{"id":6492,"date":"2018-11-01T11:57:29","date_gmt":"2018-11-01T18:57:29","guid":{"rendered":"https:\/\/objectsecurity.com\/?p=6492"},"modified":"2025-12-04T19:43:37","modified_gmt":"2025-12-05T03:43:37","slug":"usaf-openpmf","status":"publish","type":"post","link":"https:\/\/objectsecurity.com\/usaf-openpmf\/","title":{"rendered":"ObjectSecurity Awarded USAF Contract for Military\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation"},"content":{"rendered":"<div class=\"fusion-fullwidth fullwidth-box fusion-builder-row-1 fusion-flex-container has-pattern-background has-mask-background nonhundred-percent-fullwidth non-hundred-percent-height-scrolling\" style=\"--awb-border-radius-top-left:0px;--awb-border-radius-top-right:0px;--awb-border-radius-bottom-right:0px;--awb-border-radius-bottom-left:0px;--awb-flex-wrap:wrap;\" ><div class=\"fusion-builder-row fusion-row fusion-flex-align-items-flex-start fusion-flex-content-wrap\" style=\"max-width:1872px;margin-left: calc(-4% \/ 2 );margin-right: calc(-4% \/ 2 );\"><div class=\"fusion-layout-column fusion_builder_column fusion-builder-column-0 fusion_builder_column_1_1 1_1 fusion-flex-column\" style=\"--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;\"><div class=\"fusion-column-wrapper fusion-column-has-shadow fusion-flex-justify-content-flex-start fusion-content-layout-column\"><div class=\"fusion-text fusion-text-1\"><p><strong>San Diego, Calif. \u2013 November 1, 2018 \u2013\u00a0<\/strong>ObjectSecurity, a leader in solving complex, evolving defense and industrial cybersecurity and supply chain risk challenges, today announced that it has successfully completed a Small Business Innovation Research (SBIR) contract from the US Air Force (USAF).<\/p>\n<p>The project titled \u201cMilitary\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation\u201d [1] was in response to Small Business Innovation Research (SBIR) [1] AF182-005 \u201cOpen Call for Innovative Defense-Related Dual-Purpose Technologies\/Solutions\u201d. The objective of this topic is to explore Innovative Defense-Related Dual-Purpose Technologies that may not be covered by any other specific SBIR topic and thus to explore options for solutions that may fall outside the Air Force\u2019s current fields of focus but that may be useful to the US Air Force. This topic will reach companies that can complete a feasibility study and prototype validated concepts in accelerated Phase I and II schedules. [2]<\/p>\n<p>The project focused on validating the feasibility of ObjectSecurity\u2019s OpenPMF product [3] in military\/government environments: \u201cDoD needs smarter technical security policy implementation, esp. for access control. However, technical security policies are increasingly unmanageable (esp. access control) because there are too many rules &amp; configurations, too many changes to manage manually, across too many security features, devices, applications, layers etc. ObjectSecurity OpenPMF is a security policy automation \u201cumbrella\u201d that lets security professionals author security policies in generic\/intuitive\/consistent terms. From these, it calculates the matching technical rules and configurations, by filling in imported technical details. It is not yet used by the military\/government but has strong potential and is highly innovative. We therefore propose a military\/government feasibility study of OpenPMF security policy automation (with special focus on Air Force needs). OpenPMF has been developed for 10+ years, is patented (since 2007), award-winning, and has been deployed in other industries. It is an ideal candidate for rapid transitioning into military\/government use. The proposed effort will research the viability and benefits of OpenPMF Security Policy Automation for Air Force and the wider military\/government. The effort will address the 7 questions stated in the solicitation and additional technical objectives outlined in the accompanying slide deck. The effort will include the development of a functional prototype for a mock-up military\/government environment.