Computer system for accessing confidential data by means of at least one remote unit and remote unit
First Claim
1. A computer system for accessing confidential data by at least one remote unit used by a user, the confidential data being stored in a secured central computer comprising;
- a hardware data processor producing results based on the confidential data, andan encrypted tunnel computer connection over a public network established between said remote unit and the central computer,the remote unit being a microcomputer operating under the dependency of a local operating system starting by a boot phase, and when the confidential data are accessed, said remote unit receives only display information related to a process carried out on the confidential data and produced by the central computer,wherein the remote unit comprises an operating program that does not allow said process in the absence of the encrypted tunnel computer connection between said remote unit and the central computer, andwherein the computer system allows administration of the remote unit only remotely from the central computer, the remote unit being logically integrated to the central computer once the encrypted tunnel computer connection is established, in order to allow said only remote administration of said remote unit and said process of said remote unit after establishment of the encrypted tunnel computer connection,the microcomputer of the remote unit being in a form of an electronic card that further comprises an encryption electronic circuit, the operating system as well as information required for the process of said remote unit being stored in encrypted form in said remote unit,wherein said remote unit is a sealed unit containing the electronic card and inputs/outputs, including one identification device input/output connected to at least one user identification device, and one computer network input/output intended for the encrypted tunnel connection,wherein the remote unit further comprises a local configuration assembly accessible and visible by the user, said local configuration assembly comprising a display and a set of keys arranged in the remote unit and allowing an on-site configuration of local parameters, andwherein the encrypted tunnel connection over the public network is made directly from the remote unit, with either an equipment for interconnection to the public network arranged between the computer network input/output of the remote unit and the public network, or the equipment for interconnection to the public network is incorporated to the remote unit.
2 Assignments
0 Petitions
Accused Products
Abstract
A computer system for accessing confidential data via at least one remote unit (4), the data being stored in a secured centralized computer system (3) including elements for processing data intended for producing results, a computer connection (2) being established between the unit and the computer element, the unit being a microcomputer operating under the dependency of a local operating system. The computer connection is an encrypted tunnel connection over a public network, the unit only supporting remote administration, the unit not being operable if the computer connection is not established and, during the access thereof to the data, the unit only receiving display information associated with the process performed on the data and produced by the centralized computer system, the microcomputer of the remote unit also including an electronic encryption circuit, the operating system and the information required for the operation of the unit being stored in encrypted form.
-
Citations
8 Claims
-
1. A computer system for accessing confidential data by at least one remote unit used by a user, the confidential data being stored in a secured central computer comprising;
-
a hardware data processor producing results based on the confidential data, and an encrypted tunnel computer connection over a public network established between said remote unit and the central computer, the remote unit being a microcomputer operating under the dependency of a local operating system starting by a boot phase, and when the confidential data are accessed, said remote unit receives only display information related to a process carried out on the confidential data and produced by the central computer, wherein the remote unit comprises an operating program that does not allow said process in the absence of the encrypted tunnel computer connection between said remote unit and the central computer, and wherein the computer system allows administration of the remote unit only remotely from the central computer, the remote unit being logically integrated to the central computer once the encrypted tunnel computer connection is established, in order to allow said only remote administration of said remote unit and said process of said remote unit after establishment of the encrypted tunnel computer connection, the microcomputer of the remote unit being in a form of an electronic card that further comprises an encryption electronic circuit, the operating system as well as information required for the process of said remote unit being stored in encrypted form in said remote unit, wherein said remote unit is a sealed unit containing the electronic card and inputs/outputs, including one identification device input/output connected to at least one user identification device, and one computer network input/output intended for the encrypted tunnel connection, wherein the remote unit further comprises a local configuration assembly accessible and visible by the user, said local configuration assembly comprising a display and a set of keys arranged in the remote unit and allowing an on-site configuration of local parameters, and wherein the encrypted tunnel connection over the public network is made directly from the remote unit, with either an equipment for interconnection to the public network arranged between the computer network input/output of the remote unit and the public network, or the equipment for interconnection to the public network is incorporated to the remote unit. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A remote unit for accessing confidential data stored in a secured central computer comprising;
-
a hardware data processor producing results based on the confidential data, and an encrypted tunnel computer connection over a public network established between said remote unit and the central computer, the remote unit being a microcomputer operating under the dependency of a local operating system starting by a boot phase, and wherein the remote unit comprises; an operating program that does not allow accessing the confidential data in the absence of the encrypted tunnel computer connection between said remote unit and the central computer, the encrypted tunnel computer connection allowing logical integration of the remote unit into the central computer, and wherein the remote unit is configured to allow administration of the remote unit only remotely from the central computer, the microcomputer of the remote unit being in a form of an electronic card that further comprises an encryption electronic circuit, an operating system as well as information required for the accessing the confidential data of said remote unit being stored in encrypted form in said remote unit, wherein said remote unit is a sealed unit containing the electronic card and inputs/outputs, including one identification device input/output connected to at least one user identification device, and one computer network input/output intended for the encrypted tunnel connection, and wherein the remote unit further comprises a local configuration assembly accessible and visible by a user, said local configuration assembly comprising a display and a set of keys arranged in the remote unit and allowing an on-site configuration of local parameters, and wherein the encrypted tunnel connection over the public network is made directly from the remote unit, with either an equipment for interconnection to the public network arranged between the computer network input/output of the remote unit and the public network, or the equipment for interconnection to the public network is incorporated to the remote unit. - View Dependent Claims (8)
-
Specification