摘要 |
A firewall system employs signature validation hardware (222) communicating via low level communication protocols (224) and (226) with inner and outer host computers (228) and (230), which have network protocol stacks (232) and (234) for implementing complex communication protocols with remote source and destination computers (238) and (240). The source computer (238) has data checker and signature functionalities (250) and (252), which respectively check data and generate digital signatures for data to be transmitted. The inner host computer (228) receives transmitted data and converts it to a lower protocol level at which the hardware (222) operates. The hardware (222) uses digital circuitry for protocols and checking. It validates signatures in data at a software application level, but only requires protocols (224) and (226) that are simple and low level. The firewall system (220) communicates with the source and destination computers (238) and (240) via high performance connection media (236). The hardware (222) itself communicates with the host computers (228) and (230) also via high performance connection media (227), and avoids involvement with complex communications protocols which make other firewalls vulnerable.
|