\u201d<\/p>\n<p>The operational usefulness of the OpenPMF [3] product was validated as a key enabler: a consistent, generic policy \u201cumbrella\u201d to centrally manage technical security policies in human-intuitive terms and concepts. It is a flexible, customizable platform that is highly adaptable. From a technical perspective we could not identify any particularly differing barriers to adoption for the Government vs. elsewhere. Customization is usually part of an OpenPMF deployment, incl. specific importers, exporters, documents, default policies etc. In 2018, the main obstacles for adoption of OpenPMF are less technical, but more organizational and psychological [4]. The real cost benefit of OpenPMF is during maintenance, evolution and policy changes. OpenPMF not only greatly reduces the costs of system and policy evolution, but also reduces the need for skilled personnel, which is in practice often an even bigger challenge than costs.<\/p>\n<p>ObjectSecurity securely brings together data &amp; analytics to create intelligence and automation. We are leading experts in technologies &amp; services to drive the information age in your organization.<\/p>\n<p>\u201cThis project enabled us to do critical market analysis at the necessary scale to validate and fine-tune OpenPMF for the military\/government\u201d, says Dr. Ulrich Lang, CEO\/founder of ObjectSecurity. \u201cThe current access control approach is inadequate due to its lack of fine-grained precision, allowing legitimate but also illegitimate access. OpenPMF&#8217;s adoption is hindered by less technical but organizational obstacles such as inter-organizational collaboration and psychological barriers. However, the US government can apply OpenPMF in various scenarios, including IoT, cloud infrastructure, enterprise applications, identity\/access management, and data-centric security, with varying deployment flavors. OpenPMF&#8217;s modular design enables adaptability to technological changes, making it a flexible platform that can address evolving military\/government use cases over time with anticipated significantly lower costs subsequent to the initial deployment.\u201d<\/p>\n<p><strong>About ObjectSecurity<\/strong><\/p>\n<p>ObjectSecurity LLC is a leader in solving complex, evolving defense and industrial cybersecurity and supply chain risk challenges that threaten national security and production downtime. Our novel research and development are applied to commercial solutions proactively addressing the core source of cyber vulnerabilities and risk \u2013 software code and data. Our holistic, proactive approach prevents cyber attacks and disruptive production downtime across industries that support global citizen communities, including military defense, municipal smart cities, public and private transportation, energy, wastewater treatment, power utilities, manufacturing, and the life sciences. For more than 20 years, ObjectSecurity has been delivering cybersecurity and supply chain risk management solutions, including to U.S. defense and federal government agencies. These advanced technologies are now commercially available for government and private sector use. ObjectSecurity is privately-held with headquarters in San Diego, CA, with global representation. [5]<\/p>\n<p><strong>More Information<\/strong><\/p>\n<ol>\n<li>Award Information: https:\/\/legacy.www.sbir.gov\/sbirsearch\/detail\/1947319<\/li>\n<li>Solicitation Information: <a href=\"https:\/\/www.highergov.com\/sbir-opportunity\/open-call-for-innovative-defense-related-af182-005-sbir-2018-1fdd8dd0\/\">https:\/\/www.highergov.com\/sbir-opportunity\/open-call-for-innovative-defense-related-af182-005-sbir-2018-1fdd8dd0\/<\/a><\/li>\n<li>OpenPMF Website: <a href=\"https:\/\/objectsecurity.com\/openpmf\">https:\/\/objectsecurity.com\/openpmf<\/a><\/li>\n<li>UPDATE 2024: Today\u2019s the cybersecurity tools\/approaches landscape has changed and OpenPMF falls squarely under Zero Trust Architecture (ZTA): ZTA is a security model used by military and government agencies to safeguard sensitive resources by assuming no implicit trust within or outside their networks. ZTA enforces strict verification for every access request, leveraging continuous authentication, least privilege access, and micro-segmentation to minimize risks from both internal and external threats. By treating each interaction as potentially compromised, ZTA ensures that only verified, authorized users and devices can interact with critical systems, enhancing overall security resilience in high-stakes environments.