Routing systems and methods
First Claim
Patent Images
1. An apparatus comprising:
- a network interface connected to a public computer network;
a secure system comprising one or more memory devices storing data;
a routing system disposed between the network interface and the secure system;
the routing system wherein (1) a first unidirectional communication channel enables communication from the network interface to the routing system, (2) a second unidirectional communication channel enables communication from the routing system to the network interface, (3) a third unidirectional communication channel enables communication from the secure system to the routing system, and (4) a fourth unidirectional communication channel enables communication from the routing system to the secure system;
the routing system wherein the first, second, third, and fourth unidirectional communication channels each includes an air gap;
the routing system wherein the air gap for the first and third unidirectional communication channels includes a video display monitor and a machine vision interface interpreting one or more images displayed on the video display monitor;
the routing system wherein the air gap for the second and fourth unidirectional communication channels includes a virtual keyboard and mouse interface; and
the routing system accessing the data in the secure system and communicating the data to the network interface.
1 Assignment
0 Petitions
Accused Products
Abstract
Example routing systems and methods are described. In one implementation, an apparatus includes a network interface, a secure system, and a routing system disposed between the network interface and the secure system. The routing system communicates with the network interface along a first data transmission channel and communicates with the secure system along a second data transmission channel. The secure system is not visible from the network interface. The routing system accesses data in the secure system and communicates the data to the network interface.
-
Citations
16 Claims
-
1. An apparatus comprising:
-
a network interface connected to a public computer network; a secure system comprising one or more memory devices storing data; a routing system disposed between the network interface and the secure system; the routing system wherein (1) a first unidirectional communication channel enables communication from the network interface to the routing system, (2) a second unidirectional communication channel enables communication from the routing system to the network interface, (3) a third unidirectional communication channel enables communication from the secure system to the routing system, and (4) a fourth unidirectional communication channel enables communication from the routing system to the secure system; the routing system wherein the first, second, third, and fourth unidirectional communication channels each includes an air gap; the routing system wherein the air gap for the first and third unidirectional communication channels includes a video display monitor and a machine vision interface interpreting one or more images displayed on the video display monitor; the routing system wherein the air gap for the second and fourth unidirectional communication channels includes a virtual keyboard and mouse interface; and the routing system accessing the data in the secure system and communicating the data to the network interface. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 12)
-
-
9. A method comprising:
-
receiving, at a terminal including a video display monitor, a request to access data in a secure database; translating, by the terminal, the request to access data in the secure database; communicating, via a first unidirectional communication channel, the translated request from the terminal to a routing system, the first unidirectional communication channel including an air gap comprising the video display monitor and a machine vision interface interpreting one or more images displayed on the video display monitor; the routing system accessing the requested data in the secure database based on the translated request; the routing system communicating the requested data to the terminal via a second unidirectional communication channel, the second unidirectional channel including an air gap comprising a virtual keyboard and mouse interface; the terminal translating the data received from the routing system; and the terminal communicating the requested data to a source of the request. - View Dependent Claims (10, 11, 13, 14, 15, 16)
-
Specification