Secure remote desktop
First Claim
1. A method for communication, comprising:
- receiving in a secure installation via a network from a remote user terminal an input comprising a stream of symbols that has been encrypted using a preselected encryption key;
decoding the encrypted stream of symbols in the secure installation using a decryption key corresponding to the preselected encryption key, to produce a clear stream of symbols;
inputting the clear stream of symbols via a first one-way link to a processor in the secure installation;
using a computer program running on the processor in the secure installation, processing the symbols in the clear stream and generating a graphical output in a predefined display format in response to processing the symbols; and
outputting the graphical output from the secure installation via a second one-way link to the network in an unencrypted format for display on the remote user terminal,wherein an input path for conveying the stream of symbols from the remote user terminal to the processor and an output path for conveying the graphical output from the processor to a display on the remote user terminal are separate and independent paths, without any electronic interaction between the input and output paths within the remote user terminal.
1 Assignment
0 Petitions
Accused Products
Abstract
A method for communication includes receiving in a secure installation via a network from a remote user terminal an input comprising a stream of symbols that has been encrypted using a preselected encryption key. The encrypted stream of symbols is decoded in the secure installation using a decryption key corresponding to the preselected encryption key, to produce a clear stream of symbols. A computer program running on a processor in the secure installation is used in processing the symbols in the clear stream and generating a graphical output in a predefined display format in response to processing the symbols. The graphical output is outputted from the secure installation to the network in an unencrypted format for display on the remote user terminal.
206 Citations
20 Claims
-
1. A method for communication, comprising:
-
receiving in a secure installation via a network from a remote user terminal an input comprising a stream of symbols that has been encrypted using a preselected encryption key; decoding the encrypted stream of symbols in the secure installation using a decryption key corresponding to the preselected encryption key, to produce a clear stream of symbols; inputting the clear stream of symbols via a first one-way link to a processor in the secure installation; using a computer program running on the processor in the secure installation, processing the symbols in the clear stream and generating a graphical output in a predefined display format in response to processing the symbols; and outputting the graphical output from the secure installation via a second one-way link to the network in an unencrypted format for display on the remote user terminal, wherein an input path for conveying the stream of symbols from the remote user terminal to the processor and an output path for conveying the graphical output from the processor to a display on the remote user terminal are separate and independent paths, without any electronic interaction between the input and output paths within the remote user terminal. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. Communication apparatus for deployment in a secure installation, the apparatus comprising:
-
an input interface, which is configured to receive via a network from a remote user terminal outside the secure installation an input comprising a stream of symbols that has been encrypted using a preselected encryption key; a decoder, which is coupled to receive the encrypted stream of symbols from the interface and configured to decrypt the encrypted stream using a decryption key corresponding to the preselected encryption key, to produce a clear stream of symbols; a computer, which is configured to run a software program that causes the computer to process the symbols in the clear stream and to generate a graphical output in a predefined display format in response to processing the symbols; a first one-way link, coupled to convey the clear stream of symbols from the decoder to the computer; an output interface, which is configured to convey the graphical output to the network in an unencrypted format for display on the remote user terminal; and a second one-way link, coupled to convey the graphical output from the computer to the output interface, wherein an input path for conveying the stream of symbols from the remote user terminal to the processor and an output path for conveying the graphical output from the processor to a display on the remote user terminal are separate and independent paths, without any electronic interaction between the input and output paths within the remote user terminal. - View Dependent Claims (10, 11, 12, 13, 14)
-
-
15. A method for communication, comprising:
-
receiving in a secure installation via a network from a remote user terminal an input comprising a stream of symbols that has been encrypted using a preselected encryption key; decoding the encrypted stream of symbols in the secure installation using a decryption key corresponding to the preselected encryption key, to produce a clear stream of symbols; inputting the clear stream of symbols via a first one-way link to a processor in the secure installation; using a computer program running on the processor in the secure installation, processing the symbols in the clear stream and generating a graphical output in a predefined display format in response to processing the symbols; and outputting the graphical output from the secure installation via a second one-way link to the network for display on the remote user terminal, wherein an input path for conveying the stream of symbols from the remote user terminal to the processor and an output path for conveying the graphical output from the processor to a display on the remote user terminal are separate and independent paths, without any electronic interaction between the input and output paths within the remote user terminal. - View Dependent Claims (16, 17)
-
-
18. Communication apparatus for deployment in a secure installation, the apparatus comprising:
-
an input interface, which is configured to receive via a network from a remote user terminal outside the secure installation an input comprising a stream of symbols that has been encrypted using a preselected encryption key; a decoder, which is coupled to receive the encrypted stream of symbols from the interface and configured to decrypt the encrypted stream using a decryption key corresponding to the preselected encryption key, to produce a clear stream of symbols; a computer, which is configured to run a software program that causes the computer to process the symbols in the clear stream and to generate a graphical output in a predefined display format in response to processing the symbols; a first one-way link, coupled to convey the clear stream of symbols from the decoder to the computer; an output interface, which is configured to convey the graphical output to the network for display on the remote user terminal; and a second one-way link, coupled to convey the graphical output from the computer to the output interface, wherein an input path for conveying the stream of symbols from the remote user terminal to the processor and an output path for conveying the graphical output from the processor to a display on the remote user terminal are separate and independent paths, without any electronic interaction between the input and output paths within the remote user terminal. - View Dependent Claims (19, 20)
-
Specification