Method and means for interconnecting different security level networks

US 6,108,787 A
Filed: 12/08/1997
Issued: 08/22/2000
Est. Priority Date: 03/31/1995
Status: Expired due to Term

First Claim

Patent Images

1. A means to control information flow between a first and second computer network where said first network has a higher security classification than said second network, the flow control means comprisingan information switch havingan information input,a first output connected to said first network,a second output connected to said second network,a controller having at least two states a first state controlling said information switch to connect said input to said first output and a second state controlling said information switch to connect said input to said second output, andan information diode having an input for receiving information from said second network and an output for transferring information received from said second network to said first network through a connection from said information diode output to said first network and which prevents information flowing from said output to said input.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An information flow control means for location between a first and second computer network where the first network has a higher security classification than the second network. The information flow control means comprises an information switch having an information input, a first output connected to the first network, a second output connected to the second network, a controller having at least two states, a first state controlling the information switch to connect the input to the first output and a second state controlling the information switch to connect the input to the second output, and an information diode having an input for receiving information from the second network and an output for transferring information received from the second network to the first network through a connection from the information diode output to the first network and which prevents information flowing from the output to the input.

108 Citations

73 Claims

1. A means to control information flow between a first and second computer network where said first network has a higher security classification than said second network, the flow control means comprisingan information switch havingan information input,a first output connected to said first network,a second output connected to said second network,a controller having at least two states a first state controlling said information switch to connect said input to said first output and a second state controlling said information switch to connect said input to said second output, andan information diode having an input for receiving information from said second network and an output for transferring information received from said second network to said first network through a connection from said information diode output to said first network and which prevents information flowing from said output to said input.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 71, 72, 73)
- - 2. An information flow control arrangement according to claim 1 wherein said controller is in said first state unless said controller is forced into said second state.
  - 3. An information flow control arrangement according to claim 2 further comprisingan indicator means for indicating the state of said controller to a user of said information flow control means.
  - 4. An information flow control arrangement according to claim 3 wherein said indicator means is visible or audible or tactile to a user of said flow control means.
  - 5. An information flow control arrangement according to claim 1 wherein said controller'"'"'s said second state controls said information switch to connect said input to both said first output and said second output.
  - 6. An information flow control arrangement according to claim 1 wherein said controller is trusted.
  - 7. An information flow control arrangement according to claim 1 wherein said controller further comprises a request signal input and is forced into said second state when a request signal is received at said request signal input.
  - 8. An information flow control arrangement according to claim 7 wherein said first network provides a request signal input.
  - 9. An information flow control arrangement according to claim 7 wherein said request signal is provided by a user operable switch which is physically associated with said information flow controller and adapted to be operable only by the user of said information flow control means.
  - 10. An information flow control arrangement according to claim 9 wherein said controller is not forced into said second state unless said user by operation of said user operable switch verifies said request signal is provided by said first network.
  - 11. An information flow control arrangement according to claim 1 wherein said information input is information generated by at least one user operable input device.
  - 12. An information flow control arrangement according to claim 1 wherein said information switch further comprises at least one further output connected to a respective further network and said controller having further states for controlling said information switch to connect said input to a respective further output.
  - 13. An information flow control arrangement according to claim 1 wherein said information output from said first output is provided to said first network which further comprises an information sealing means for associating an unique seal with said information output from said first output and communicating said sealed information within said first network.
  - 14. An information flow control arrangement according to claim 13 wherein said information sealing means is trusted.
  - 15. An information flow control arrangement according to claim 14 wherein said trusted information sealing means is physically associated with said flow control means.
  - 16. An information flow control arrangement according to claim 15 wherein said first network further comprises a gateway means for communicating information from said first network only when said information is associated with a unique seal associated to it by said information sealing means.
  - 17. An information flow control arrangement according to claim 16 wherein said gateway means is trusted.
  - 18. An information flow control arrangement according to claim 1 wherein said information output from said first output is provided to said first network which further comprises an information digital signature means for associating an unique digital signature with said information output from said first output and communicating said signed information within said first network.
  - 19. An information flow control arrangement according to claim 18 wherein said information digital signature means is trusted.
  - 20. An information flow control arrangement according to claim 19 wherein said trusted information digital signature means is physically associated with said flow control means.
  - 21. An information flow control arrangement according to claim 18 wherein said first network further comprises a gateway means for communicating information from said first network only when said information is associated with a unique digital signature associated to it by said digital signature means.
  - 22. An information flow control arrangement according to claim 18 wherein said gateway means is trusted.
  - 23. An information flow control arrangement according to claim 1 wherein said first network has an information processing means operating a high side client display application,and said second network has an information processing means operating an application server and using a remote display protocol, wherebyremote display commands are communicated to said first network information processing means through said information diode, such that whensaid information switch controller is in said second state, said information input is connected to said low side application server, and low side application server communicates to said high side client display application through said information diode.
  - 24. An information flow control arrangement according to claim 23 wherein said first network information processing means has a multi tasking operating system and said second network information processing means has a multi tasking operating system.
  - 25. An information flow control arrangement according to claim 23 wherein said first network information processing means has a single tasking operating system and said second network information processing means has a multi tasking operating system.
  - 26. An information flow control arrangement according to claim 23 wherein said first network information processing means has a multi tasking operating system and said second network information processing means has a single tasking operating system.
  - 27. An information flow control arrangement according to claim 23 wherein said first network information processing means has a single tasking operating system and said second network information processing means has a single tasking operating system.
  - 28. An information flow control arrangement according to claim 1 wherein said first network has a high side X server and a high side imitation X server, and said second network has a low side imitation X server and a low side X client such that when said information switch controller is in said second state, said information input is connected to said low side imitation X server, and the imitation X server communicates with said low side client and with said high side imitation X client through said information diode;
    - andsaid low side X client sends information to both said low side imitation X server and said high side imitation X client and said high side X server through said information diode which both then communicate with each other to provide a secure X environment for information received by said input.
  - 71. An information flow control arrangement according to one of claims 1, 29 or 50 wherein said controller further comprises a reset means for forcing said information switch into said first state.
  - 72. An information flow control arrangement according to claim 71 wherein if power is lost to said information switch means said controller enters said reset state upon resumption of power.
  - 73. An information flow control arrangement according to one of claims 1, 29 or 50 wherein data output from said second output is audited.

