主权项 |
1. A computer network comprising:
a first domain, the first domain having a first security classification such that the first domain accepts data in response to the data complying with the first security classification; a second domain, the second domain having a second security classification such that the second domain accepts data in response to the data complying with the second security classification, wherein the security classification of the second domain has a higher level of security classification than the security classification of the first domain; and a Temporal Separation Cross Domain Gateway (TSEP-CDG) having a temporal separation hardware interlock configured to physically prevent communication between the first and the second domains, wherein the TSEP-CDG is configured to:
connect, via the temporal separation hardware interlock, with the first domain;receive data from the first domain, the data complying with the first security classification of the first domain, but not the second security classification of the second domain;disconnect the temporal separation hardware interlock from the first domain;execute an information-invariant data transformation on the received data to transform the data to comply with the security classification of the second domain;connect, via the temporal separation hardware interlock, with the second domain;transmit the transformed data to the second domain, the transformed data complying with the security classification of the second domain; anddisconnect the temporal separation hardware interlock from the second domain. |