MULTI-LEVEL SECURITY DOMAIN SEPARATION USING SOFT-CORE PROCESSOR EMBEDDED IN AN FPGA
First Claim
1. A system for performing operations on data in two different security domains, the system comprising a field-programmable gate array (FPGA), the FPGA comprising:
- a first security domain having a first classification level, the first security domain comprising;
first processing circuitry anda first soft-core processor, anda second security domain having a second classification level, the second security domain comprising;
second processing circuitry anda second soft-core processor, andone or more security domain separation gates connected to the first security domain and to the second security domain, the one or more security domain separation gates configured;
to receive first data from the first security domain and transmit the first data to the second security domain when the first data complies with a first set of rules, andto receive second data from the second security domain and transmit the second data to the first security domain when the second data complies with a second set of rules,the only data paths between the first security domain and the second security domain being through the one or more security domain separation gates.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method for operating multiple security domains on one circuit card assembly, using a field-programmable gate array (FPGA) with an embedded security domain separation gate providing the MAC between multiple soft-core CPUs also embedded in the FPGA. In one embodiment, the FPGA is segregated into two or more security domains with no data paths between soft-core CPUs in each security domain except through the security domain separation gate. The security domain separation gate applies rules to any information to be transmitted between the security domains to avoid transmission of malicious content and to avoid transmission of information of a certain classification level or type to a security domain at a lower classification level or type.
23 Citations
15 Claims
-
1. A system for performing operations on data in two different security domains, the system comprising a field-programmable gate array (FPGA), the FPGA comprising:
-
a first security domain having a first classification level, the first security domain comprising; first processing circuitry and a first soft-core processor, and a second security domain having a second classification level, the second security domain comprising; second processing circuitry and a second soft-core processor, and one or more security domain separation gates connected to the first security domain and to the second security domain, the one or more security domain separation gates configured; to receive first data from the first security domain and transmit the first data to the second security domain when the first data complies with a first set of rules, and to receive second data from the second security domain and transmit the second data to the first security domain when the second data complies with a second set of rules, the only data paths between the first security domain and the second security domain being through the one or more security domain separation gates. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for controlling data flow between two security domains in a system, the system comprising a field-programmable gate array (FPGA),
the FPGA comprising: -
a first security domain having a first classification level, the first security domain comprising; first processing circuitry and a first soft-core processor, and a second security domain having a second classification level, the second security domain comprising; second processing circuitry and a second soft-core processor, and one or more security domain separation gates connected to the first security domain and to the second security domain, the one or more security domain separation gates configured; to receive first data from the first security domain and transmit the first data to the second security domain when the first data complies with a first set of rules, and to receive second data from the second security domain and transmit the second data to the first security domain when the second data complies with a second set of rules, the only communication paths between the first security domain and the second security domain being through the one or more security domain separation gates, the method comprising; receiving, by a security domain separation gate of the one or more security domain separation gates, data from the first security domain for transmission to the second security domain, applying a first set of rules to the data, and transmitting the data to the second security domain when the data comply with the rules. - View Dependent Claims (12, 13, 14, 15)
-
Specification