Enterprise cross-domain solution having configurable data filters
First Claim
1. A cross-domain system for transferring files from a client coupled to a first network in a first network domain to a server coupled to a second network in a second network domain, the cross-domain system comprising:
- a first server in the first network domain having an input adapted to receive files from the client via the first network and store the received files in a first temporary memory, the first server configured to process the received files based on predetermined instructions stored in at least one associated first file stored in a first permanent memory, the first server also having an output for transmitting the processed received files;
a one-way data link having an input coupled to the output of the first server and an output; and
a second server in the second network domain having an input adapted to receive the processed received files from the first server via the one-way data link and store the received files in a second temporary memory, the second server configured to further process the received files based on predetermined instructions stored in at least one associated second file stored in a second permanent memory, the second server also having an output adapted to transmit the further processed received files to the server via the second network;
wherein the first server is configured to store the at least one associated first file in the first permanent memory with first security policies which prevent the at least one associated first file from disrupting operation of the first server;
wherein the second server is configured to store the at least one associated second file in the second permanent memory with second security policies which prevent the at least one associated second file from disrupting operation of the second server;
wherein the first and second servers are configured to allow the at least one associated first file and the at least one associated second file to be overwritten to update the processing performed by the first server and the second server, respectively, while maintaining the respective security policies applied to such files.
6 Assignments
0 Petitions
Accused Products
Abstract
A cross-domain system for transferring files from a client to a server. A first server in the first network domain receives and stores files from the client via the first network. The received files are processed based on predetermined instructions stored in an associated file. The processed received files are transmitted to a second server via a one-way data link. The second server in the second network domain receives and stores the processed received files. The received files are further processed based on predetermined instructions stored in an associated file. The further processed received files are transmitted to the server via the second network. The two associated files are stored in permanent memory with security policies which prevent the files from disrupting operation of the first and second servers, respectively. The security policies allow the associated files to be overwritten to update the processing performed by the associated server.
23 Citations
18 Claims
-
1. A cross-domain system for transferring files from a client coupled to a first network in a first network domain to a server coupled to a second network in a second network domain, the cross-domain system comprising:
-
a first server in the first network domain having an input adapted to receive files from the client via the first network and store the received files in a first temporary memory, the first server configured to process the received files based on predetermined instructions stored in at least one associated first file stored in a first permanent memory, the first server also having an output for transmitting the processed received files; a one-way data link having an input coupled to the output of the first server and an output; and a second server in the second network domain having an input adapted to receive the processed received files from the first server via the one-way data link and store the received files in a second temporary memory, the second server configured to further process the received files based on predetermined instructions stored in at least one associated second file stored in a second permanent memory, the second server also having an output adapted to transmit the further processed received files to the server via the second network; wherein the first server is configured to store the at least one associated first file in the first permanent memory with first security policies which prevent the at least one associated first file from disrupting operation of the first server; wherein the second server is configured to store the at least one associated second file in the second permanent memory with second security policies which prevent the at least one associated second file from disrupting operation of the second server; wherein the first and second servers are configured to allow the at least one associated first file and the at least one associated second file to be overwritten to update the processing performed by the first server and the second server, respectively, while maintaining the respective security policies applied to such files. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A cross-domain system for transferring files from a client coupled to a first network in a first network domain to a server coupled to a second network in a second network domain, the cross-domain system comprising:
-
a first server in the first network domain having an input adapted to receive files from the client via the first network and store the received files in a first temporary memory, the first server configured to process the received files based on predetermined instructions stored in at least one associated first file stored in a first permanent memory, the first server also having an output for transmitting the processed received files; a one-way data link having an input coupled to the output of the first server and an output; and a second server in the second network domain having an input adapted to receive the processed received files from the first server via the one-way data link and store the received files in a second temporary memory, the second server also having an output adapted to transmit the received files to the server via the second network; wherein the first server is configured to store the at least one associated first file in the first permanent memory with security policies which prevent the at least one associated first file from disrupting operation of the first server; wherein the first server is configured to allow the at least one associated first file to be overwritten to update the processing performed by the first server, while maintaining the security policies applied to such file. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A cross-domain system for transferring files from a client coupled to a first network in a first network domain to a server coupled to a second network in a second network domain, the cross-domain system comprising:
-
a first server in the first network domain having an input adapted to receive files from the client via the first network and store the received files in a first temporary memory, the first server also having an output for transmitting the received files; a one-way data link having an input coupled to the output of the first server and an output; and a second server in the second network domain having an input adapted to receive the received files from the first server via the one-way data link and store the received files in a second temporary memory, the second server configured to process the received files based on predetermined instructions stored in at least one associated second file stored in a second permanent memory, the second server also having an output adapted to transmit the processed received files to the server via the second network; wherein the second server is configured to store the at least one associated second file in the second permanent memory with security policies which prevent the at least one associated second file from disrupting operation of the second server; wherein the second server is configured to allow the at least one associated second file to be overwritten to update the processing performed by the second server, while maintaining the security policies applied to such file. - View Dependent Claims (15, 16, 17, 18)
-
Specification