Modular cryptographic device providing enhanced communication control features and related methods
First Claim
1. A cryptographic device comprising:
- a cryptographic module and a communications module coupled thereto;
said cryptographic module comprising a user network interface, a host network processor coupled to said user network interface, and a cryptographic processor coupled to said host network processor;
said communications module comprising a network communications interface coupled to said cryptographic processor;
said host network processor generating cryptographic processor command packets for said cryptographic processor each comprising an address portion and a data portion, and encapsulating command packets for said communications module in the data portions of said cryptographic processor command packets;
said cryptographic processor passing the communications module command packets to said communications module without performing cryptographic processing thereon.
1 Assignment
0 Petitions
Accused Products
Abstract
A cryptographic device may include a cryptographic module and a communications module coupled thereto. The cryptographic module may include a user network interface, a host network processor coupled to the user network interface, and a cryptographic processor coupled to the host network processor. Additionally, the communications module may include a network communications interface coupled to the cryptographic processor. The host processor may generate cryptographic processor command packets for the cryptographic processor each having an address portion and a data portion, and it may also encapsulate command packets for the communications module in the data portions of the cryptographic processor command packets. The cryptographic processor may pass the communications module command packets to the without performing cryptographic processing thereon.
33 Citations
41 Claims
-
1. A cryptographic device comprising:
-
a cryptographic module and a communications module coupled thereto;
said cryptographic module comprising a user network interface, a host network processor coupled to said user network interface, and a cryptographic processor coupled to said host network processor;
said communications module comprising a network communications interface coupled to said cryptographic processor;
said host network processor generating cryptographic processor command packets for said cryptographic processor each comprising an address portion and a data portion, and encapsulating command packets for said communications module in the data portions of said cryptographic processor command packets;
said cryptographic processor passing the communications module command packets to said communications module without performing cryptographic processing thereon. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A cryptographic device comprising:
-
a cryptographic module and a communications module coupled thereto;
said cryptographic module comprising a user Local Area Network (LAN) interface, a host network processor coupled to said user LAN interface, and a cryptographic processor coupled to said host network processor;
said communications module comprising a network LAN interface coupled to said cryptographic processor;
said host network processor generating cryptographic processor command packets for said cryptographic processor each comprising an address portion and a data portion, and encapsulating Ethernet command packets for said communications module in the data portions of said cryptographic processor command packets, said host network processor formatting the data portions based upon the simple network management protocol (SNMP);
said cryptographic processor passing the communications module command packets to said communications module without performing cryptographic processing thereon. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A communications method comprising:
-
coupling a cryptographic module to a network device, the cryptographic module comprising a user network interface, a host network processor coupled to the user network interface, and a cryptographic processor coupled to the host network processor;
providing a communications module comprising a network communications interface coupled to the cryptographic processor;
causing the host network processor to generate cryptographic processor command packets for the cryptographic processor each comprising an address portion and a data portion, and to encapsulate command packets for the communications module in the data portions of the cryptographic processor command packets; and
causing the cryptographic processor to pass the communications module command packets to the communications module without performing cryptographic processing thereon. - View Dependent Claims (22, 23, 24, 25)
-
-
26. A communications system comprising:
-
a plurality of network devices coupled together to define a network, and a cryptographic device coupled to at least one of said network devices;
said cryptographic device comprising a cryptographic module coupled to said at least one network device, and a communications module coupled to said cryptographic module;
said cryptographic module comprising a user network interface, a host network processor coupled to said user network interface, and a cryptographic processor coupled to said host network processor;
said communications module comprising a network communications interface coupled to said cryptographic processor;
said host network processor generating cryptographic processor command packets for said cryptographic processor each comprising an address portion and a data portion, and encapsulating command packets for said communications module in the data portions of said cryptographic processor command packets;
said cryptographic processor passing the communications module command packets to said communications module without performing cryptographic processing thereon. - View Dependent Claims (27, 28, 29, 30, 31, 32, 33, 34, 35)
-
-
36. A cryptographic module comprising:
-
a user network interface;
a host network processor coupled to said user network interface; and
a cryptographic processor coupled to said host network processor;
said host network processor generating cryptographic processor command packets for said cryptographic processor each comprising an address portion and a data portion, and encapsulating command packets for a network communications module in the data portions of said cryptographic processor command packets;
said cryptographic processor passing the communications module command packets to the network communications module without performing cryptographic processing thereon. - View Dependent Claims (37, 38, 39, 40, 41)
-
Specification