Secure architecture and apparatus using an independent computer cartridge
First Claim
1. A portable secure computer architecture for protecting information and at least one program for controlling said information, comprising:
- a single sealed cartridge and a computer contained within said cartridge, said computer having a central data processing means, memory means controlled by said central data processing means, information within said memory means, at least one program within said memory means which controls said central data processing means, and a connectorless communications means for providing communications into and out of said architecture, said single sealed cartridge insuring physical integrity of said computer contained within said single sealed cartridge and to provide convenient handling and portability enabling said portable secure computer architecture to be made physically secure when unused such as by being locked in a safe, said connectorless communications means facilitating portability of said single sealed cartridge and portable operation of said at least one program, said connectorless communications means being the sole means for transferring information into or out of said architecture to prevent said information and said at least one program from being accessed by any other means outside of said cartridge, said central data processing means having exclusive control over all information transfer into and out of said connectorless communications means to prevent said connectorless communications means from being used by some other means outside of said cartridge for accessing said memory means uncontrolled by said at least one program,thereby providing security by controlling all said information and said at least one program within said portable secure computer architecture exclusively from within said portable secure computer architecture.
7 Assignments
0 Petitions
Accused Products
Abstract
A portable secure computer architecture, apparatus, and method for protecting information and at least one program for controlling that information is disclosed comprising: a computer protected inside of a single sealed cartridge, the computer having a CPU, Memory, and a communications means for communicating with a host computer outside of the cartridge. All internal information and external communications are exclusively controlled by the internal program. Provision is also made for running a second program inside the architecture, while protecting secure information from that second program. Secure information is placed in a bank switched subdivision of memory. The subdivision is switched off by the information controlling program before the second program is permitted to run. Reactivating the protected subdivision causes a simultaneous non-maskable interrupt halting the second program and transferring control back to the first program.
39 Citations
4 Claims
-
1. A portable secure computer architecture for protecting information and at least one program for controlling said information, comprising:
- a single sealed cartridge and a computer contained within said cartridge, said computer having a central data processing means, memory means controlled by said central data processing means, information within said memory means, at least one program within said memory means which controls said central data processing means, and a connectorless communications means for providing communications into and out of said architecture, said single sealed cartridge insuring physical integrity of said computer contained within said single sealed cartridge and to provide convenient handling and portability enabling said portable secure computer architecture to be made physically secure when unused such as by being locked in a safe, said connectorless communications means facilitating portability of said single sealed cartridge and portable operation of said at least one program, said connectorless communications means being the sole means for transferring information into or out of said architecture to prevent said information and said at least one program from being accessed by any other means outside of said cartridge, said central data processing means having exclusive control over all information transfer into and out of said connectorless communications means to prevent said connectorless communications means from being used by some other means outside of said cartridge for accessing said memory means uncontrolled by said at least one program,
thereby providing security by controlling all said information and said at least one program within said portable secure computer architecture exclusively from within said portable secure computer architecture. - View Dependent Claims (2)
- a single sealed cartridge and a computer contained within said cartridge, said computer having a central data processing means, memory means controlled by said central data processing means, information within said memory means, at least one program within said memory means which controls said central data processing means, and a connectorless communications means for providing communications into and out of said architecture, said single sealed cartridge insuring physical integrity of said computer contained within said single sealed cartridge and to provide convenient handling and portability enabling said portable secure computer architecture to be made physically secure when unused such as by being locked in a safe, said connectorless communications means facilitating portability of said single sealed cartridge and portable operation of said at least one program, said connectorless communications means being the sole means for transferring information into or out of said architecture to prevent said information and said at least one program from being accessed by any other means outside of said cartridge, said central data processing means having exclusive control over all information transfer into and out of said connectorless communications means to prevent said connectorless communications means from being used by some other means outside of said cartridge for accessing said memory means uncontrolled by said at least one program,
-
3. A method of providing security for information, and at least one program for controlling said information, within a computer architecture comprising:
-
providing a single sealed cartridge; positioning in said single sealed cartridge a computer having a central data processing means, a connectorless communications means for providing communications into and out of said single sealed cartridge, memory means controlled by said central data processing means, said memory means containing information and said memory means containing at least one program for controlling said central data processing means; said positioning of said computer in said single sealed cartridge insuring physical integrity of said computer, said connectorless communications means facilitating portability of said single sealed cartridge and portable operation of said at least one program; said connectorless communications means being the sole means for transferring information into or out of said architecture to prevent said information and said at least one program from being accessed by any other means outside of said cartridge; said central data processing means having exclusive control over all information transfer into and out of said connectorless communications means to prevent said connectorless communications means from being used by some other means outside of said cartridge for accessing said memory means uncontrolled by said at least one program; utilizing said at least one program to control said central data processing means, and utilizing said at least one program to control said connectorless communications means and all passage of information into and out of said computer, whereby said at least one program exclusively controls all said information within said single sealed cartridge from within said single sealed cartridge, providing unbreachable control from within said computer architecture thereby securing said information within said computer architecture. - View Dependent Claims (4)
-
Specification