METHODS AND SYSTEMS FOR MANAGING CONCURRENT UNSECURED AND CRYPTOGRAPHICALLY SECURE COMMUNICATIONS ACROSS UNSECURED NETWORKS
First Claim
1. An endpoint comprising:
- a computing system including a programmable circuit operatively connected to a memory and a communication interface, the communication interface configured to send and receive data packets via a data communications network;
a filter defined in the memory of the computing system, the filter configured to define one or more access lists, each access list defining a group of access permissions for a community of interest, wherein the community of interest includes one or more users, and wherein an access list from among the one or more access lists defines a set of clear text access permissions associated with a community of interest;
a driver executable by the programmable circuit, the driver configured to cooperate with the communication interface to send and receive data packets via the data communications network, the driver configured to selectively split and encrypt data into a plurality of data packets to be transmitted via the data communications network based at least in part upon the contents of the one or more access lists.
10 Assignments
0 Petitions
Accused Products
Abstract
An endpoint, method, and authorization server are disclosed which can be used to allow concurrent secure and clear text communication. An endpoint includes a computing system including a programmable circuit operatively connected to a memory and a communication interface, the communication interface configured to send and receive data packets via a data communications network. The endpoint also includes a filter defined in the memory of the computing system, the filter configured to define one or more access lists, each access list defining a group of access permissions for a community of interest. The community of interest includes one or more users, and an access list from among the one or more access lists defines a set of clear text access permissions associated with a community of interest. The endpoint also includes a driver executable by the programmable circuit, the driver configured to cooperate with the communication interface to send and receive data packets via the data communications network. The driver is also configured to selectively split and encrypt data into a plurality of data packets to be transmitted via the data communications network based at least in part upon the contents of the one or more access lists.
-
Citations
21 Claims
-
1. An endpoint comprising:
-
a computing system including a programmable circuit operatively connected to a memory and a communication interface, the communication interface configured to send and receive data packets via a data communications network; a filter defined in the memory of the computing system, the filter configured to define one or more access lists, each access list defining a group of access permissions for a community of interest, wherein the community of interest includes one or more users, and wherein an access list from among the one or more access lists defines a set of clear text access permissions associated with a community of interest; a driver executable by the programmable circuit, the driver configured to cooperate with the communication interface to send and receive data packets via the data communications network, the driver configured to selectively split and encrypt data into a plurality of data packets to be transmitted via the data communications network based at least in part upon the contents of the one or more access lists. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method of authorizing an endpoint for use in a secure network, the method comprising:
-
transmitting a request from the endpoint to authorize a user of the endpoint for operation on the secure network, the request including an identity of a user of the endpoint; receiving at the endpoint a set of one or more keys associated with communities of interest, the communities of interest defined to include the user; and receiving at the endpoint one or more filters defining one or more access lists, wherein an access list from among the one or more access lists defines a set of clear text access permissions associated with a community of interest. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. An authorization system integrable into a secure network, the authorization system comprising:
-
an authorization server including a programmable circuit communicatively connected to a memory; a provisioning utility executable on the programmable circuit, the provisioning utility including program instructions which, when executed, cause the authorization server to; in response to a request from an endpoint to authorize a user of the endpoint for operation on the secure network, determine a set of communities of interest associated with the user defined in the provisioning utility; respond to the request by sending to the endpoint a set of one or more keys, associated with communities of interest, the communities of interest defined to include the user; and sending to the endpoint one or more filters defining one or more access lists, wherein an access list from among the one or more access lists defines a set of clear text access permissions associated with a community of interest. - View Dependent Claims (19, 20, 21)
-
Specification