发明名称 Communications security and trusted path method and means
摘要 A trusted path device is described which may be used stand alone or may be retrofitted to a users untrusted computer console or workstation so that an untrusted data input may be displayed on an untrusted display and verified by the user, following which the trusted data can be output to an untrusted or trusted device or network. The output may be encrypted or not, by means of an encryption device which may or may not use a 'one time pad' key provided from a structured array of retrievable "one time pad" keys having associated uniquely there with, a serial number which itself need not be encrypted but with which the input data and encrypted output data are uniquely associated. Sufficient "one time pad" keys are provided on a commonly available and physically manageable medium so as to allow much simplified key management procedures while still maintaining high levels of correctness and effectiveness of the encryption processes. Trusted devices as per ITSEC Level 6 may be used to implement the trusted path and encryption devices since the apparatus according to the invention are inherently simple in functionality thereby simplifying conformance with the relevant ITSEC and security equivalent requirements. Access to trusted components of the system e.g. memory 33, processor 32, encryption/decryption 37,38, is only allowed on receipt of a request at untrusted input interface 40. A trusted user has the request and/or data displayed on VDU 36 and manually activates a verifier to allow access. Thus external untrusted networks etc. only have access to equally untrusted internal components.
申请公布号 GB2449410(A) 申请公布日期 2008.11.26
申请号 GB19920022760 申请日期 1992.10.30
申请人 THE COMMONWEALTH OF AUSTRALIA 发明人 MARK STEPHEN ANDERSON;JOHN DESBOROUGH YESBERG;DAMIAN MARRIOTT;LISA NAYDA;KEN HAYMAN;MALCOLM STEVENS;BRENDAN BEAHAN
分类号 H04L9/32;G06F21/62;G06F21/84;G06F21/85 主分类号 H04L9/32
代理机构 代理人
主权项
地址
您可能感兴趣的专利