Stand alone device for providing security within computer networks

Assignee

• ITT Industries · US

Inventors

• James M. Holden · San Jose, US
• Stephen E. Levin · Poway, US
• James O Nickel · Dayton, US
• Edwin H. Wrench, Jr. · San Diego, US

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2211/005
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A multi-level security device is disclosed for providing security between a user and at least one computer network, wherein the user is selected from the group consisting of a host computer and at least a second network. A secure network interface Unit (SNIU) that operates at a user layer communications protocol, which communicates with other like SNIU devices by establishing an association at a session layer of a communication stack in order to create a global security perimeter for end-to-end communications. The SNIU includes a host/network interface for receiving messages sent between the user and the at least one network, which is operative to convert the received messages to and from a format utilized by the at least one network. A message parser for determining whether the association already exists with another SNIU device. A session manager coupled to the interface for identifying and verifying the user requesting access to the network. The session manager also for transmitting the messages received from the user when the message parser determines the association already exists. An association manager coupled to the interface for establishing an association with other like …