Method and system for protecting operations of trusted internal networks

US 6,321,337 B1
Filed: 09/09/1998
Issued: 11/20/2001
Est. Priority Date: 09/09/1997
Status: Expired due to Fees

First Claim

Patent Images

1. A system for allowing limited communication between an external computing environment and an internal computing environment, the system comprising:

a first processing entity for receiving an external message from the external environment, the external message containing content represented in one or more external environment protocols, for converting the external message to a simplified message by mapping all or part of the external message content into a simplified representation of the content in accordance with a simplified protocol, the simplified protocol defining a simplified representation for only some content which may be contained in a message represented in the one or more external environment protocols, and for transmitting the simplified message;

a second processing entity for receiving the simplified message transmitted by the first processing entity, for converting the simplified message to an internal message by mapping the simplified representation of the content into an internal representation of the content in accordance with one or more internal environment protocols, and for transmitting the internal message to an application operating on the internal computing environment; and

a communication channel between the first and second processing entities for transferring the simplified message.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention is a security gateway system positioned between an external, untrusted computing environment and an internal, trusted computing environment that converts messages received from the external environment into simplified messages and converts the simplified messages into messages suitable for use on the internal environment. The conversion involves the removal of external environment transfer protocols and the reduction of the content of the messages left after removing the protocols into a simplified representation of the content to create a simplified message. The simplified representation is then converted to an internal message by converting the simplified representation to a representation appropriate to the internal environment, including to applications operating on the internal environment, and adding internal environment protocols, including transfer protocols, to the converted message. Simplified representations exist for some but not necessarily all types of content which may be received from the external environment, thus limiting the content which may be passed from the external to the internal environment.

436 Citations

24 Claims

1. A system for allowing limited communication between an external computing environment and an internal computing environment, the system comprising:
- a first processing entity for receiving an external message from the external environment, the external message containing content represented in one or more external environment protocols, for converting the external message to a simplified message by mapping all or part of the external message content into a simplified representation of the content in accordance with a simplified protocol, the simplified protocol defining a simplified representation for only some content which may be contained in a message represented in the one or more external environment protocols, and for transmitting the simplified message;
  
  a second processing entity for receiving the simplified message transmitted by the first processing entity, for converting the simplified message to an internal message by mapping the simplified representation of the content into an internal representation of the content in accordance with one or more internal environment protocols, and for transmitting the internal message to an application operating on the internal computing environment; and
  
  a communication channel between the first and second processing entities for transferring the simplified message.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The system of claim 1, wherein the second processing entity is further capable of receiving an internal message from the application operating on the internal computing environment, the internal message containing second content represented in the internal protocol, for converting the internal message into a simplified message by mapping all or part of the second content into a simplified representation of the second content in accordance with the simplified protocol, and transmitting the simplified message to the second processing entity via the communication channel.
  - 3. The system of claim 2, wherein the first processing entity is further capable of receiving a simplified message from the second processing entity, converting the simplified message to an external message by mapping the simplified representation of the second content into an external environment representation of the second content in accordance with the external environment protocol, and transmitting the external message to the external computing environment.
  - 4. The system of claim 3, wherein the first and second processing entities each comprise a channel manager for encapsulating the simplified message to be transmitted with a communication channel transfer protocol and for removing the communication channel transfer protocol from a received simplified message.
  - 5. The system of claim 4, wherein the step of encapsulating the simplified message with a communication channel transfer protocol comprises adding a header to the simplified message which contains no routing information.
  - 6. The system of claim 3, wherein the first and second processing entities each comprise a protocol manager for converting a simplified message to an external or internal message, respectively, and for converting an external or internal message, respectively, to a simplified message.
  - 7. The system of claim 6, wherein the protocol manager comprises a plurality of protocol entities, each protocol entity mapping content represented in simplified representation to one of a plurality of external environment or internal environment representations or mapping content represented in one of the plurality of external environment or internal environment representations to the simplified representation.
  - 8. The system of claim 7, wherein the protocol manager comprises a protocol entity table for use in selecting one of the plurality of protocol entities for use in mapping content a given message.
  - 9. The system of claim 1, wherein the first processing entity comprises a first central processing unit and the second processing entity comprises a second central processing unit.
  - 10. The system of claim 1, wherein the first and second processing entities reside on a single central processing unit and are separated by a secured sharing program operating on the central processing unit.
  - 11. The system of claim 1, wherein the communication channel transfers messages only between the first and second processing entities.
  - 12. The system of claim 1, comprises means for allowing users to define a subset of all content which may be contained in a message represented in the external environment protocol as having simplified representations in the simplified protocol.
  - 13. The system of claim 12, wherein the simplified protocol defines simplified representations for a subset of all content which may be contained in a message represented in the external environment protocol, the subset excluding content which may cause harm to the internal computing environment.

