Systems, methods, and computer medium to securely transfer business transactional data between networks having different levels of network protection using barcode technology with data diode network security appliance
First Claim
1. A computer-implemented method to transfer data between two or more networks configured to have different levels of network protection, the method comprising:
- decoding one or more barcodes indicative of contents of transactional data associated with and positioned within a first network to thereby define one or more data barcodes, responsive to receipt of a scan of a display of a first computer in communication with and positioned within the first network, by use of one or more barcode scanning devices in communication with a second computer positioned remote from the first computer and in communication with and positioned within a second network, to produce contents of the transactional data represented by the one or more data barcodes, the second network configured to have a different level of network security protection than the first network and configured to allow only one-way secure communication from the second network to the first network by use of a data diode unit;
transmitting decoded contents of the transactional data from the second network to the first network through the data diode unit to thereby securely communicate decoded contents of the transactional data in one-way communication from temporary storage associated with the second network to the first network for comparison to contents of the transactional data positioned within the first network;
decoding one or more different barcodes indicative of contents of one or more verification files to thereby define one or more verification barcodes, responsive to receipt of a scan of the display of the first computer by use of the one or more barcode scanning devices, to produce contents of the one or more verification files represented by the one or more verification barcodes, the one or more verification files configured to indicate success of transmission of contents of the transactional data from the first network to the second network; and
storing decoded contents of the transactional data in more permanent storage associated with the second network responsive to an indication from decoded contents of the one or more verification files of successful transmission of contents of the transactional data from the first network to the second network.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of computer-implemented methods, systems, and non-transitory computer-readable medium having one or more computer programs stored therein are provided to transfer contents of transactional data between two or more networks configured to have different levels of network protection using barcode technology with a data diode network security appliance. Generated data barcodes can be decoded to produce contents of transactional data to be transmitted between two or more networks configured to have different levels of network security protection, and decoded contents of the transactional data can then be securely communicated back to the sender for comparison by use of a data diode unit. Generated verification barcodes can then be decoded to produce verification data. Verification data can confirm success of the transmission of contents of the transactional data encoded in the data barcodes. Decoded contents of the transactional data can then be stored responsive to an indication of successful transmission.
15 Citations
24 Claims
-
1. A computer-implemented method to transfer data between two or more networks configured to have different levels of network protection, the method comprising:
-
decoding one or more barcodes indicative of contents of transactional data associated with and positioned within a first network to thereby define one or more data barcodes, responsive to receipt of a scan of a display of a first computer in communication with and positioned within the first network, by use of one or more barcode scanning devices in communication with a second computer positioned remote from the first computer and in communication with and positioned within a second network, to produce contents of the transactional data represented by the one or more data barcodes, the second network configured to have a different level of network security protection than the first network and configured to allow only one-way secure communication from the second network to the first network by use of a data diode unit; transmitting decoded contents of the transactional data from the second network to the first network through the data diode unit to thereby securely communicate decoded contents of the transactional data in one-way communication from temporary storage associated with the second network to the first network for comparison to contents of the transactional data positioned within the first network; decoding one or more different barcodes indicative of contents of one or more verification files to thereby define one or more verification barcodes, responsive to receipt of a scan of the display of the first computer by use of the one or more barcode scanning devices, to produce contents of the one or more verification files represented by the one or more verification barcodes, the one or more verification files configured to indicate success of transmission of contents of the transactional data from the first network to the second network; and storing decoded contents of the transactional data in more permanent storage associated with the second network responsive to an indication from decoded contents of the one or more verification files of successful transmission of contents of the transactional data from the first network to the second network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system to transfer data between two or more networks configured to have different levels of network protection, the system comprising:
-
a first computer in communication with and positioned within a first network, the first computer including one or more processors and one or more displays in communication with the one or more processors; a data diode unit in communication with one or more processors of a second computer and positioned to transmit data from the second computer to the first network; and the second computer positioned remote from the first computer and in communication with and positioned within a second network, the second network configured to have temporary storage and separate more permanent storage associated therewith, the second network further configured to have a different level of network security protection than the first network and to allow only one-way secure communication from the second network to the first network through the data diode unit, the second computer including; one or more processors, one or more input and output units in communication with the one or more processors of the second computer, one or more barcode scanning devices in communication with the one or more processors of the second computer, and non-transitory memory medium in communication with the one or more processors of the second computer, the memory medium including computer-readable instructions stored therein that when executed cause the second computer to perform the steps of; decoding one or more barcodes indicative of contents of transactional data associated with and positioned within the first network to thereby define one or more data barcodes, responsive to receipt of a scan of one or more of the one or more displays of the first computer by use of the one or more barcode scanning devices, to produce contents of the transactional data represented by the one or more data barcodes, transmitting decoded contents of the transactional data from the second network to the first network through the data diode unit to thereby securely communicate decoded contents of the transactional data in one-way communication from the temporary storage associated with the second network to the first network for comparison to contents of the transactional data positioned within the first network, decoding one or more different barcodes indicative of contents of one or more verification files to thereby define one or more verification barcodes, responsive to receipt of a scan of one or more of the one or more displays of the first computer by use of the one or more barcode scanning devices, to produce contents of the one or more verification files represented by the one or more verification barcodes, the one or more verification files configured to indicate success of transmission of contents of the transactional data from the first network to the second network, and storing decoded contents of the transactional data in the more permanent storage associated with the second network, responsive to an indication from decoded contents of the one or more verification files of successful transmission of contents of the transactional data from the first network to the second network. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. Non-transitory computer-readable medium having one or more computer programs stored therein operable by one or more processors to transfer data between two or more networks configured to have different levels of network protection, the one or more computer programs comprising a set of instructions that, when executed by the one or more processors, cause the one or more processors to perform the operations of:
-
decoding one or more barcodes indicative of contents of transactional data associated with and positioned within a first network to thereby define one or more data barcodes, responsive to receipt of a scan of a display of a first computer in communication with and positioned within the first network, by use of one or more barcode scanning devices in communication with a second computer positioned remote from the first computer and in communication with and positioned within a second network, to produce contents of the transactional data represented by the one or more data barcodes, the second network configured to have a different level of network security protection than the first network and configured to allow only one-way secure communication from the second network to the first network by use of a data diode unit; transmitting decoded contents of the transactional data from the second network to the first network through the data diode unit to thereby securely communicate decoded contents of the transactional data in one-way communication from temporary storage associated with the second network to the first network for comparison to contents of the transactional data positioned within the first network; decoding one or more different barcodes indicative of contents of one or more verification files to thereby define one or more verification barcodes, responsive to receipt of a scan of the display of the first computer by use of the one or more barcode scanning devices, to produce contents of the one or more verification files represented by the one or more verification barcodes, the one or more verification files configured to indicate success of transmission of contents of the transactional data from the first network to the second network; and storing decoded contents of the transactional data in more permanent storage associated with the second network responsive to an indication from decoded contents of the one or more verification files of successful transmission of contents of the transactional data from the first network to the second network. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24)
-
Specification