29. An information flow control arrangement for location between a first and second computer network where said first network has a higher security classification than said second network and said first network having at least one information processing means therein, said flow control means comprisingan information switch havingan information input,a first output connected to a said at least one information processing means within said first network,a second output connected to said second network,a controller having at least two states a first state controlling said information switch to connect said input to said first output and a second state controlling said information switch to connect said input to said second output, andan information diode having an input for receiving information from said second network and an output for transferring information from said second network to said at least one information processing means through a connection from said information diode output to said first network and which prevents information flowing from said output to said input.
- View Dependent Claims (30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49)
- - 30. An information flow control arrangement according to claim 29 wherein said controller is in said first state unless it is forced into said second state.
  - 31. An information flow control arrangement according to claim 30 further comprisingan indicator means for indicating the state of said controller to a user of said information flow control means.
  - 32. An information flow control arrangement according to claim 31 wherein said indicator means is visible or audible or tactile to a user of said flow control means.
  - 33. An information flow control arrangement according to claim 29 wherein said controller is trusted.
  - 34. An information flow control arrangement according to claim 29 wherein said controller further comprises a request signal input and is forced into said second state when a request signal is received at said request signal input.
  - 35. An information flow control arrangement according to claim 34 wherein said first network provides a request signal input to said controller request signal input.
  - 36. An information flow control arrangement according to claim 35 wherein said request signal is verifiable as being provided by said first network.
  - 37. An information flow control arrangement according to claim 34 wherein said request signal is provided by a user operable switch which is physically associated with said information flow controller and adapted to be operable only by the user of said information flow control means.
  - 38. An information flow control arrangement according to claim 29 wherein said information input is information generated by at least one user operable input device.
  - 39. An information flow control arrangement according to claim 29 wherein said information switch further comprises at least one further outer connected to a respective network and said controller having further states for controlling said information switch to connect said input to a respective further output.
  - 40. An information flow control arrangement according to claim 29 wherein said information output from said first output is provided to said first network which further comprises an information sealing means for associating an unique seal with said information output from said first output and communicating said sealed information within said first network.
  - 41. An information flow control arrangement according to claim 40 wherein said information sealing means is trusted.
  - 42. An information flow control arrangement according to claim 41 wherein said trusted information sealing means is physically associated with said flow control means.
  - 43. An information flow control arrangement according to claim 40 wherein said first network further comprises a gateway means for communicating information from said first network only when said information is associated with a unique seal associated to it by said information sealing means.
  - 44. An information flow control arrangement according to claim 43 wherein said gateway means is trusted.
  - 45. An information flow control arrangement according to claim 29 wherein said information output from said first output is provided to said information processing means which further comprises an information digital signature means for associating an unique digital signature with said information output from said first output and communicating said signed information within said first network.
  - 46. An information flow control arrangement according to claim 45 wherein said information digital signature means is trusted.
  - 47. An information flow control arrangement according to claim 46 wherein said trusted information digital signature means is physically associated with said flow control means.
  - 48. An information flow control arrangement according to claim 45 wherein said first network further comprises a gateway means for communicating information from said first network only when said information is associated with a unique digital signature associated to it by said digital signature means.
  - 49. An information flow control arrangement according to claim 48 wherein said gateway means is trusted.

