In the cyber security space, a cross domain solution is a bridge connecting two different security domains, permitting data to flow from one domain into another while minimising the associated security risks. A filter, or more formally a verification engine, is a suggested component in a cross domain solution.
A filter inspects the content flowing through the bridge. Data failing inspection is captured for investigation by the security team.
This example implements a filter in Smooks where NITF (National Imagery Transmission Format) files are imported from an untrusted system into a trusted one. Widely used in national security systems, NITF is a binary file format that encapsulates imagery (e.g., JPEG) and its metadata. As part of the import, Smooks unpacks the NITF stream, ensures it's as expected, and repacks it before routing the repacked NITF stream to its destination. Should verification fail, Smooks puts the bad data put aside for human intervention.
mvn clean packagemvn exec:exec
