SUNG KIM, M.D.
Anesthesiologist Assistant at Hawkins Dr, Iowa City, IA

7606254, Oct 20, 2009

Mar 2, 2006

11/366136

David S. Hardin - Cedar Rapids IA, US
David A. Greve - Cedar Rapids IA, US
Sung J. Kim - Iowa City IA, US
Matthew M. Wilding - Cedar Rapids IA, US

Rockwell Collins, Inc. - Cedar Rapids IA

H04L 12/54, H04J 1/16

370428, 370386, 370412

The present invention is a method for providing a high-assurance guard in a partitioned processing system, the partitioned processing system including a first input/output partition, a guard function partition and a second input/output partition, the method including the steps of: receiving a data packet from the first input/output partition of the partitioned processing system via a first I/O interface; determining if the data packet is well-formed as defined by an interface control document; and forwarding the data packet to the second input/output partition of the partitioned processing system and to a second I/O interface only when the data packet is well-formed.

7640433, Dec 29, 2009

Jan 28, 2005

11/045454

James A. Marek - Anamosa IA, US
Sung J. Kim - Iowa City IA, US

Rockwell Collins, Inc. - Cedar Rapids IA

H04L 9/32

713181, 726 30

The present invention is a MILS network system employing functional separation of messages without customized switches. The MILS network system may maintain separation of data while eliminating a requirement of full message encryption. In an embodiment of the invention, a function may be employed whereby a keyed digest of a message is created. The function may receive a message and a key, and may emit a keyed digest value. The key may be representative of a particular level of security, thus promoting the separation of data. Messages may include an embedded keyed digest when sent through a switch to a MILS node. At the MILS node, the keyed digest may be recalculated, if it matches, the message may be passed to a host.