-
公开(公告)号:US20140020109A1
公开(公告)日:2014-01-16
申请号:US13747771
申请日:2013-01-23
发明人: Ronald Mraz , James Hope
IPC分类号: H04L29/06
CPC分类号: H04L63/0428 , H04L63/0227
摘要: A manifest transfer engine for a one-way file transfer system is disclosed. The manifest transfer engine comprises a send side, a receive side, and a one-way data link enforcing unidirectional data flow from the send side to the receive side. The send side receives and stores a file manifest table from an administrator server. The send side also receives a file from a user and compares it with the file manifest table. Transfer of the file to the receive side via the one-way data link is allowed only when there is a match between the file and the file manifest table. In an alternative embodiment, the receive side instead receives and stores the file manifest table from the administrator server and compares it with the file received from the send side via the one-way data link to determine whether to allow transfer of the file.
摘要翻译: 公开了用于单向文件传送系统的清单传送引擎。 清单传送引擎包括执行从发送侧到接收侧的单向数据流的发送侧,接收侧和单向数据链路。 发送端从管理员服务器接收并存储文件清单表。 发送方也从用户那里接收一个文件,并将其与文件清单表进行比较。 仅当文件与文件清单表之间存在匹配时,才允许通过单向数据链接将文件传输到接收方。 在替代实施例中,接收侧而是从管理员服务器接收并存储文件清单表,并将其与通过单向数据链路从发送侧接收的文件进行比较,以确定是否允许文件的传送。
-
公开(公告)号:US08831222B2
公开(公告)日:2014-09-09
申请号:US13705885
申请日:2012-12-05
发明人: Jeffrey C. Menoher , James Hope , Ronald Mraz
IPC分类号: G06F15/177 , H04L29/06 , H04L29/08 , H04L5/14
CPC分类号: H04L67/00 , H04L63/0209 , H04L63/0227 , H04L63/105 , H04L67/34 , H04L67/38
摘要: A bilateral data transfer system comprising a first node, a second node, a first one-way link for unidirectional transfer of first data from the first node to the second node, and a second one-way link for unidirectional transfer of second data from the second node to the first node, wherein the unidirectional transfer of the first data across the first one-way link and the unidirectional transfer of the second data across the second one-way link are independently administered by the bilateral data transfer system. Under such bilateral data transfer system, each of the one-way data links may be subject to separately administered security restrictions and data filtering processes, enabling secure bilateral communications across different network security domains.
摘要翻译: 一种双向数据传输系统,包括第一节点,第二节点,用于将第一数据从第一节点单向传输到第二节点的第一单向链路,以及用于从第一节点单向传输第二数据的第二单向链路 第二节点到第一节点,其中通过第一单向链路的第一数据的单向传输和跨第二单向链路的第二数据的单向传送由双向数据传输系统独立地管理。 在这种双边数据传输系统下,每个单向数据链路都可能受到单独管理的安全限制和数据过滤过程,从而实现跨不同网络安全域的安全双向通信。
-
公开(公告)号:US20140337410A1
公开(公告)日:2014-11-13
申请号:US14018085
申请日:2013-09-04
发明人: Ronald Mraz , James Hope
IPC分类号: H04L29/06
摘要: A cross-domain system for transferring files from a client to a server. A first server in the first network domain receives and stores files from the client via the first network. The received files are processed based on predetermined instructions stored in an associated file. The processed received files are transmitted to a second server via a one-way data link. The second server in the second network domain receives and stores the processed received files. The received files are further processed based on predetermined instructions stored in an associated file. The further processed received files are transmitted to the server via the second network. The two associated files are stored in permanent memory with security policies which prevent the files from disrupting operation of the first and second servers, respectively. The security policies allow the associated files to be overwritten to update the processing performed by the associated server.
