Electrical computers and digital processing systems: support – Multiple computer communication using cryptography – Protection at a particular protocol layer
Patent
1997-09-30
2000-05-09
Beausoliel, Jr., Robert W.
Electrical computers and digital processing systems: support
Multiple computer communication using cryptography
Protection at a particular protocol layer
713201, 380 23, 380 25, 380 4, G06F 1214
Patent
active
060617942
ABSTRACT:
A system and method for performing secure peer-to-peer device communications on an I/O bus, such as a PCI bus, a Fiber Channel bus, an IEEE, 1394 bus or a Universal Serial Bus. The system includes a plurality of intelligent I/O devices, such as intelligent storage devices and/or controllers, communications devices, video devices and audio devices. The I/O devices perform peer-to-peer message and data transfers, thereby bypassing the operating system running on the computer's CPU. The intelligent I/O devices encrypt messages and data before transmitting them on the I/O bus and conversely decrypt the messages and data upon reception. The encryption provides secrecy and/or authentication of the sender. The devices use keys or passwords to encrypt/decrypt the data. The keys are stored in non-volatile memory in the devices and are distributed to the devices by the system BIOS at initialization time. The devices perform access authorization validation using rule sets also distributed by the BIOS at initialization time. The rule sets specify which I/O operations are valid for a peer I/O device to request of a respective I/O device based, preferably, upon the device class/subclasses of the requesting device. In another embodiment, one of the intelligent I/O devices may be a communications device which serves as a firewall for the I/O bus. In this embodiment, the rule set further includes identification information of the remote machines/devices.
REFERENCES:
patent: 4919545 (1990-04-01), Yu
patent: 5390351 (1995-02-01), Di Giulio et al.
patent: 5530701 (1996-06-01), Stillman et al.
patent: 5551066 (1996-08-01), Stillman et al.
patent: 5559933 (1996-09-01), Boswell
patent: 5568552 (1996-10-01), Davis
patent: 5600803 (1997-02-01), Iitsuka et al.
patent: 5657445 (1997-08-01), Pearce
patent: 5692124 (1997-11-01), Holden et al.
patent: 5706431 (1998-01-01), Otto
patent: 5724027 (1998-03-01), Shiman et al.
patent: 5745678 (1998-04-01), Herzberg et al.
patent: 5784464 (1998-07-01), Akiyama et al.
patent: 5787175 (1998-07-01), Carter
patent: 5787427 (1998-07-01), Benantar et al.
patent: 5805880 (1998-09-01), Pearce et al.
patent: 5826014 (1998-10-01), Coley et al.
patent: 5832228 (1998-11-01), Holden et al.
patent: 5841976 (1998-11-01), Tai et al.
patent: 5859911 (1999-01-01), Loucks et al.
patent: 5889958 (1999-03-01), Willens
patent: 5898780 (1999-04-01), Liu et al.
patent: 5903721 (1999-05-01), Sixtus
patent: 5931947 (1999-08-01), Burns et al.
Stallings, William, Network and Internetwork: Security Principles and Practice, Prentice Hall, Englewood Cliffs, New Jersey, 1995, pp. 1-3.
Intelligent I/O (I.sub.2 O) Architecture Specification, Draft Revision 1.5, Mar. 1997, pp. 1-1 through 17.
Angelo Michael F.
Driscoll Dan J.
Olarig Sompong P.
Wooten David R.
Beausoliel, Jr. Robert W.
Compaq Computer Corp.
Daffer Kevin L.
Hamdan Wasseem
Kowert Robert C.
LandOfFree
System and method for performing secure device communications in does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with System and method for performing secure device communications in, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and System and method for performing secure device communications in will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-1075587