System and method for a secure I/O interface
First Claim
1. A security processor to process incoming and outgoing packets, the security processor comprising:
- a switching system to send and receive packets;
a packet engine, coupled to the switching system, to handle classification processing for the incoming and outgoing packets; and
a cryptographic core, coupled to the packet engine, to provide encryption and decryption processing for packets received from the packet engine.
6 Assignments
0 Petitions
Accused Products
Abstract
A security processor performs all or substantially all security and network processing to provide a secure I/O interface system to protect computing hardware from unauthorized access or attack. The security processor sends and receives all incoming and outgoing data packets for a host device and includes a packet engine, coupled to a local data bus, to process the incoming and outgoing packets. The processor further comprises a cryptographic core coupled to the packet engine to provide encryption and decryption processing for packets processed by the packet engine. The packet engine also handles classification processing for the incoming and outgoing packets. A modulo engine may be coupled to the local data bus.
-
Citations
29 Claims
-
1. A security processor to process incoming and outgoing packets, the security processor comprising:
-
a switching system to send and receive packets;
a packet engine, coupled to the switching system, to handle classification processing for the incoming and outgoing packets; and
a cryptographic core, coupled to the packet engine, to provide encryption and decryption processing for packets received from the packet engine. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A security processing system comprising:
-
(a) a security processor comprising;
a switching system to send outgoing and to receive incoming packets;
a packet engine, coupled to the switching system, to handle classification processing for the incoming and outgoing packets;
a cryptographic core, coupled to the packet engine, to provide encryption and decryption processing for packets received from the packet engine; and
a local data bus coupled to the switching system; and
(b) a memory coupled to the local data bus. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22)
-
-
23. A security processor to connect a trusted network to an un-trusted network for data packet communication, the security processor comprising:
-
a first interface to couple to the trusted network and to the un-trusted network;
a second interface to couple to a host processor;
a switching system operable to selectively couple to the first interface or the second interface;
a local data bus, coupled to the switching system;
a plurality of packet engines coupled to the switching system;
a plurality of cryptographic cores each coupled to one of the plurality of packet engines; and
a control processor, coupled to the local data bus, to control data packet flow within the security processor. - View Dependent Claims (24, 25)
-
-
26. A communication system comprising:
-
a trusted network; and
a secure interface coupled to the trusted network to carry all incoming and outgoing communications of the trusted network, wherein the secure interface comprises a security processor to handle substantially all security processing for the incoming and outgoing communications. - View Dependent Claims (27, 28, 29)
-
Specification