Secure routing module
First Claim
1. A routing module, comprising:
- a plurality of data transfer interfaces for receiving and transmitting data in a plurality of data transfer protocols, at least one data transfer interface corresponding to each of the plurality of data transfer protocols, wherein one of the plurality of data transfer interfaces is a non-internet based data transfer interface that is configured to receive data in a non-internet based data transfer protocol;
a cryptographic key component connected to one of the plurality of data transfer interfaces, the cryptographic key component configured to verify a security classification level of data received by the routing module and preserve separation of first level classified data and second level classified data routed through the routing module;
an encryption component connected to the cryptographic key component and to one of the plurality of data transfer interfaces, the encryption component configured to encrypt the data received by the routing module for routing through the routing module; and
a conversion component connected to the cryptographic key component, the encryption component, and one of the plurality of data transfer interfaces, the conversion component configured to convert the data received by the non-internet based data transfer interface in a non-internet based data transfer protocol to an internet based data transfer protocol for routing through the routing module.
2 Assignments
0 Petitions
Accused Products
Abstract
A routing module in a secure routing and communication architecture to receive and transmit data of varied protocols, convert the data protocols to an internet protocol for routing on a local area network. Components of the input/output module comprise a processor, a cryptomodule, a field programmable gate array, all of which communicate in internet protocol. The routing module has a number of interfaces through which SATCOM protocol, UHF-VHF protocol, digital data protocols, serial data protocols, common data link protocols, push-to-talk data protocols, analog voice and voice internet protocol, and other internet protocol data can be received, routed, and transmitted. Hardware, firmware, and software logic within the components convert analog or other digital data to internet protocol, verify the classification level of data, protect the classification level of the data, encrypt the data for routing through a secure routing system a destination interface.
70 Citations
29 Claims
-
1. A routing module, comprising:
-
a plurality of data transfer interfaces for receiving and transmitting data in a plurality of data transfer protocols, at least one data transfer interface corresponding to each of the plurality of data transfer protocols, wherein one of the plurality of data transfer interfaces is a non-internet based data transfer interface that is configured to receive data in a non-internet based data transfer protocol; a cryptographic key component connected to one of the plurality of data transfer interfaces, the cryptographic key component configured to verify a security classification level of data received by the routing module and preserve separation of first level classified data and second level classified data routed through the routing module; an encryption component connected to the cryptographic key component and to one of the plurality of data transfer interfaces, the encryption component configured to encrypt the data received by the routing module for routing through the routing module; and a conversion component connected to the cryptographic key component, the encryption component, and one of the plurality of data transfer interfaces, the conversion component configured to convert the data received by the non-internet based data transfer interface in a non-internet based data transfer protocol to an internet based data transfer protocol for routing through the routing module. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. An input/output module for routing and communicating data, comprising:
-
a plurality of data transfer interfaces including an internet based data transfer interface and a non-internet based data transfer interface, wherein the internet based data transfer interface is configured to receive and transmit data in an internet based data transfer protocol and the non-internet based data transfer interface is configured to receive and transmit data in a non-internet based data transfer protocol; a first data transfer protocol converter connected to one of the plurality of data transfer interfaces, the first data transfer protocol converter configured to convert data from a non-internet based data transfer protocol to an internet based data transfer protocol; a cryptographic key identifier connected to one of the plurality of data transfer interfaces, the cryptographic key identifier configured to determine, verify, and preserve a security level of a classified data transfer protocol received and transmitted by one of the plurality of data transfer interfaces; an encryptor connected to one of the plurality of data transfer interfaces, the encryptor configured to encrypt data for routing through the input/output module; a decryptor connected to one of the plurality of data transfer interfaces, the decryptor configured to decrypt data; a second data transfer protocol converter connected to one of the plurality of data transfer interfaces, the second data transfer protocol converter configured to convert data from an internet based data transfer protocol to a non-internet based data transfer protocol. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29)
-
Specification