Apparatus and method for providing multi-level security for communication among computers and terminals on a network

US 5,577,209 A
Filed: 07/05/1994
Issued: 11/19/1996
Est. Priority Date: 07/11/1991
Status: Expired due to Term

First Claim

Patent Images

1. A multi-level network security apparatus for a computer network having at least one user coupled thereto, the at least one user selected from a group consisting of a host computer and at least a second network, comprising:

a secure network interface unit (SINU) coupled between said at least one user and the computer network which operates at a user layer communications protocol, said SINU comprising;

a user interface for providing an interface between the user and SNIU, said user interface being operative for translating data received from the user into a format used by said SNIU,a session manager for identifying a user requesting access to the network at the session level and verifying if the identified user is authorized for access to the network, managing functions of communications sessions permitted by said network security apparatus and maintaining a session audit,a dialogue manager for controlling a data path established in the SNIU,and an association manager which operates to establish and control a user session at a session layer of interconnection between the user and the network through said SNIU if said identified user is verified for access,whereby the SNIU is implemented to create a global security perimeter for end-to-end communications and wherein the network may be individually secure or non-secure without compromising security of communications within said global security perimeter; and

a security management architecture, including a security manager (SM) connected to said SNIU for causing said SNIU to be operated and configured for protecting the security communications transmitted through said SNIU between the at least one user and the network, said SM capable of implementing a security policy selected from the group consisting of discretionary access control, mandatory access control, object reuse, labeling, denial of service detection, data type integrity, cascading control and covert channel use detection, said SM further providing inter-network administration.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A multi-level security apparatus and method for a network employs a secure network interface unit (SNIU) coupled between each host or user computer unit and a network, and a security management (SM) architecture, including a security manager (SM) coupled to the network, for controlling the operation and configuration of the SNIUs coupled to the network. Each SNIU is operative at a session level of interconnection which occurs when a user on the network is identified and a communication session is to commence. When an SNIU is implemented at each computer unit on the network, a global security perimeter is provided. In a preferred embodiment, the SNIU is configured to perform a defined session level protocol (SLP), including the core functions of user interface, session manager, dialog manager, association manager and data sealer, and network interface. The SM architecture is implemented to ensure user accountability, configuration management, security administration, and validation key management on the network. The SM functions are distributed over three platforms, i.e., a SNIU security manager (SSM), an area security manager (ASM), and a network security manager (NSM).

452 Citations

20 Claims

1. A multi-level network security apparatus for a computer network having at least one user coupled thereto, the at least one user selected from a group consisting of a host computer and at least a second network, comprising:
- a secure network interface unit (SINU) coupled between said at least one user and the computer network which operates at a user layer communications protocol, said SINU comprising;
  
  a user interface for providing an interface between the user and SNIU, said user interface being operative for translating data received from the user into a format used by said SNIU,a session manager for identifying a user requesting access to the network at the session level and verifying if the identified user is authorized for access to the network, managing functions of communications sessions permitted by said network security apparatus and maintaining a session audit,a dialogue manager for controlling a data path established in the SNIU,and an association manager which operates to establish and control a user session at a session layer of interconnection between the user and the network through said SNIU if said identified user is verified for access,whereby the SNIU is implemented to create a global security perimeter for end-to-end communications and wherein the network may be individually secure or non-secure without compromising security of communications within said global security perimeter; and
  
  a security management architecture, including a security manager (SM) connected to said SNIU for causing said SNIU to be operated and configured for protecting the security communications transmitted through said SNIU between the at least one user and the network, said SM capable of implementing a security policy selected from the group consisting of discretionary access control, mandatory access control, object reuse, labeling, denial of service detection, data type integrity, cascading control and covert channel use detection, said SM further providing inter-network administration.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. A network security apparatus according to claim 1, wherein said SNIU includes means for performing a defined trusted session layer protocol (TSP), said TSP constituting said user layer communications protocol.
  - 3. A network security apparatus according to claim 1, wherein said SM architecture supports said security policy in at least two network jurisdictions.
  - 4. A network security apparatus according to claim 1, wherein said SNIUs operate to prevent covert information flow within said global security perimeter.
  - 5. A network security apparatus according to claim 1, wherein said SNIU includes a data sealer for validating data transmitted through said SNIU.
  - 6. A network security apparatus according to claim 1, wherein said SNIU includes a network interface for interfacing said SNIU with the network.
  - 7. A network security apparatus according to claim 1, wherein said SM architecture includes means for performing network security functions, including security administration of the functions of one or more SNIUs to which said SM is connected.
  - 8. A network security apparatus according to claim 7, wherein said means for performing said SM functions are distributed over three platforms, i.e., a SNIU security manager (SSM), an area security manager (ASM), and a network security manager (NSM).
  - 9. A network security apparatus according to claim 8, wherein said means for performing said SM functions of said SSM include exchanging data and commands with the SNIUs, and performing initialization, configuration control, access control, sealer key management, audit/alarms, and other services for the SNIUs.
  - 10. A network security apparatus according to claim 8, wherein said means for performing said SM functions of said ASM include managing the security functions for a group of SNIUs in a defined area.
  - 11. A network security apparatus according to claim 8, wherein said means for performing said SM functions of said NSM include managing the security functions of the ASMs for the network as a whole.

