Unlock instant, AI-driven research and patent intelligence for your innovation.

Provably secure application-specific cross-domain solutions

A security domain, security technology, applied in computer security devices, data exchange networks, instruments, etc., can solve problems such as not allowing user interaction

Pending Publication Date: 2021-06-11
GENERAL ELECTRIC CO
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

A transport-type CDS (sometimes called "shielded CDS") allows traffic between domains (governed by a more complex mandatory security policy), but does not allow users to communicate with those domains from the same computer that traffic is enabled on. interact

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Provably secure application-specific cross-domain solutions
  • Provably secure application-specific cross-domain solutions
  • Provably secure application-specific cross-domain solutions

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0012] figure 1 A MIND synthesis pathway 100 is depicted according to an embodiment. Synthesis path 100 can implement a secure communication verifier in, for example, a multiprocessor system-on-chip (SoC), field-programmable gate array (FPGA), or application-specific integrated circuit (ASIC) using logic and runtime board support package (BSP) software. The LangSec tool generates formally verified wire protocol implementations to verify cross-domain information flow.

[0013] According to an embodiment, a SoC (or parts thereof) may be implemented as an Application Specific Integrated Circuit (ASIC). For purposes of discussion, an embodiment implemented as an FPGA will be presented. However, ASIC or SoC implementations can be developed from this disclosure.

[0014] Protocol specifications and security domain definitions 110 are provided to a set of LangSec tools 120 . These specifications / definitions define and implement formally verified secure resolvers for the cross-dom...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

A secure communication path device includes a first secure communication validator providing a one-way communication path from a security domain by implementing a secure protocol parser, a second secure communication validator providing a one-way communication path from a second security domain by implementing a secure second protocol parser. Each validator includes respective serial / de-serializer units providing a unidirectional communication path from their respective security domain. The device hardware segregate respective communications of the security domains within the secure communication path device.

Description

[0001] Cross References to Related Applications [0002] This application claims priority and benefit to U.S. Patent Application No. 16 / 695,797, filed November 26, 2019. technical field [0003] The present disclosure generally relates to a system and method for providing a cross-domain composition path, which implements a secure protocol parser by merging two types of verifiers. Background technique [0004] Conventional cross-domain solutions (CDS) move information between different security domains. A CDS can include an integrated system of hardware and software that can transfer information between incompatible security domains or classification levels. A CDS may include solutions for information assurance that provide manual or automated access and / or transfer of information between two or more disparate security domains. [0005] An access CDS allows users to interact with multiple domains, but strictly isolates each interaction to a single domain at a time and does ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L12/26G06F8/41G06F8/30G06F9/448
CPCH04L63/20H04L43/18G06F8/427G06F8/315G06F9/4498G06F21/606H04L63/18G06F21/76G06F2221/2105G06F21/602H04L63/0428
Inventor 威廉·大卫·史密斯克日什托夫·凯帕大卫·萨福德
Owner GENERAL ELECTRIC CO