Articles by xmlspif

You are currently browsing xmlspif’s articles.

CWID, the Coalition Warrior Interoperability Demonstration, is the premier annual event that enables U.S. Combatant Commands, national civil authorities and the international community to investigate and assess command and control (C2), communications systems, intelligence, surveillance, and reconnaissance (ISR) solutions.

One of the “notable interoperability highlights” identified in this year’s Final Report is that a CWID 2010 trial:

“Demonstrated a potential cross-domain solution to e-mail services, Extensible Messaging and Presence Protocol (XMPP) chat services, web services, and document sharing all of which were governed by a common security policy based on open standards to meet the requirements for providing a network enabled capability.”

This refers to a trial run by the UK to demonstrate Cross Domain Chat between the UK, USĀ and NATO. The trial adopted the XMLSPIF schema in order to provide a revisable, extensible schema that could support widespread adoption. The UK were able to represent the US and NATO Security Labelling policies with this standard and hence define the equivalent security labels to support mapping of labels within Cross Domain Services. The UK SPIF was stored in the X.500 / LDAP Enterprise Directory and a number of services then retrieved the SPIF, via LDAP, in order to display and apply Security Labels, and also make Access Control Decisions.

Appendix C of UK Cross Domain Chat Technical Report contains an XMLSPIF representing UK JSP 457 Volume 7 Electronic Labelling Services used in the trial.

A new version of the XMLSPIF schema is now available. It includes new features requested by members to support their customers’ requirements. These new features include:

  • Validity periods for the whole policy and individual category values.
  • MarkingData and MarkingQualifiers for the SPIF, privacy marks and tag categories.
  • Enhanced constraints on the number of privacy marks and tags that can be selected.
  • Date format specification for category values containing a date.
  • Required categories for an equivalent policy, classification and categories to provide enhanced equivalency mappings.
  • Equivalency between tag sets, where the tag values are the same in each tag set. For example, ISO3166 country codes.
  • Fixes to the schema constraints.

Version 2.0 of the schema replaces Version 1.0 of theĀ schema at:

The Version 2.0 schema is backwards compatible with Version 1.0. However, for those people who wish to specifically reference Version 1.0 of the schema, it is still available at: