Abstract: A trusted relabeler system and software is provided that allows for the simultaneous reclassification of multiple files to multiple classification labels (security domains or computer networks) through automation of the multi-person review process. Roles, used to break down the requirements of the multi-person review process, dictate what specific function a user can perform. There are three roles used: Submitter, Processor, and Reviewer. Users are assigned one or more roles and a set of source and destination classification labels inside the security policy of a specific user that are bounded (restricted) by the clearance (maximum classification) assigned to a user on the trusted operating system on which the trusted relabeler system is implemented. The bundled documents to be reclassified are virus scanned, file typed, and searched for “dirty words” indicative of a particular classification level. Files are upgraded or downgraded only if all processes are completed successfully.

Abstract: A Sensitivity Label Translation system allows internal Compartmented Mode Workstation (CMW) format labels to be translated to SELinux policy labels and vice-versa. This translation occurs by mapping the internal CMW bit-mapped representation to predefined SELinux policy strings and vice-versa. Particular enabled CMW categories are converted into SELinux category strings and vice-versa. The respective category values and policies are unaffected.

Abstract: A Sensitivity Label Translation system allows internal Compartmented Mode Workstation (CMW) format labels to be translated to SELinux policy labels and vice-versa. This translation occurs by mapping the internal CMW bit-mapped representation to predefined SELinux policy strings and vice-versa. Particular enabled CMW categories are converted into SELinux category strings and vice-versa. The respective category values and policies are unaffected.

Abstract: A trusted relabeler system and software is provided that allows for the simultaneous reclassification of multiple files to multiple classification labels (security domains or computer networks) through automation of the multi-person review process. Roles, used to break down the requirements of the multi-person review process, dictate what specific function a user can perform. There are three roles used: Submitter, Processor, and Reviewer. The Submitter is allowed to submit one or more documents for reclassification, while the Processor is allowed to submit one or more documents for reclassification, perform an initial review and acceptance of the document, and assign a specific Reviewer for the document. The Reviewer is allowed to perform final verification and, upon acceptance, allows the document to be reclassified appropriately.