×

SINGLE COMPUTER-BASED VIRTUAL CROSS-DOMAIN SOLUTIONS

  • US 20160205215A1
  • Filed: 05/14/2015
  • Published: 07/14/2016
  • Est. Priority Date: 01/13/2015
  • Status: Active Grant
First Claim
Patent Images

1. A one-way cross-domain system for transferring information from a client in a first security domain to a server in a second separate security domain, comprising:

  • a server computer configured to run a first virtual machine and a second virtual machine, the first virtual machine completely separate from the second virtual machine;

    a first network interface card installed in the server computer for coupling to the client in the first security domain;

    a second network interface card installed in the server computer for coupling to the server in the second separate security domain;

    a one-way transmit card installed in the server computer, the one-way transmit card having an external output;

    a one-way receive card installed in the server computer, the one-way receive card having an external input;

    an external communications link having a first end coupled only to the external output of the one-way transmit card and a second end coupled only to the external input of the one-way receive card;

    wherein the one-way transmit card is configured to only communicate with the one-way receive card via the external communications link;

    wherein the first virtual machine is configured to only communicate with the first network interface card and the one-way transmit card, the first virtual machine configured to receive information from the client via the first network interface card and to forward the received information to the one-way transmit card;

    wherein the second virtual machine is configured to only communicate with the one-way receive card and the second network interface card, the second virtual machine configured to receive the information forwarded from the first virtual machine via the one-way transmit card, the external communications link, and the one-way receive card and to forward the received information to the server in the second separate security domain via the second network interface card; and

    wherein the client is only communicatively coupled to the server via the first network interface card, the first virtual machine, the transmit card, the external communications link, the receive card, the second virtual machine and the second network interface card.

View all claims
  • 6 Assignments
Timeline View
Assignment View
    ×
    ×