Paper

Enabling information sharing through cross domain solutions: architecting the enterprise

Bassam Farroha, Melinda Whitfield, Deborah Farroha

Proceedings Volume 7350, 73500C (2009) https://doi.org/10.1117/12.819249

KEYWORDS: Computer security, Network security, Information security, Cadmium sulfide, Control systems, Information assurance, Networks, Defense and security, Data conversion, Network architectures

Read Abstract +

Proceedings Article | 29 April 2009 Paper

Net-centric transformation to empower the war-fighter through enhanced enterprise data services: exploring the SOA approaches

Deborah Farroha, Bassam Farroha

Proceedings Volume 7350, 73500B (2009) https://doi.org/10.1117/12.819250

KEYWORDS: Data centers, Data modeling, Information assurance, Information technology, Data storage, Defense and security, Web services, Decision support systems, Information security, Environmental management

Read Abstract +

Proceedings Article | 30 April 2007 Paper

An investigative analysis of information assurance issues associated with the GIG's P&P architecture

B. Farroha, R. Cole, D. Farroha, A. DeSimone

Proceedings Volume 6578, 657806 (2007) https://doi.org/10.1117/12.719516

KEYWORDS: Information assurance, Nanolithography, Network architectures, Defense and security, Information security, Network security, Video, Control systems, Telecommunications, Computer architecture

Read Abstract +

Showing 5 of 13 publications

Conference Committee Involvement (3)

Open Architecture/Open Business Model Net-Centric Systems and Defense Transformation 2014

5 May 2014 | Baltimore, MD, United States

Open Architecture/Open Business Model Net-Centric Systems and Defense Transformation 2013

30 April 2013 | Baltimore, Maryland, United States

Defense Transformation and Net-Centric Systems 2012

24 April 2012 | Baltimore, Maryland, United States

Keywords/Phrases

Search In:

Publication Years