AUTHENTICATION AND AUTHORIZATION USING THE VICTORY ACCESS CONTROL SOFTWARE

The Vehicular Integration for Command, Control, Communication, Computers, Intelligence, Surveillance and Reconnaissance / Electronic Warfare (C4ISR/EW) Interoperability (VICTORY) standards is an open architecture that defines how software and hardware are shared as common resources among services that make up a platform’s capabilities such as Ethernet switches and routers, end nodes, processing units, as well as functionality such as position and navigation systems, radios, health monitoring, and automotive. The VICTORY standard enables reducing the total Size, Weight, and Power (SWaP), and Costs (SWaP-C) on a platform. As part of the Information Assurance (IA) capabilities of the VICTORY standard, the VICTORY Access Control Framework (VACF) provides protection to these shared resources in the form of an Attribute-Based Access Control (ABAC) system. The VACF is composed of five VICTORY component types: Authentication, Attribute Store, Policy Store, Policy Decision, and Policy Enforcement Services. This paper will discuss how the VICTORY Access Control Software (VACS), an implementation of VACF developed by the U.S. Army Tank Automotive Research, Development, and Engineering Center (TARDEC), can enable authentication and authorization on ground combat vehicles.