发明名称 |
Secure front-end interface |
摘要 |
A secure front-end interface for a PLC, RTU or similar device is disclosed. A first server is coupled to the PLC via a communications link and is configured to receive status information from the device and transmit the information to a second server via a one-way data link. The second server has a network interface for coupling to a network and receives the information from the first server via the one-way data link and outputs the information via the network interface based upon a user request. The front-end interface may further include a second one-way data link coupled from the second server to the first server to allow user command entry. The secure front-end interface may alternatively consist only of a single server coupled between the device and the network which requires a user to enter a password before obtaining access to the status information. |
申请公布号 |
US9282102(B2) |
申请公布日期 |
2016.03.08 |
申请号 |
US201514747590 |
申请日期 |
2015.06.23 |
申请人 |
Owl Computing Technologies, Inc. |
发明人 |
Mraz Ronald |
分类号 |
H04L29/06;H04L29/08 |
主分类号 |
H04L29/06 |
代理机构 |
|
代理人 |
Economou John S. |
主权项 |
1. A front-end interface for a device having a single network interface connection for outputting status information and for receiving commands, the device having no other communications interfaces for receiving commands, comprising:
a first server for coupling to the network interface connection of the device via a dedicated communications link and having an output, the first server configured to receive status information from the device and forward the status information on the output; a one-way data link having an input coupled to the output of the first server and an output, the one-way data link configured to allow information to pass from the input to the output and to prevent any signal from passing from the output to the input; a second server having an input coupled to the output of the one-way data link and a network interface for coupling to a network, the second server configured to receive the status information from the device forwarded from the first server via the one-way data link, the second server further configured to output the status information to a user via the network interface based upon a user request received via the network interface for the status information from the device; and wherein the second server is coupled to the first server only via the one-way data link such that no commands pass from the network to the device. |
地址 |
Ridgefield CT US |