<\/li>\n<li>ObjectSecurity <a href=\"https:\/\/www.objectsecurity.com\">https:\/\/www.objectsecurity.com<\/a>.<\/li>\n<\/ol>\n<p><strong>Media Contact<\/strong><\/p>\n<ul>\n<li>Dan Mathews<\/li>\n<li>1 650 515 3391<\/li>\n<li>Contact https:\/\/objectsecurity.com\/contact<\/li>\n<\/ul>\n<\/div><\/div><\/div><\/div><\/div>\n","protected":false},"excerpt":{"rendered":"","protected":false},"author":8,"featured_media":4601,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[92,93],"tags":[],"class_list":["post-6492","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-access-control","category-dod-gov"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.5 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>ObjectSecurity Awarded USAF Contract for Military\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation - ObjectSecurity<\/title>\n<meta name=\"robots\" content=\"noindex, follow\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/\"},\"author\":{\"name\":\"ObjectSecurity LLC\",\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/#\\\/schema\\\/person\\\/b95c5e028381014293b246279d5006bb\"},\"headline\":\"ObjectSecurity Awarded USAF Contract for Military\\\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation\",\"datePublished\":\"2018-11-01T18:57:29+00:00\",\"dateModified\":\"2025-12-05T03:43:37+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/\"},\"wordCount\":1988,\"image\":{\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/i0.wp.com\\\/objectsecurity.com\\\/wp-content\\\/uploads\\\/2024\\\/04\\\/Untitled-design-1.png?fit=600%2C337&ssl=1\",\"articleSection\":[\"Access Control\",\"DoD\\\/gov\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/\",\"url\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/\",\"name\":\"ObjectSecurity Awarded USAF Contract for Military\\\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation - ObjectSecurity\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/i0.wp.com\\\/objectsecurity.com\\\/wp-content\\\/uploads\\\/2024\\\/04\\\/Untitled-design-1.png?fit=600%2C337&ssl=1\",\"datePublished\":\"2018-11-01T18:57:29+00:00\",\"dateModified\":\"2025-12-05T03:43:37+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/#\\\/schema\\\/person\\\/b95c5e028381014293b246279d5006bb\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/#primaryimage\",\"url\":\"https:\\\/\\\/i0.wp.com\\\/objectsecurity.com\\\/wp-content\\\/uploads\\\/2024\\\/04\\\/Untitled-design-1.png?fit=600%2C337&ssl=1\",\"contentUrl\":\"https:\\\/\\\/i0.wp.com\\\/objectsecurity.com\\\/wp-content\\\/uploads\\\/2024\\\/04\\\/Untitled-design-1.png?fit=600%2C337&ssl=1\",\"width\":600,\"height\":337},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/usaf-openpmf\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/objectsecurity.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"ObjectSecurity Awarded USAF Contract for Military\\\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/#website\",\"url\":\"https:\\\/\\\/objectsecurity.com\\\/\",\"name\":\"ObjectSecurity\",\"description\":\"OT\\\/ICS Asset Binary Vulnerability Analysis and Reporting\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/objectsecurity.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/objectsecurity.com\\\/#\\\/schema\\\/person\\\/b95c5e028381014293b246279d5006bb\",\"name\":\"ObjectSecurity LLC\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/be2a06226a4b21354a1205403b77c97bbc16034deb14ef458f64ac034957bf3a?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/be2a06226a4b21354a1205403b77c97bbc16034deb14ef458f64ac034957bf3a?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/be2a06226a4b21354a1205403b77c97bbc16034deb14ef458f64ac034957bf3a?s=96&d=mm&r=g\",\"caption\":\"ObjectSecurity LLC\"},\"description\":\"ObjectSecurity LLC is a leader in solving complex, evolving defense and industrial cybersecurity and supply chain risk challenges that threaten national security and production downtime.