High-assurance file-driven content filtering for secure network server
First Claim
1. A server for transferring data between networks, comprising means for creating a receiving task group, a filtering task group and a forwarding task group, wherein said filtering task group is dictated by a file that specifies filtering rules, said receiving task group receives data transmitted from a source host, said filtering task group filters said transmitted data based on said filtering rules, and said forwarding task group forwards only filtered data to a destination host.
2 Assignments
0 Petitions
Accused Products
Abstract
A server for transferring data between networks. The server is programmed to perform the following steps: (a) creating a receiving process, a filtering process and a forwarding process, the filtering process being dictated by a file that specifies filtering rules, wherein: (b) the receiving process receives data transmitted from a source host; (c) the filtering process filters the transmitted data based on the filtering rules; and (d) the forwarding process forwards only filtered data to a destination host.
-
Citations
20 Claims
- 1. A server for transferring data between networks, comprising means for creating a receiving task group, a filtering task group and a forwarding task group, wherein said filtering task group is dictated by a file that specifies filtering rules, said receiving task group receives data transmitted from a source host, said filtering task group filters said transmitted data based on said filtering rules, and said forwarding task group forwards only filtered data to a destination host.
-
10. A method of filtering data being transferred between networks, comprising the following steps:
-
(a) initiating a connection of a source host to a network server;
(b) creating a receiving process, a filtering process and a forwarding process within said network server in response to initiation of said connection, said filtering process being dictated by a file that specifies filtering rules;
(c) establishing a connection between said forwarding process and a destination host;
(d) establishing a connection between said receiving process and said source host;
(e) transmitting data from said source host to said receiving process;
(f) said filtering process filters said transmitted data based on said filtering rules; and
(g) said forwarding process forwards only filtered data to said destination host. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
- 19. A secure network server having trusted security functionality comprising receiving means and forwarding means, and non-trusted security functionality comprising filtering means, wherein said filtering means comprise a file that specifies filtering rules, said receiving means receive data transmitted from a source host, said filtering means filter said transmitted data based on said filtering rules, and said forwarding means forward only filtered data to a destination host.
Specification