Apparatus and method for controlling secure communications between peripheral components on computer buses connected by a bridge circuit
First Claim
1. A method of controlling communication between a first peripheral component located on a first computer bus and a second peripheral component located on a second computer bus, the first and second computer buses being connected by a bridge circuit, said method comprising the steps of:
- (a) in response to placing onto the first computer bus of a message from the first peripheral component addressed to the second peripheral component, determining the addresses of the first and second peripheral components;
(b) determining the bus on which the second peripheral component is located;
(c) if the second peripheral component is located on the second computer bus, applying the message to the bridge circuit;
(d) determining whether the address of the second peripheral component is an address to which the first peripheral component is permitted to communicate;
(e) if the address of the second peripheral component is not an address to which the first peripheral component is permitted to communicate, preventing communication of further messages from the first peripheral component; and
(f) if the address of the second peripheral component is an address to which the first peripheral component is permitted to communicate, permitting the bridge circuit to pass messages from the first peripheral component.
4 Assignments
0 Petitions
Accused Products
Abstract
An apparatus for and a method of controlling secure communication between peripheral components in a communication system. The security level of each peripheral component address in the communication system is fixed. When a message is communicated, a bus access arbiter (122) detects the address of the originating peripheral component, and an address detector (110, 114) detects the address of the destination peripheral component. An address comparison circuit (116) determines whether the address of the destination peripheral component is an address to which the originating peripheral component is permitted to communicate. The address comparison circuit (116) is responsive to the address of the destination peripheral component being an address to which the originating peripheral component is permitted to communicate by permitting communication of messages from the originating peripheral component. The address comparison circuit (116) is further responsive to the address of the destination peripheral component not being an address to the which the originating peripheral component is permitted to communicate by generating an error signal, preventing communication of further messages from the originating peripheral component.
77 Citations
7 Claims
-
1. A method of controlling communication between a first peripheral component located on a first computer bus and a second peripheral component located on a second computer bus, the first and second computer buses being connected by a bridge circuit, said method comprising the steps of:
-
(a) in response to placing onto the first computer bus of a message from the first peripheral component addressed to the second peripheral component, determining the addresses of the first and second peripheral components;
(b) determining the bus on which the second peripheral component is located;
(c) if the second peripheral component is located on the second computer bus, applying the message to the bridge circuit;
(d) determining whether the address of the second peripheral component is an address to which the first peripheral component is permitted to communicate;
(e) if the address of the second peripheral component is not an address to which the first peripheral component is permitted to communicate, preventing communication of further messages from the first peripheral component; and
(f) if the address of the second peripheral component is an address to which the first peripheral component is permitted to communicate, permitting the bridge circuit to pass messages from the first peripheral component. - View Dependent Claims (2, 3, 4, 5)
-
-
6. Apparatus for controlling communication between a first peripheral component located on a first computer bus and a second peripheral component located on a second computer bus, said apparatus comprising:
-
a bridge circuit connecting the first computer bus and the second computer bus;
a first address detector for detecting the address of the first peripheral component;
a second address detector for detecting the address of the second peripheral component and the bus on which the second peripheral component is located; and
an address comparison circuit for determining whether the address of the second peripheral component is an address to which the first peripheral component is permitted to communicate, said address comparison circuit being responsive to the address of the second peripheral component not being an address to which the first peripheral component is permitted to communicate by preventing passage of further messages from the first peripheral component through the bridge circuit, and being further responsive to the address of the second peripheral component being an address to which the first peripheral component is permitted to communicate by permitting passage of messages from the first peripheral component through the bridge circuit. - View Dependent Claims (7)
-
Specification
-
- Resources
-
Current AssigneeNorthrop Grumman Systems Corporation (Northrop Grumman Corporation)
-
Original AssigneeTRW Limited (Zeppelin - Stiftung der Stadt Friedrichshafen)
-
InventorsLynch, Carolyn A., Blasdel, Michael J., Hale, Robert R., Worley, James F.
-
Primary Examiner(s)Dharia, Rupal
-
Application NumberUS09/481,331Time in Patent Office1,021 DaysField of Search710/305-317, 710/200, 713/200, 713/201US Class Current710/306CPC Class CodesG06F 13/4031 with arbitrationG06F 21/85 interconnection devices, e....