50. An information flow control arrangement located between a first and second computer network where said first network has a higher security classification than said second network and at least one information processing means external of both said first or second networks, said flow control means comprisingan information switch havingan information input,and at least three outputs,a first output connected to said first network,a second output connected to said second network,a third output connected to said information processing means,a controller having at least three states, a first state controlling said information switch to connect said input to said first output,a second state controlling said information switch to connect said input to said second output, anda third state controlling said information switch to connect said input to said third output, andan information diode having an input for receiving information from said second network and an output for transferring information from said second network to said first network and/or to said information processing means.
- View Dependent Claims (51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70)
- - 51. An information flow control arrangement according to claim 50 wherein said controller is in said first state unless it is forced into another state.
  - 52. An information flow control arrangement according to claim 51 further comprisingan indicator means for indicating the state of said controller to a user of said information flow control means.
  - 53. An information flow control arrangement according to claim 52 wherein said indicator means is visible or audible or tactile to a user of said flow control means.
  - 54. An information flow control arrangement according to claim 50 wherein said controller is trusted.
  - 55. An information flow control arrangement according to claim 50 wherein said controller further comprises a request signal input and is forced into said second state when a request signal is received at said request signal input.
  - 56. An information flow control arrangement according to claim 55 wherein said first network or said information processing means provides a request signal input to said controller request signal input.
  - 57. An information flow control arrangement according to claim 56 wherein said request signal is verifiable as being provided respectively by said first network or said information processing means.
  - 58. An information flow control arrangement according to claim 55 wherein said request signal is provided by a user operable switch which is physically associated with said information flow controller and adapted to be operable only by the user of said information flow control means.
  - 59. An information flow control arrangement according to claim 50 wherein said information input is information generated by at least one user operable input device.
  - 60. An information flow control arrangement according to claim 50 wherein said information switch further comprises at least one further output connected to a respective network and said controller having further states for controlling said information switch to connect said input to a respective further output.
  - 61. An information flow control arrangement according to claim 50 wherein said information output from said first output is provided to said first network which further comprises an information sealing means for associating an unique seal with said information output from said first output and communicating said sealed information within said first network.
  - 62. An information flow control arrangement according to claim 61 wherein said information sealing means is trusted.
  - 63. An information flow control arrangement according to claim 62 wherein said trusted information sealing means is physically associated with said flow control means.
  - 64. An information flow control arrangement according to claim 61 wherein said first network further comprises a gateway means for communicating information from said first network only when said information is associated with a unique seal associated to it by said information sealing means.
  - 65. An information flow control arrangement according to claim 64 wherein said gateway means is trusted.
  - 66. An information flow control arrangement according to claim 50 wherein said information output from said first output is provided to said information processing means which further comprises an information digital signature means for associating an unique digital signature with said information output from said first output and communicating said signed information within said first network.
  - 67. An information flow control arrangement according to claim 66 wherein said information digital signature means is trusted.
  - 68. An information flow control arrangement according to claim 67 wherein said trusted information digital signature means is physically associated with said flow control means.
  - 69. An information flow control arrangement according to claim 68 wherein said first network further comprises a gateway means for communicating information from said first network only when said information is associated with a unique digital signature associated to it by said digital signature means.
  - 70. An information flow control arrangement according to claim 69 wherein said gateway means is trusted.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Commonwealth Scientific & Industrial Research Organisation (Commonwealth Of Australia As Represented By Department Of Industry, Innovation, Climate Change, Science, Research And Tertiary Education)
Original Assignee
Commonwealth of Australia
Inventors
Yiu, Kenneth Kwok-Hei, North, Christopher James Guildford, Griffin, John Edmund, Milner, Robert Brunyee, Anderson, Mark Stephen, Yesberg, John Desborough
Primary Examiner(s)
Palys, Joseph E.
Assistant Examiner(s)
Mai, Rijue

Application Number

US08/930,374
Time in Patent Office

988 Days
Field of Search

713/201, 713/200, 713/202, 714/13, 330/25, 364/200, 375/7, 379/95, 370/3, 380/30, 712/43, 709/203, 709/217, 709/218, 709/219, 709/223, 709/224, 709/225, 709/227, 709/228, 709/229, 709/249, 709/250, 709/251, 709/252, 709/253
US Class Current

726/5
CPC Class Codes

G06F 21/606   by securing the transmissio...

G06F 21/6236   between heterogeneous systems

G06F 21/85   interconnection devices, e....

G06F 2211/009   Trust

G06F 2221/2113   Multi-level security, e.g. ...

H04L 63/105   Multiple levels of security

Method and means for interconnecting different security level networks

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

108 Citations

73 Claims

Specification

Solutions

Use Cases

Quick Links

Method and means for interconnecting different security level networks

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

108 Citations

73 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links