Unlock instant, AI-driven research and patent intelligence for your innovation.

High assurance security gateway interconnecting different domains

A gateway and security technology, applied in the direction of network connection, transmission system, electrical components, etc.

Active Publication Date: 2015-09-09
AIRBUS OPERATIONS (SAS) +1
View PDF5 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] However, there remains the problem of how to secure several applications characterized by different security levels while authorizing bi-directional information exchange between said applications
However, complex agents are difficult to analyze with high assurance levels

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • High assurance security gateway interconnecting different domains
  • High assurance security gateway interconnecting different domains
  • High assurance security gateway interconnecting different domains

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] The idea of ​​the invention consists of breaking down the functionality of the gateway into sufficiently small components that can be easily evaluated or analyzed.

[0026] figure 1 A gateway suitable for interconnecting different domains, possibly with different security levels, according to the invention is schematically shown.

[0027] The gateway 1 uses a MILS type virtualization platform 3, and the gateway 1 is designed to take advantage of the strong isolation characteristics of such a platform and the designated communication channels in order to accommodate several functions at the same time.

[0028] It should be remembered that the virtualization platform 3 developed for high assurance requirements is basically based on the strict isolation and non-interference characteristics between different functions. In fact, the virtualization platform 3 offers the possibility to create isolated runtime environments (generally called partitions) for each function. The ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention proposes a gateway having an architecture which authorises a bidirectional communication between applications located in different domains and presents a high assurance level of protection. The gateway uses a virtualisation platform and comprises a set of functional blocs (9, 11, 13, 15, 17) configured to authorise secure bidirectional flow of data along two different paths (19, 21) between first and second domains (5, 7), said set of functional blocs being decomposed into a plurality of elementary evaluable components each one of which having a specified function and being adapted to communicate with other predefined elementary components.

Description

technical field [0001] The present invention relates generally to high-assurance security gateways interconnecting different domains, and in particular to high-assurance security gateways in embedded infrastructures. Background technique [0002] In most fields of industry, it is common for different systems with different applications to communicate with each other in order to achieve distribution. Each application can be thought of as a set of functions, and each function is a piece of software that helps perform a portion of the task that the application is intended to accomplish. For example, many different types of devices in a vehicle or aircraft need to exchange data with each other through a communication system in order to realize the maneuvering of the vehicle or aircraft. Each type of device may have a specific set of functions or applications with varying levels of criticality, depending on their importance. A specific level of security is associated with each ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/66H04L29/06
CPCH04L63/0209H04L63/0281H04L63/0254H04L63/02H04L63/0227H04L63/10H04L63/107
Inventor 贝特朗·勒孔特克里斯蒂娜·西马凯迈克尔·保利奇凯文·穆勒
Owner AIRBUS OPERATIONS (SAS)