One-way data transfer system with built-in data verification mechanism
First Claim
1. A one-way data transfer system comprising:
- a send node;
a receive node connected to the send node by a first one-way link for unidirectional transfer from the send node to the receive node; and
a dedicated feedback node for generating data verification information based on data that the receive node received from the send node via the first one-way link,wherein the dedicated feedback node is connected to the receive node by a second one-way link for unidirectional transfer from the receive node to the dedicated feedback node, and is also connected to the send node by a third one-way link for unidirectional transfer from the dedicated feedback node to the send node,wherein the dedicated feedback node does not transfer message data back to the send node.
6 Assignments
0 Petitions
Accused Products
Abstract
Embodiments of the present invention are directed to a one-way data transfer system with built-in data verification mechanism, comprising three nodes (Send Node, Receive Node, and Feedback Node) wherein (1) the three nodes are interconnected with each other by a one-way data link, and (2) the Feedback Node is designed solely for processing and relaying data verification information from the Receive Node to the Send Node. In these embodiments, the Send Node is capable of verifying the status of data it transferred to the Receive Node over a one-way data link without sacrificing the unidirectionality of data flow in the system and thereby compromising the level of security provided by use of one-way data links.
115 Citations
77 Claims
-
1. A one-way data transfer system comprising:
-
a send node; a receive node connected to the send node by a first one-way link for unidirectional transfer from the send node to the receive node; and a dedicated feedback node for generating data verification information based on data that the receive node received from the send node via the first one-way link, wherein the dedicated feedback node is connected to the receive node by a second one-way link for unidirectional transfer from the receive node to the dedicated feedback node, and is also connected to the send node by a third one-way link for unidirectional transfer from the dedicated feedback node to the send node, wherein the dedicated feedback node does not transfer message data back to the send node. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27)
-
-
28. A one-way data transfer system comprising:
-
a plurality of nodes comprising at least one send node and at least one receive node; a dedicated feedback node for generating data verification information based on data that one of the at least one receive node received from one of the at least one send node; and a central switch for controlling routing of data from any one of its inputs to any one of its outputs, wherein each of the plurality of nodes and the dedicated feedback node is connected to a corresponding one of the inputs of the central switch by a first one-way link for unidirectional transfer to the corresponding input and also connected to a corresponding one of the outputs of the central switch by a second one-way link for unidirectional transfer from the corresponding output, wherein the dedicated feedback node does not transfer message data back to the send node. - View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60)
-
-
61. A method of verifying one-way data transfer from a send node to a receive node across a one-way link, comprising the steps of:
-
applying a data verification algorithm to data sent from the send node to the one-way link to generate a sent data verification information; applying the data verification algorithm to data received by the receive node from the one-way link to generate a received data verification information; sending the received data verification information to the send node over a dedicated feedback one-way link; and wherein the dedicated feedback node does not transfer message data back to the send node; and comparing the received data verification information with the sent data verification information to verify the status of the data that the receive node received from the send node via the one-way link. - View Dependent Claims (62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77)
-
Specification