14. A method for allowing limited communication between an external computing environment and an internal computing environment, the method comprising:
- receiving an external message from the external computing environment, the message comprising content represented in one or more external environment protocols;
  
  reducing the received external message to a simplified message by mapping all or part of the external message content into simplified representations of the content in accordance with a simplified protocol, the simplified protocol defining simplified representations for only some content which may be contained in a message represented in the one or more external environment protocol;
  
  converting the simplified message to an internal message by mapping the simplified representation of the content in the simplified message into an internal environment representation of the content in accordance with one or more internal environment protocols; and
  
  transferring the application message to an application operating on the internal computing environment.
- View Dependent Claims (15, 16, 17, 18, 19, 20, 21)
- - 15. The method of claim 14, wherein the steps of receiving an external message and reducing the external message to the simplified message are performed on a first processing entity and the steps of converting the simplified message to the internal message and transferring the internal message to the application are performed on a second processing entity, the method comprising transmitting the simplified message from the first processing entity to the second processing entity over a communication channel.
  - 16. The method of claim 15, comprising encapsulating the simplified message with a communication channel transfer protocol before transmitting the simplified message, and removing the communication channel transfer protocol from the simplified message before converting the simplified message to the application message.
  - 17. The method of claim 14, comprising:
18. The method of claim 17, wherein the step of reducing the received internal message to the simplified message comprises mapping all or part of the application content into the simplified representation of the application content in accordance with the simplified protocol.
19. The method of claim 18, wherein the step of converting the simplified message to the external message comprises mapping the application content contained in the simplified message into an external environment representation of the application content in accordance with one of a plurality of external environment protocols.
20. The method of claim 19, wherein the step of converting the simplified message to the external message further comprises encapsulating the mapped application content in one or more transfer communication protocols for the external computing environment.
21. The method of claim 14, wherein a first part of the external message content is not defined by simplified representations in the simplified protocol, and wherein the step of reducing the received external message to the simplified message comprises mapping only a second part of the external message content into simplified representations.

22. A system for allowing limited communication between an internal computing environment and an external computing environment, the system comprising:
- a first processing entity for receiving an application message from an application operating on the internal computing environment, the application message containing application content represented in one or more internal environment protocols, for converting the application message into a simplified message by mapping all or part of the application content into a simplified representation of the application content in accordance with a simplified protocol, the simplified protocol defining simplified representations for only some content which may be contained in a message represented in the application protocol, and for transmitting the simplified message;
  
  a second processing entity for receiving the simplified message from the first processing entity, converting the simplified message to an external message by mapping the simplified representation of the application content into an external environment representation of the second content in accordance with one or more external environment protocols, and transmitting the external message to the external computing environment; and
  
  a communication channel between the first and second processing entities for transferring the simplified message.

23. A method for allowing limited communication between an internal computing environment and an external computing environment, the method comprising:
- receiving an application message from an application operating on the internal computing environment, the application message containing application content represented in one or more internal environment protocols;
  
  reducing the received application message to a simplified message comprising all or part of the application content by mapping all or part of the application content into the simplified representation of the application content in accordance with a simplified protocol, the simplified protocol defining simplified representations for only some content which may be contained in a message represented in the one or more internal environment protocols;
  
  converting the simplified message to an external message by mapping the simplified representation of the application content in the simplified message into an external environment representation of the content in accordance with one or more external environment protocols; and
  
  transmitting the external message to the external computing environment.

24. A method for enabling formal verification of a system, the system comprising a first processing entity and a second processing entity connected by a communication bus, the first processing entity being connected to an untrusted computing environment and the second processing entity being connected to a trusted computing environment, the method comprising:
- providing a simplified communication protocol between the first and second processing entities comprising data for transferring messages only between the first and second processing entities; and
  
  formally verifying only the second processing entity.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
Sanctum LTD. (International Business Machines Corporation)
Inventors
Solan, Eilon, Raanan, Gil, Reshef, Eran
Primary Examiner(s)
Trammell, James P.
Assistant Examiner(s)
Elisca, Pierre E.

Application Number

US09/149,911
Time in Patent Office

1,168 Days
Field of Search

713/200, 713/201, 713/202, 713/151, 713/152, 713/153, 709/225, 709/227, 709/229, 709/230, 709/232
US Class Current

726/14
CPC Class Codes

G06F 21/53 by executing in a restricte...

H04L 63/0263 Rule management

Method and system for protecting operations of trusted internal networks

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

436 Citations

24 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system for protecting operations of trusted internal networks

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

436 Citations

24 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links