Secure segregation of data of two or more domains or trust realms transmitted through a common data channel
First Claim
1. A system for securely transporting data to multiple domains comprising:
- a common channel for carrying data of a plurality of domains wherein said plurality of domains includes at least a first domain and a second domain;
at least one switch through which data enters said common channel;
at least one switch through which data exits said common channel;
a first plurality of routers coupled to said at least one switch through which data enters said common channel;
a second plurality of routers coupled to said at least one switch through which data exits said common channel;
a first filtering means for filtering data traveling through said at least one switch through which data enters said common channel and said at least one switch through which data exits said common channel based on a first filtering criteria;
a second filtering means for filtering data traveling through said plurality of routers coupled to said at least one switch through which data enters said common channel based on a second filtering criteria;
a third filtering means for filtering data traveling through said plurality of routers coupled to said at least one switch through which data exits said common channel based on a third filtering criteria;
wherein said first filtering means, said second filtering means, and said third filtering means prevent data designated for said first domain from transferring to said second domain and to prevent data designated for said second domain from transferring to said first domain.
2 Assignments
0 Petitions
Accused Products
Abstract
A system for transporting data comprising a first domain comprising a first plurality of filters in a first communication channel, the first communications channel including a common portion, the first plurality of filters employing a first plurality of filtering criteria; a second domain comprising a second plurality of filters in a second communications channel, the second communications channel including the common portion, the second plurality of filters employing a second plurality of filtering criteria; a plurality of managers each coupled to one of the first plurality of filters and the second plurality of filters, each of the plurality of managers comprising means for configuring the one of the first plurality of filters and the second plurality of filters; and at least one control terminal coupled to the plurality of managers for controlling said plurality of managers.
-
Citations
37 Claims
-
1. A system for securely transporting data to multiple domains comprising:
-
a common channel for carrying data of a plurality of domains wherein said plurality of domains includes at least a first domain and a second domain;
at least one switch through which data enters said common channel;
at least one switch through which data exits said common channel;
a first plurality of routers coupled to said at least one switch through which data enters said common channel;
a second plurality of routers coupled to said at least one switch through which data exits said common channel;
a first filtering means for filtering data traveling through said at least one switch through which data enters said common channel and said at least one switch through which data exits said common channel based on a first filtering criteria;
a second filtering means for filtering data traveling through said plurality of routers coupled to said at least one switch through which data enters said common channel based on a second filtering criteria;
a third filtering means for filtering data traveling through said plurality of routers coupled to said at least one switch through which data exits said common channel based on a third filtering criteria;
wherein said first filtering means, said second filtering means, and said third filtering means prevent data designated for said first domain from transferring to said second domain and to prevent data designated for said second domain from transferring to said first domain. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A system for securely transporting data to multiple domains comprising:
-
a common channel for carrying data of a plurality of domains wherein said plurality of domains includes at least a first domain and a second domain;
at least one switch through which data enters said common channel;
at least one switch through which data exits said common channel;
a first plurality of routers coupled to said at least one switch through which data enters said common channel;
a second plurality of routers coupled to said at least one switch through which data exits said common channel;
a switch coupled to one of said first plurality of routers;
a switch coupled to one of said second plurality of routers;
a first filtering means for filtering data traveling through said at least one switch through which data enters said common channel and said at least one switch through which data exits said common channel based on a first filtering criteria;
a second filtering means for filtering data traveling through said plurality of routers coupled to said at least one switch through which data enters said common channel based on a second filtering criteria;
a third filtering means for filtering data traveling through said plurality of routers coupled to said at least one switch through which data exits said common channel based on a third filtering criteria;
a fourth filtering means for filtering data traveling through said switch coupled to one of said first plurality of routers based on a fourth filtering criteria;
a fifth filtering means for filtering data traveling through said switch coupled to one of said second plurality of routers based on a fifth filtering criteria;
wherein said first filtering means, said second filtering means, said third filtering means, said fourth filtering means, and fifth filtering means prevent data designated for said first domain from transferring to said second domain and to prevent data designated for said second domain from transferring to said first domain. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A system for transporting data comprising:
-
a first domain comprising a first plurality of filters in a first communications channel, the first communications channel including a common portion, a first terminal coupled at one end of the first communications channel, and a second terminal coupled at another end of the first communications channel, the first plurality of filters employing a first plurality of filtering criteria;
a second domain comprising a second plurality of filters in a second communications channel, the second communications channel including the common portion, a third terminal coupled at one end of the second communications channel, and a fourth terminal coupled at another end of the second communications channel, the second plurality of filters employing a second plurality of filtering criteria. - View Dependent Claims (26, 27, 28, 29, 30, 31, 32)
-
-
33. A system for transporting data comprising:
-
a first domain comprising a first plurality of filters in a first communications channel, the first communications channel including a common portion, the first plurality of filters employing a first plurality of filtering criteria;
a second domain comprising a second plurality of filters in a second communications channel, the second communications channel including the common portion, the second plurality of filters employing a second plurality of filtering criteria;
a plurality of managers each coupled to one of the first plurality of filters and the second plurality of filters, each of the plurality managers comprising means for configuring the one of the first plurality of filters and the second plurality of filters;
at least one control terminal coupled to the plurality of managers for controlling said plurality of managers. - View Dependent Claims (34, 35, 36, 37)
-
Specification