Claims
- 1. A trusted path subsystem comprising:
- a processor, wherein the processor includes a communications port;
- an input data manager connected to the processor, wherein the input data manager includes an input data switch;
- a display manager connected to the processor, wherein the display manager includes a display switch;
- wherein the input data switch operates in trusted path mode to intercept data received by the input data manager and transfer the intercepted data to the processor;
- wherein the processor operates in trusted path mode to encrypt the intercepted data and transfer the encrypted intercepted data to the communications port; and
- wherein the display switch operates in trusted path mode to modify display information transferred by the display manager as a function of display information created by the processor.
- 2. The trusted path subsystem according to claim 1 wherein the processor further includes a cryptographic entity used to selectively encrypt and decrypt data.
- 3. The trusted path subsystem according to claim 1 wherein the subsystem further includes a network interface.
- 4. The trusted path subsystem according to claim 1 wherein the input data switch comprises keyboard manager logic.
- 5. The trusted path subsystem according to claim 1 wherein the display switch includes:
- a video multiplexer having first and second video multiplexer input ports and a video multiplexer output port, wherein the video multiplexer output port generates an output video signal used to drive a video display;
- a video data memory;
- converter means, connected to the video data memory and the second video multiplexer input port, for converting data read from said video data memory into a trusted video signal representative of that data and for applying the trusted video signal to the second video multiplexer input port; and
- a video synchronization circuit, connected to the video data memory and the video multiplexer, for controlling the video data memory and the video multiplexer.
- 6. The trusted path subsystem according to claim 5 wherein the input data switch comprises keyboard manager logic.
- 7. The trusted path subsystem according to claim 5 wherein the video synchronization circuit includes means for inserting a trusted window overlay into a video signal received at the first video multiplexer input port.
- 8. The trusted path subsystem according to claim 7 herein the input data switch comprises keyboard manager logic.
- 9. A trusted path subsystem comprising:
- a processor, wherein the processor includes a communications port;
- an input data manager connected to the processor, wherein the input data manager includes a data input port, a data output port and an input data switch, wherein the input data switch is connected to the processor, the data input port and the data output port;
- a display manager connected to the processor, wherein the display manager includes a display input port, a display output port and a display switch, wherein the display switch is connected to the processor, the display input port and the display output port;
- wherein the input data switch operates in normal mode to transfer data received at the data input port to the data output port and in trusted path mode to intercept the data received at the data input port and transfer the intercepted data to the processor;
- wherein the processor operates in trusted path mode to encrypt the intercepted data and transfer the encrypted intercepted data to the communications port; and
- wherein the display switch operates in normal mode to transfer display information received at the display input port to the display output port and in trusted path mode to modify the display information received at the data input port as a function of display information received from the processor.
- 10. The trusted path subsystem according to claim 9 wherein the processor further includes a cryptographic entity used to selectively encrypt and decrypt data.
- 11. The trusted path subsystem according to claim 9 wherein the subsystem further includes a network interface.
- 12. The trusted path subsystem according to claim 9 wherein the input data switch comprises keyboard manager logic.
- 13. The trusted path subsystem according to claim 9 wherein the display switch includes:
- a video multiplexer having first and second video multiplexer input ports and a video multiplexer output port, wherein the first video multiplexer input port receives a video signal from the display input port and wherein the video multiplexer output port generates an output video signal used to drive a video display;
- a video data memory;
- converter means, connected to the video data memory and the second video multiplexer input port, for converting data read from said video data memory into a trusted video signal representative of that data and for applying the trusted video signal to the second video multiplexer input port; and
- a video synchronization circuit, connected to the video data memory and the video multiplexer, for controlling the video data memory and the video multiplexer so as to insert the trusted video signal into the output video signal generated at the video multiplexer output port.
- 14. The trusted path subsystem according to claim 13 wherein the input data switch comprises keyboard manager logic.
Parent Case Info
This is a division of application Ser. No. 07/911,900, filed Jul. 10, 1992, now U.S. Pat. No. 5,596,718.
US Referenced Citations (20)
Divisions (1)
|
Number |
Date |
Country |
Parent |
911900 |
Jul 1992 |
|