Several technology companies will build a system to let the US government share data securely among its various agencies, a goal it has struggled to achieve since the September 2001 terrorist attacks.
The aim of the Secure Information Sharing Infrastructure (SISA) project is to create a system that allows data to be shared between the agencies, but in a way that ensures only the people who are authorised to access data are able to do so.
Cisco Systems, Microsoft and EMC will provide commercial, off-the-shelf products, with smaller vendors contributing specific technologies. Cisco will focus on secure networks and data protection, Microsoft on identity management and operating systems (OSs) and EMC on storage.
Also participating are Liquid Machines on content protection, Swan Island Networks on information-sharing architectures and Titus Labs on information labelling and classification. The business alliance between the companies will be managed by Addx.
The companies didn't provide a timetable or cost for the system, and government representatives weren't available for comment.
A report released in 2004 by the 9/11 Commission, which investigated the terrorist attacks, found that US intelligence agencies had cumbersome information-sharing practices that hampered their ability to counter terrorism.
The vendors gave scenarios of how the SISA system might be used. In one, a law enforcement agency raids an apartment and finds documents and financial ledgers in a foreign language. The material could be posted on an information-sharing site to be viewed by an investigator in another country.
The companies also gave a general view of how a person would be authenticated and access information from the network. A SISA administrator at a command centre will access a user's profile in Microsoft's Active Directory, then establish a virtual private network (VPN) to let the user access the files they are permitted to view. Cisco Security Agent governs the user's access to specific resources, such as write capabilities or a USB device, and the contents of emails and documents are protected with Liquid Machines and Microsoft's Rights Management Services (RMS).