Secure communication architecture including sniffer

摘要

Secure communication of user inputs is achieved by isolating part of an endpoint device such that certificates and encryption keys are protected from corruption by malware. Further, the communication is passed through a trusted data relay that is configured to decrypt and/or certify the user inputs encrypted by the isolated part of the endpoint device. The trusted data relay can determine that the user inputs were encrypted or certified by the protected certificates and encryption keys, thus authenticating their origin within the endpoint device. The trusted data relay then forwards the inputs to an intended destination. In some embodiments, the isolated part of the endpoint device is configured to detect input created by auto-completion logic and/or spell checking logic.

主权项

1. A computing system comprising:
an input apparatus configured to receive an input from a user; a display configured to display the input from the user; a bus configured to communicate the input to the display; a processing unit configured to process data and commands received via the bus; an input capture module isolated from a less secure part of the computing system, the isolation configured to prevent corruption of the input capture module by computing instructions received from outside of the input capture module, the input capture module comprising:
storage configured to store an encryption key or certificate,a sniffer configured to sniff the bus for input data resulting from the input from the user, andlogic configured to encrypt or certify the input data, the encryption or certification occurring within the input capture module; and communication logic configured to communicate an output of the input capture module to a communication network.