Oracle Spatial SIG

Industry Requirements for Securing Geospatial ApplicationsThe role Oracle technology can play

18th May 2005

Great-Circle Technologies, Inc.

Burke, Virginia

18 May 2005 Oracle Spatial SIG 2

Who we are…

Great-Circle Technologies, Inc., (GCT) is a geospatial informationtechnology (IT) small business specializing in the design, development,and deployment of advanced geospatial intelligence solutions. GCTaddresses customer needs through the conceptualization of innovativesolutions that bridge the “best value” of commercial-off-the-shelf (COTS)technologies and industry standards with government-owned-technologies(GOTS) and/or customer maintained legacy systems.

GCT’s primary customer base is centered around the Defense andIntelligence communities and developing innovative geospatial intelligenceCOTS products. The GCT AutoOrtho™ product suite represents the firstfully autonomous orthorectification workflow product line that leveragesOGC web services and an Oracle Spatial back-end.

18 May 2005 Oracle Spatial SIG 3

Geospatial Intelligence Architecture Trends

We are helping our customers define and adopt an EnterpriseGeospatial Intelligence Architecture (EGIA)EGIA represents a

Enterprise-wide Service Oriented ArchitectureVendor neural implementationsStandards-based (OGC, XML, web services)Best-of-BreedGeospatial & temporal data are considered just another form of businessdata managed within the bi-temporal, spatial data infrastructureEnterprise-wide security modelCodified workflows replace stove-piped toolsAutonomous geospatial intelligence workflow compute serversEmphasize geospatial intelligence tradecraft developmentEnable Geography-of-Interest and Epoch-of-Interest queriesData Steward Model

18 May 2005 Oracle Spatial SIG 4

Security Model

Oracle 10g Spatial with Label Security (row level)Content encryption (field level)

• Implements role & profile specific encryption/decryption services

• Enables secure distribution of database query results throughout enterprise

Secure LDAP to provide single sign-on authenticationIdentifies security services available on a role & profile basis

Web server, application server, and compute servers all interface withsecurity services to protect exposed data

Disk cache, temporary files, etc

Clients (including COTS) extended to include hooks to invoke securityservices as community of interest standards

Web service standards (OGC) to be extended as well

18 May 2005 Oracle Spatial SIG 5

Oracle Spatial

Georaster data type offers the capability to centrally manage allimagery products within a bi-temporal, spatial data infrastructure(BSDI)

Traditional imagery archives use data store to manage meta descriptionsof images that point to a file system path to a specific file type

Traditional approach decouples security descriptions from files

BSDI enables image transformations to be stored as pixel metadataStore and secure raw pixels once

Support “n” pixels transformations as metadata

Service requests select “just what is needed, just when it is needed”

Minimizes the redundancy of secure data throughout the enterprise

18 May 2005 Oracle Spatial SIG 6

Summary

Industry is migrating towards more holistic Enterprise GeospatialIntelligence Architectures (EGIA)

Given the implied data steward model associated with EGIA, acodified security model is required to successful implement an EGIA

DCID 6/3 PL-5 “like”

Oracle Spatial provides the basis for a bi-temporal spatial datainfrastructure

Normalizes secure data representations

Enables a business logic driven set of security services tied to roles &profiles

Enterprise-wide security services can be integrated with Oracle toextend Oracle Label Security

18 May 2005 Oracle Spatial SIG 7

Contact InformationBrent BurseyPresident/CEOGreat-Circle Technologies, Inc.10731 Bear Oak CourtBurke, VA 22015-2403

(703) 764-9140(703) 629-6466(703) 764-2738 FAX

BBursey@Great-Circle Tech.comhttp://www.Great-CircleTech.com