Bilateral communication using multiple one-way data links
First Claim
1. A bilateral data transfer system comprising:
- a first node;
a second node;
a first one-way link for unidirectional transfer of first data from the first node to the second node; and
a second one-way link for unidirectional transfer of second data from the second node to the first nodewherein the first node comprises;
a processor;
a memory storing a first data sending application, a second data receiving application and a first session managing application;
and wherein the processor is configured to execute;
the first data sending application for sending the first data to the second node over the first one-way link;
the second data receiving application for receiving the second data from the second node over the second one-way link; and
the first session managing application for blocking the first data from the second data receiving application and for blocking the second data from the first data sending application, andwherein the second node comprises;
a processor;
a memory storing a first data receiving application, a second data sending application and a second session managing application;
wherein the processor is configured to execute;
the first data receiving application for receiving the first data from the first node over the first one-way link;
the second data sending application for sending the second data to the first node over the second one-way link; and
the second session managing application for blocking the first data from the second data sending application and for blocking the second data from the first data receiving application, so that the unidirectional transfer of the first data across the first one-way link and the unidirectional transfer of the second data across the second one-way link are independently administered by the bilateral data transfer systemwherein;
the first data comprises keyboard or mouse commands from a remote terminal client;
and the second data comprises graphical display data from a remote terminal server.
6 Assignments
0 Petitions
Accused Products
Abstract
A bilateral data transfer system comprising a first node, a second node, a first one-way link for unidirectional transfer of first data from the first node to the second node, and a second one-way link for unidirectional transfer of second data from the second node to the first node, wherein the unidirectional transfer of the first data across the first one-way link and the unidirectional transfer of the second data across the second one-way link are independently administered by the bilateral data transfer system. Under such bilateral data transfer system, each of the one-way data links may be subject to separately administered security restrictions and data filtering processes. Hence, it enables secure bilateral communications across different network security domains.
114 Citations
23 Claims
-
1. A bilateral data transfer system comprising:
-
a first node; a second node; a first one-way link for unidirectional transfer of first data from the first node to the second node; and a second one-way link for unidirectional transfer of second data from the second node to the first node wherein the first node comprises; a processor; a memory storing a first data sending application, a second data receiving application and a first session managing application; and wherein the processor is configured to execute; the first data sending application for sending the first data to the second node over the first one-way link; the second data receiving application for receiving the second data from the second node over the second one-way link; and the first session managing application for blocking the first data from the second data receiving application and for blocking the second data from the first data sending application, and wherein the second node comprises; a processor; a memory storing a first data receiving application, a second data sending application and a second session managing application; wherein the processor is configured to execute; the first data receiving application for receiving the first data from the first node over the first one-way link; the second data sending application for sending the second data to the first node over the second one-way link; and the second session managing application for blocking the first data from the second data sending application and for blocking the second data from the first data receiving application, so that the unidirectional transfer of the first data across the first one-way link and the unidirectional transfer of the second data across the second one-way link are independently administered by the bilateral data transfer system wherein; the first data comprises keyboard or mouse commands from a remote terminal client; and the second data comprises graphical display data from a remote terminal server. - View Dependent Claims (2, 3, 4, 5, 6, 14, 15, 16)
-
- 7. A non-transitory machine readable medium having instructions stored on at least one of a first node and a second node, wherein the first node and the second node are interconnected by a first one-way link for unidirectional transfer of first data from the first node to the second node and a second one-way link for unidirectional transfer of second data from the second node to the first node, the instructions, when executed by the at least one of the first and the second nodes, causing the first and the second nodes to separately administer the unidirectional transfer of the first data from the first node to the second node via the first one-way link and the unidirectional transfer of the second data from the second node to the first node via the second one-way link, wherein the first data comprises keyboard or mouse commands from a remote terminal client connected to the first node and the second data comprises graphical display data from a remote terminal server connected to the second node.
-
17. A non-transitory machine readable medium having instructions stored on at least one of a first node and a second node, wherein the first node and the second node are interconnected by a first one-way link for unidirectional transfer of first data from the first node to the second node and a second one-way link for unidirectional transfer of second data from the second node to the first node, the instructions, when executed by the first node, causing the first node to:
-
execute a first data sending application to send the first data to the second node over the first one-way link; execute a second data receiving application to receive the second data from the second node over the second one-way link; and execute a first session managing application to block the first data from the second data receiving application and to block the second data from the first data sending application, further the instructions, when executed by the second node, causing the second node to; execute a first data receiving application to receive the first data from the first node over the first one-way link; execute a second data sending application to send the second data to the first node over the second one-way link; and execute a second session managing application to block the first data from the second data sending application and to block the second data from the first data receiving application, so that the unidirectional transfer of the first data across the first one-way link and the unidirectional transfer of the second data across the second one-way link are independently administered by the instructions wherein; the first data comprises keyboard or mouse commands from a remote terminal client connected to the first node; and the second data comprises graphical display data from a remote terminal server connected to the second node. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
Specification