摘要翻译: 用于将文件从客户端传输到服务器的跨域系统。 第一个网络域中的第一台服务器通过第一个网络从客户端接收和存储文件。 接收到的文件根据存储在相关文件中的预定指令进行处理。 经处理的接收到的文件经由单向数据链路传送到第二服务器。 第二个网络域中的第二个服务器接收并存储已处理的接收到的文件。 基于存储在相关文件中的预定指令进一步处理所接收的文件。 进一步处理的接收文件经由第二网络被发送到服务器。 两个相关联的文件存储在具有安全策略的永久存储器中,防止文件分别中断第一和第二服务器的操作。 安全策略允许覆盖相关文件以更新由相关联的服务器执行的处理。
-
公开(公告)号:US09736121B2
公开(公告)日:2017-08-15
申请号:US13747771
申请日:2013-01-23
发明人: Ronald Mraz , James Hope
IPC分类号: H04L29/06
CPC分类号: H04L63/0428 , H04L63/0227
摘要: A manifest transfer engine for a one-way file transfer system is disclosed. The manifest transfer engine comprises a send side, a receive side, and a one-way data link enforcing unidirectional data flow from the send side to the receive side. The send side receives and stores a file manifest table from an administrator server. The send side also receives a file from a user and compares it with the file manifest table. Transfer of the file to the receive side via the one-way data link is allowed only when there is a match between the file and the file manifest table. In an alternative embodiment, the receive side instead receives and stores the file manifest table from the administrator server and compares it with the file received from the send side via the one-way data link to determine whether to allow transfer of the file.
-
公开(公告)号:US09380023B2
公开(公告)日:2016-06-28
申请号:US14018085
申请日:2013-09-04
发明人: Ronald Mraz , James Hope
摘要: A cross-domain system for transferring files from a client to a server. A first server in the first network domain receives and stores files from the client via the first network. The received files are processed based on predetermined instructions stored in an associated file. The processed received files are transmitted to a second server via a one-way data link. The second server in the second network domain receives and stores the processed received files. The received files are further processed based on predetermined instructions stored in an associated file. The further processed received files are transmitted to the server via the second network. The two associated files are stored in permanent memory with security policies which prevent the files from disrupting operation of the first and second servers, respectively. The security policies allow the associated files to be overwritten to update the processing performed by the associated server.
摘要翻译: 用于将文件从客户端传输到服务器的跨域系统。 第一个网络域中的第一台服务器通过第一个网络从客户端接收和存储文件。 接收到的文件根据存储在相关文件中的预定指令进行处理。 经处理的接收到的文件经由单向数据链路传送到第二服务器。 第二个网络域中的第二个服务器接收并存储已处理的接收到的文件。 基于存储在相关文件中的预定指令进一步处理所接收的文件。 进一步处理的接收文件经由第二网络被发送到服务器。 两个相关联的文件存储在具有安全策略的永久存储器中,防止文件分别中断第一和第二服务器的操作。 安全策略允许覆盖相关文件以更新由相关联的服务器执行的处理。
-
公开(公告)号:US20130097283A1
公开(公告)日:2013-04-18
申请号:US13705885
申请日:2012-12-05
发明人: Jeffrey C. Menoher , James Hope , Ronald Mraz
IPC分类号: H04L29/08
CPC分类号: H04L67/00 , H04L63/0209 , H04L63/0227 , H04L63/105 , H04L67/34 , H04L67/38
摘要: A bilateral data transfer system comprising a first node, a second node, a first one-way link for unidirectional transfer of first data from the first node to the second node, and a second one-way link for unidirectional transfer of second data from the second node to the first node, wherein the unidirectional transfer of the first data across the first one-way link and the unidirectional transfer of the second data across the second one-way link are independently administered by the bilateral data transfer system. Under such bilateral data transfer system, each of the one-way data links may be subject to separately administered security restrictions and data filtering processes, enabling secure bilateral communications across different network security domains.
摘要翻译: 一种双向数据传输系统,包括第一节点,第二节点,用于将第一数据从第一节点单向传输到第二节点的第一单向链路,以及用于从第一节点单向传输第二数据的第二单向链路 第二节点到第一节点,其中通过第一单向链路的第一数据的单向传输和跨第二单向链路的第二数据的单向传送由双向数据传输系统独立地管理。 在这种双边数据传输系统下,每个单向数据链路都可能受到单独管理的安全限制和数据过滤过程,从而实现跨不同网络安全域的安全双向通信。
-
-
-
-
-
搜索结果
6 条记录 (耗时 0.025 秒)
