In Defence Information Systems, the partitioning of different classes of information (e.g. non-classified, restricted, confidential, secret, top secret) is achieved by physical network separation. Although this technique of air-gapping does effectively reduce the risk of leakage, it is not without non-negligible constraints (e.g. data exchange via removable devices, long data transmission lead times, sub-standard ergonomics…) and is also costly (ownership/running/upkeep).
SINAPSE, an upstream research program launched by the DGA, the French arms procurement agency, is aimed at developing a high-security software layer that enables safe and secure cohabitation of data and applications of differing levels of sensitivity on one single and same work station, so as to overcome the aforementioned constraints. This solution meets three key demands, i.e.: security, efficiency and resource optimization.