The patent badge is an abbreviated version of the USPTO patent document. The patent badge does contain a link to the full patent document.
The patent badge is an abbreviated version of the USPTO patent document. The patent badge covers the following: Patent number, Date patent was issued, Date patent was filed, Title of the patent, Applicant, Inventor, Assignee, Attorney firm, Primary examiner, Assistant examiner, CPCs, and Abstract. The patent badge does contain a link to the full patent document (in Adobe Acrobat format, aka pdf). To download or print any patent click here.
Patent No.:
Date of Patent:
Mar. 09, 2010
Filed:
Apr. 28, 2006
Michael K. Weller, Stroudsburg, PA (US);
Tarachrand A. Mangra, Bloomingdale, NJ (US);
Joseph A. Litzinger, Landing, NJ (US);
Sanket J. Shah, Old Bridge, NJ (US);
Michael K. Weller, Stroudsburg, PA (US);
Tarachrand A. Mangra, Bloomingdale, NJ (US);
Joseph A. Litzinger, Landing, NJ (US);
Sanket J. Shah, Old Bridge, NJ (US);
BAE Systems Information and Electronic Systems Integration Inc., Nashua, NH (US);
Abstract
A method of enforcing a network security policy including mandatory access control (MAC), discretionary access control (DAC) and integrity control for a secure information network, includes operating a transport guard within a memory partition logically between a protected application running in the partition and a networking stack, and defining ports for the transport guard including (i) an application port for forwarding data to and receiving data from the application, (ii) a data port for receiving data addressed to the application from the networking stack, and for sending data originating from the application to the stack, and (iii) a control port for supplying configuration data to the transport guard. The configuration data corresponds to MAC, DAC and integrity control policies specified by the network for the protected application. The transport guard limits data flow between its protected application and the data ports accordingly.