Method and apparatus for multi-level security implementation
First Claim
Patent Images
1. A multi-level security apparatus for processing a plurality of different classification levels of information, the apparatus comprising:
- a plurality of processors configured to collectively process information simultaneously at a classified level of information and an unclassified level of information;
a data interconnection configured to interconnect the plurality of processors;
a first card having a first key connected to the data interconnection and to a first processor of the plurality of processors, wherein the first processor is configured to communicate with the data interconnection through the first card;
a second card having a second key connected to the data interconnection and to a second processor of the plurality of processors, wherein the second processor is configured to communicate with the data interconnection through the second card;
a processing module configured to be in communication with the first card and the second card through the data interconnection for reallocating said first and second processors from processing said unclassified level of information to said classified level of information, the processing module comprising an information security module with a guard function configured to allow information to be passed in an unrestricted way from an unclassified side of the apparatus to a classified side of the apparatus.
4 Assignments
0 Petitions
Accused Products
Abstract
A method of operating a multi-level security system including the steps of providing a plurality of processors. At least some of said processors are equipped with a data card which permits simultaneous processing of different classification levels of information and the dynamic reallocation of processors to different classification levels.
-
Citations
20 Claims
-
1. A multi-level security apparatus for processing a plurality of different classification levels of information, the apparatus comprising:
-
a plurality of processors configured to collectively process information simultaneously at a classified level of information and an unclassified level of information; a data interconnection configured to interconnect the plurality of processors; a first card having a first key connected to the data interconnection and to a first processor of the plurality of processors, wherein the first processor is configured to communicate with the data interconnection through the first card; a second card having a second key connected to the data interconnection and to a second processor of the plurality of processors, wherein the second processor is configured to communicate with the data interconnection through the second card; a processing module configured to be in communication with the first card and the second card through the data interconnection for reallocating said first and second processors from processing said unclassified level of information to said classified level of information, the processing module comprising an information security module with a guard function configured to allow information to be passed in an unrestricted way from an unclassified side of the apparatus to a classified side of the apparatus. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A method for securely transmitting information comprising:
-
setting a first key corresponding to a first classification level for a first card operatively connected between a bus and a first processing device; setting a second key corresponding to a second classification level for a second card operatively connected between the bus and a second processing device; receiving first information encrypted at the first classification level and second information encrypted at the second classification level at the bus simultaneously; receiving the first information at an information security module in communication with the bus; determining that the first information is intended for the second processing device; decrypting the first information at the information security module to create decrypted first information; encrypting the decrypted first information corresponding to the second classification level to create second encrypted first information; receiving and decrypting the second encrypted first information at the second card. - View Dependent Claims (15, 16)
-
-
17. A multi-level security apparatus for processing a plurality of different classification levels of information, the apparatus comprising:
-
a plurality of processors; a bus connected for communication among the plurality of processors; a first card having a first key connected to the bus and to a first processor of the plurality of processors, wherein the first processor is configured to communicate with the bus through the first card; a second card having a second key connected to the bus and to a second processor of the plurality of processors, wherein the second processor is configured to communicate with the bus through the second card; an information security module with a guard function configured to allow information to be passed in an unrestricted way from an unclassified side of the apparatus to a classified side of the apparatus; wherein the apparatus is configured to receive first information encrypted at a first classification level and second information encrypted at a second classification level at the bus simultaneously; wherein the plurality of processors are configured to collectively process information simultaneously at the first classification classified level, the second classification level, and at an unclassified level of information. - View Dependent Claims (18, 19, 20)
-
Specification