12. A method of providing multi-level network security for a computer network having at least one user coupled thereto, the at least one user selected from the group consisting of a host computer and at least a second computer network, comprising the steps of:
- coupling a secure network interface unit (SINU) between the user and the network, said SNIU performing a plurality of security management functions including;
  
  identifying a user requesting access to the network and providing an interface between the user and said SNIU, said user interface being operative for translating data received from the at least one user into a format used by the SNIU,verifying if the identified user is authorized for access to the network, managing functions of communications sessions permitted by said network security apparatus and maintaining a session audit,controlling a data path established in the SNIU, andestablishing a user session at a session layer of interconnection between the user and the network through said SNIU if said identified user is verified for access;
  
  whereby the SNIU is implemented to create a global security perimeter for end-to-end communications and wherein the network may be individually secure or non-secure without compromising security of communications within said global security perimeter; and
  
  providing a security management architecture, including a security manager (SM) connected to said SNIU, for performing the functions of controlling the operation and configuration of said SNIU in order to protect the security communications transmitted through said SNIU between the user and the network, said SM being capable of implementing a security policy selected from the group consisting of discretionary access control, mandatory access control, object reuse, labeling, denial of service detection, data type integrity, cascading control and covert channel use detection, said SM further providing inter-network administration.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. A method of providing network security according to claim 12, wherein said SNIU performs the further step of establishing a defined trusted session layer protocol (TSP) through said SNIU.
  - 14. A method of providing network security according to claim 12, wherein said step of providing an SM architecture includes the substep of supporting a plurality of security policies implemented in at least two network jurisdictions.
  - 15. A method of providing network security according to claim 12, wherein said SNIU performs the further step of providing a data sealer for protecting data transmitted between SNIUs across one or more networks.
  - 16. A method of providing network security according to claim 12, wherein the step of providing said SM functions includes the substep of providing security administration of the functions of one or more SNIUs to which said SM is connected.
  - 17. A method of providing network security according to claim 16, wherein the step of providing said SM functions include the substep of distributing said SM functions over three platforms, i.e., a SNIU security manager (SSM), an area security manager (ASM), and a network security manager (NSM).
  - 18. A method of providing network security according to claim 17, wherein said SM functions of said SSM include exchanging data and commands with the SNIUs, and performing initialization, configuration control, access control, sealer key management, audit/alarms, and other services for the SNIUs.
  - 19. A method of providing network security according to claim 17, wherein said SM functions of said ASM include managing the security functions for a group of SNIUs in a defined area.
  - 20. A method of providing network security according to claim 17, wherein said SM functions of said NSM include managing the security functions of the ASMs for the network as a whole.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Round Rock Research LLC
Original Assignee
ITT Corporation (ITT, Inc.)
Inventors
Boyle, John M., Snow, David W., Maiwald, Eric S.
Primary Examiner(s)
Black, Thomas G.
Assistant Examiner(s)
Alam, Hosain T.

Application Number

US08/270,398
Time in Patent Office

868 Days
Field of Search

364/709.05, 380/23, 395/600, 395/325, 395/725, 395/800, 395/200.01, 395/200.06, 395/200.09, 395/200.12, 395/309, 395/200.11, 395/727, 340/825.31, 370/85.13
US Class Current

726/4
CPC Class Codes

G06F 21/6218   to a system of files or obj...

G06F 2211/009   Trust

G06F 2221/2101   Auditing as a secondary aspect

G06F 2221/2113   Multi-level security, e.g. ...

H04L 41/0893   Assignment of logical group...

H04L 41/0894   Policy-based network config...

H04L 41/28   Restricting access to netwo...

H04L 63/0442   wherein the sending and rec...

H04L 63/0823   using certificates cryptogr...

H04L 63/105   Multiple levels of security

H04L 69/08   Protocols for interworking;...

H04L 69/327   in the session layer [OSI l...

H04L 9/40   Network security protocols

Apparatus and method for providing multi-level security for communication among computers and terminals on a network

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

452 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Apparatus and method for providing multi-level security for communication among computers and terminals on a network

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

452 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others