Data synchronization for a secure electronic device
First Claim
Patent Images
1. A method for secure synchronization of data contained on a network-attached device and a network server, comprising:
- establishing a device-to-device single-level secure processing state as between said network attached-device and said network server at a first defined security access level by(a) authenticating a user, said network attached device, and said network server;
(b) determining an assigned security access level for said user from among a plurality of possible user security access levels; and
(c) determining if said first defined security access level at which said user requests to sign on is lesser than or equal to said assigned security access level of said user;
selecting said network server to have a multi-level secure operating system and a multi-level secure file system;
selecting said network-attached device to have a multi-level secure operating system and a multi-level secure file system;
signing said user onto a computer network at said first defined security access level using at least one of said network attached device and said network server;
synchronizing a first plurality of managed data objects stored on said network attached device and said network server at said first defined security access level;
determining if said user is authorized to access a second defined security access level provided in said multi-level secure file system of said network server and said multi-level secure file system of said network attached device; and
automatically repeating said synchronizing step for said second defined security access level.
3 Assignments
0 Petitions
Accused Products
Abstract
Method for synchronizing stored data in one device (102, 106, 202, 206, 210) with other devices (102, 106, 202, 206, 210) at multiple levels of security classification. The methods and systems disclosed herein can advantageously utilize unique protocols and, optionally, cryptographic technologies to effect data synchronization in a secure manner.
44 Citations
17 Claims
-
1. A method for secure synchronization of data contained on a network-attached device and a network server, comprising:
-
establishing a device-to-device single-level secure processing state as between said network attached-device and said network server at a first defined security access level by (a) authenticating a user, said network attached device, and said network server; (b) determining an assigned security access level for said user from among a plurality of possible user security access levels; and (c) determining if said first defined security access level at which said user requests to sign on is lesser than or equal to said assigned security access level of said user; selecting said network server to have a multi-level secure operating system and a multi-level secure file system; selecting said network-attached device to have a multi-level secure operating system and a multi-level secure file system; signing said user onto a computer network at said first defined security access level using at least one of said network attached device and said network server; synchronizing a first plurality of managed data objects stored on said network attached device and said network server at said first defined security access level; determining if said user is authorized to access a second defined security access level provided in said multi-level secure file system of said network server and said multi-level secure file system of said network attached device; and automatically repeating said synchronizing step for said second defined security access level. - View Dependent Claims (2)
-
-
3. A method for secure synchronization of data contained on a network-attached device and a network server, comprising:
-
establishing a device-to-device single-level secure processing state as between said network attached-device and said network server at a first defined security access level by (a) authenticating a user, said network attached device, and said network server; (b) determining an assigned security access level for said user from among a plurality of possible user security access levels; and (c) determining if said first defined security access level at which said user requests to sign on is lesser than or equal to said assigned security access level of said user; synchronizing a first plurality of managed data objects stored on said network attached device and said network server at said first defined security access level establishing a second device to device single-level secure processing state as between said network-attached device and a locally-connected device that is locally connected to said network-attached device exclusive of any network connection, said network attached device and said locally-connected device connected at a second defined security access level; selecting said network server to have a combination of an operating system and a file system selected from the group consisting of (a) a single-level secure operating system and a single-level secure file system, (b) a single level secure operating system and a multi-level secure file system, and (c) a multi-level secure operating system and a multi-level secure file system; selecting said network-attached device to have a single-level secure operating system and a single-level secure file system; selecting said locally connected device to have a single-level secure operating system and a single-level secure file system; automatically synchronizing a second plurality of managed data objects stored on said network-attached device and said locally connected device at said second defined security access level; automatically re-synchronizing said first plurality of managed data objects stored on said network-attached device and said network server. - View Dependent Claims (4)
-
-
5. A method for secure synchronization of data contained on a network-attached device and a network server, comprising:
-
establishing a device-to-device single-level secure processing state as between said network attached-device and said network server at a first defined security access level by (a) authenticating a user, said network attached device, and said network server; (b) determining an assigned security access level for said user from among a plurality of possible user security access levels; and (c) determining if said first defined security access level at which said user requests to sign on is lesser than or equal to said assigned security access level of said user; synchronizing a first plurality of managed data objects stored on said network attached device and said network server at said first defined security access level establishing a second device to device single-level secure processing state as between said network-attached device and a locally-connected device that is locally connected to said network-attached device exclusive of any network connection, said network attached device and said locally-connected device connected at a second defined security access level; selecting said network server to have a combination of an operating system and a file system selected from the group consisting of (a) a single level secure operating system and a multi-level secure file system, and (b) a multi-level secure operating system and a multi-level secure file system; selecting said network-attached device to have a single-level secure operating system and a multi-level secure file system; selecting said locally connected device to have a single-level secure operating system, and a multi-level secure file system; prior to establishing said second device to device single-level secure processing state as between said network-attached device and a locally-connected device, determining if said locally-connected device supports said second defined security access level associated with said second device to device single level secure processing state; automatically synchronizing a second plurality of managed data objects stored on said network-attached device and said locally connected device at said second defined security access level; automatically re-synchronizing said first plurality of managed data objects stored on said network-attached device and said network server. - View Dependent Claims (6, 7)
-
-
8. A method for secure synchronization of data contained on a network-attached device and a network server, comprising:
-
establishing a device-to-device single-level secure processing state as between said network attached-device and said network server at a first defined security access level by (a) authenticating a user, said network attached device, and said network server; (b) determining an assigned security access level for said user from among a plurality of possible user security access levels; and (c) determining if said first defined security access level at which said user requests to sign on is lesser than or equal to said assigned security access level of said user; establishing a second device to device single-level secure processing state as between said network-attached device and a locally-connected device that is locally connected to said network-attached device exclusive of any network connection, said network attached device and said locally-connected device connected at a second defined security access level; selecting said network server to have a multi-level secure operating system and a multi-level secure file system; selecting said network-attached device to have a multi-level secure operating system and a multi-level secure file system; selecting said locally connected device to have a single-level secure operating system, and a single-level secure file system; synchronizing a first plurality of managed data objects stored on said network attached device and said network server at said first defined security access level automatically synchronizing a second plurality of managed data objects stored on said network-attached device and said locally connected device at said second defined security access level. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17)
-
Specification