Achieving high assurance connectivity on computing devices and defeating blended hacking attacks
First Claim
1. A device providing a protection scheme for a communications system, the device comprising:
- a communications section for processing incoming wireless communications;
a firewall coupled to said communications section;
a host interface, with said firewall coupled between said host interface and said communications system, and isolated by said firewall from the communications section, anda wireless module central processor (WMCP) wherein the WMCP is configured for providing booting and management operations, adapted for passing inspected data to said host interface, and is further configured to provide software defined radio functionality for the device.
1 Assignment
0 Petitions
Accused Products
Abstract
System and techniques for protecting wireless communication systems from blended electronic attacks that may combine wireless and computer attacks. One embodiment is an integrated hardware and software firewall/protection system that provides a protection scheme that may include an additional functional processing layer between the hardware firewall and a mobile terminal. This additional functional processing layer performs an extra layer of communications and security processing, including such features as management of Internet Connection Firewall (ICF) functions, key generation for firewall and virtual private network (VPN) functions, and packet inspection and filtering.
-
Citations
22 Claims
-
1. A device providing a protection scheme for a communications system, the device comprising:
-
a communications section for processing incoming wireless communications; a firewall coupled to said communications section; a host interface, with said firewall coupled between said host interface and said communications system, and isolated by said firewall from the communications section, and a wireless module central processor (WMCP) wherein the WMCP is configured for providing booting and management operations, adapted for passing inspected data to said host interface, and is further configured to provide software defined radio functionality for the device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A device for providing a protection scheme for a host transmitting and/or receiving wireless communications, the device having a Red/Black isolation architecture and comprising:
-
a Black side communicatively coupled by at least one channel with said wireless communications; a Red side coupled between said Black side and said host; a reconfigurable wireless module central processor (WMCP) for enforcing isolation and/or separation between said Red side and said Black side, said WMCP comprising at least one firewall, an encryption capability for said host, and a packet inspection module adapted to receive decrypted packet data to examine a packet payload; and a host interface coupled to said host wherein the WMCP is further configured for providing booting and management operations, adapted for passing inspected data to said host interface, and further configured to provide software defined radio functionality for the device. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22)
-
Specification