\",\"sameAs\":[\"https:\\\/\\\/objectsecurity.com\"]}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"ObjectSecurity Awarded USAF Contract for Military\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation - ObjectSecurity","robots":{"index":"noindex","follow":"follow"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/#article","isPartOf":{"@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/"},"author":{"name":"ObjectSecurity LLC","@id":"https:\/\/objectsecurity.com\/#\/schema\/person\/b95c5e028381014293b246279d5006bb"},"headline":"ObjectSecurity Awarded USAF Contract for Military\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation","datePublished":"2018-11-01T18:57:29+00:00","dateModified":"2025-12-05T03:43:37+00:00","mainEntityOfPage":{"@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/"},"wordCount":1988,"image":{"@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/objectsecurity.com\/wp-content\/uploads\/2024\/04\/Untitled-design-1.png?fit=600%2C337&ssl=1","articleSection":["Access Control","DoD\/gov"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/","url":"https:\/\/objectsecurity.com\/usaf-openpmf\/","name":"ObjectSecurity Awarded USAF Contract for Military\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation - ObjectSecurity","isPartOf":{"@id":"https:\/\/objectsecurity.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/#primaryimage"},"image":{"@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/objectsecurity.com\/wp-content\/uploads\/2024\/04\/Untitled-design-1.png?fit=600%2C337&ssl=1","datePublished":"2018-11-01T18:57:29+00:00","dateModified":"2025-12-05T03:43:37+00:00","author":{"@id":"https:\/\/objectsecurity.com\/#\/schema\/person\/b95c5e028381014293b246279d5006bb"},"breadcrumb":{"@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/objectsecurity.com\/usaf-openpmf\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/#primaryimage","url":"https:\/\/i0.wp.com\/objectsecurity.com\/wp-content\/uploads\/2024\/04\/Untitled-design-1.png?fit=600%2C337&ssl=1","contentUrl":"https:\/\/i0.wp.com\/objectsecurity.com\/wp-content\/uploads\/2024\/04\/Untitled-design-1.png?fit=600%2C337&ssl=1","width":600,"height":337},{"@type":"BreadcrumbList","@id":"https:\/\/objectsecurity.com\/usaf-openpmf\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/objectsecurity.com\/"},{"@type":"ListItem","position":2,"name":"ObjectSecurity Awarded USAF Contract for Military\/Government Feasibility Study of OpenPMF\u2122 Security Policy Automation"}]},{"@type":"WebSite","@id":"https:\/\/objectsecurity.com\/#website","url":"https:\/\/objectsecurity.com\/","name":"ObjectSecurity","description":"OT\/ICS Asset Binary Vulnerability Analysis and Reporting","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/objectsecurity.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/objectsecurity.com\/#\/schema\/person\/b95c5e028381014293b246279d5006bb","name":"ObjectSecurity LLC","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/be2a06226a4b21354a1205403b77c97bbc16034deb14ef458f64ac034957bf3a?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/be2a06226a4b21354a1205403b77c97bbc16034deb14ef458f64ac034957bf3a?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/be2a06226a4b21354a1205403b77c97bbc16034deb14ef458f64ac034957bf3a?s=96&d=mm&r=g","caption":"ObjectSecurity LLC"},"description":"ObjectSecurity LLC is a leader in solving complex, evolving defense and industrial cybersecurity and supply chain risk challenges that threaten national security and production downtime.","sameAs":["https:\/\/objectsecurity.com"]}]}},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/objectsecurity.com\/wp-content\/uploads\/2024\/04\/Untitled-design-1.png?fit=600%2C337&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/posts\/6492","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/comments?post=6492"}],"version-history":[{"count":1,"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/posts\/6492\/revisions"}],"predecessor-version":[{"id":6493,"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/posts\/6492\/revisions\/6493"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/media\/4601"}],"wp:attachment":[{"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/media?parent=6492"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/categories?post=6492"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/objectsecurity.com\/wp-json\/wp\/v2\/tags?post=6492"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}