Indian Patents. 262590:SECURE TRANSFER SYSTEM (STS) FOR EXCHANGE OF INFORM ATION, DATA, & MAIL, BETWEEN PRIVATE NETWORKS AND PUBLIC NETWORKS LIKE THE INTERNET

Title of Invention	SECURE TRANSFER SYSTEM (STS) FOR EXCHANGE OF INFORM ATION, DATA, & MAIL, BETWEEN PRIVATE NETWORKS AND PUBLIC NETWORKS LIKE THE INTERNET
Abstract	This invention relates to a Secure Transfer System ( STS) which facilitates free exchange of information, data and mail between an organisations real private network (RPN), or integrated real private network (IRPN) and public networks like the internet without jeopardising the security of the former (RPN or IRPN).

Full Text	This invention relates to a Secure Transfer System (STS) which facilitates free exchange of information, data, and mail between an organisations real private network (RPN), or integrated real private network (IRPN), and public networks like the Internet, without jeopardising the security of the former (i.e. RPN or IRPN). The present state-of-the art for such security is through either 1.Various software firewalls, or 2. Software firewalls aided by router access controls, etc. 3.The present art is not able to deny telnet access from the Public networks to the Real Private Networks (RPN or IRPN). LIST OF ACCOMPANYING DRAWINGS List of drawings accompanying the invented system are as follows. Figure 1 - Present method of Internet connections to Organisation LANs / WAN Figure 2 - Proposed method of Internet connection using new invention Figure 3 - How computers in the company location may connect either to the Internet LAN or the Company LAN using the invented system Figure 4 - The invented Secure Transfer System (STS) Figure 5 - Data flow through the Secure Transfer System (STS) DESCRIPTION OF THE INVENTED SYSTEM Private networks for multi-locational organisations have become a must for reasons of security, in the wake of enterprise-wise computerisation and computing across geographically separated locations. The VPN or virtual private networks is a poor substitute for RPNs or real private networks which ensure 100% security, achieved by point-to-point leased lines between organisation locations, and there is growing realisation of this fact. While on the one hand, for reasons of security, RPNs are required to ensure safety of Company data bases in the process of WAN computing; on the other hand, organisations and enterprises have to be a part of the Global Information Highway, which is the Internet, and make all its publishable information available to the business community and the general public, to facilitate the emerging e-Commerce activity. To ensure that both objectives are met, we have devised a Secure Transfer System (STS) for transferring information, data, and mail back and forth between the 100% secure Real private networks (RPNs) of the enterprise / organisation and the open public information highway - the Internet. The inventive features of the new Secure Transfer system for exchange of information / data / mail back and forth between the Enterprise / Organisation RPN and the Public Internet is described as follows, and comprises of the following components. All the information which the Enterprise / Organisation wishes to publish is loaded on to a Proxy Server (PS). This is connected to the Internet LAN bus in the Company Premises. The Proxy Server (PS) has three primary functions. A.To display all publishable information of the Enterprise / Organisation, to which all people logging in will have Read-only access. B.To have WEB based interactive screens through which Organisation outsiders may transact business - submit offers, place orders, exchange information of mutual benefit, etc. C.Receive and send mail from and to organisation outsiders, and act as the Organisation's Internet Mail Gateway A company server / s (CS) sitting on the RPN LAN bus in the Organisation's premises, has fields identical to those in the Proxy Server (PS). These are continuously updated from the other data base servers residing on the RPN LAN bus of the Organisation. The Intermediate Server (IS) which has the same fields as the Proxy and the Company Servers, and periodically (settable) connects to either the Proxy or the Company server to synchronise information / data / mail with these servers. An electro-mechanical three-position switch (EMTPS) one end of which is permanently connected to the LAN card of the of the Intermediate Server (IS). This switch connects the IS either to the Internet LAN bus or the RPN LAN bus, but never to both together. The switch also has a null position in which state the IS LAN card is not connected to either of the LAN buses (the Internet or RPN LAN buses). In this null state, the cleansing software residing in the IS cleans the content from viruses, worms, etc., which may have come from either of the LAN buses (Internet or RPN) during the last connect period, before transferring the information / data / mail to either the CS or the PS through their respective LAN buses. The cleansing software patches are updated every time the IS connects to the Internet LAN bus. The change-of-state commands for the three position switch (EMTPS) also resides in the IS and is given through the serial ports of the IS and the EMTPS. The above connections are depicted in the accompanying drawing shown in Figure 4. The data flow for all publishable information will be unidirectional from CS to IS to PS as shown in the accompanying drawing Figure 5. The WEB based inputs of information / submissions on the interactive screens will also be unidirectional from PS to IS to CS as shown in Figure 5. The email flows will be bidirectional from PS to IS to CS to IS to PS, as shown in Figure 5. The EMTPS may also be used to connect a node computer in an organisation location or employees work place either to the Internet LAN bus or the RPN LAN bus through the respective I/O boxes placed at the location. The null position of the switch and the enforced dwell time in this position ensures that the node computer may not connect to either LAN bus, before it is properly cleansed from viruses / worms / etc., through built-in cleansing software. The cleansing software patches are updated every time the node computer connects to the Internet LAN bus. This function of the EMTPS is shown in Figure 3 of the accompanying drawings. Whereas, the change-of-state commands for the IS are settable and automatic, for the node computer the change-of-state commands are given through manual ASCII commands. Figure 1 of the accompanying drawings shows how the Internet is connected to the RPN LAN bus in the present art. Figure 2, of the accompanying drawings shows how the Internet is connected to the RPN with the new invention - STS (comprising of the PS / IS / CS / EMTPS each with its own embedded software). The main advantage of the new invention, Secure Transfer System (STS), is as follows. a. It facilitates free flow of information / data / mail between the company RPN and the Internet. b.It ensures that there is no telnet access from the organisation outsiders to the organisation's RPN LAN and the data bases sitting on it. c. It ensures 100% security of the RPN and data bases residing in it. d.It creates an air gap between the Internet and the enterprise / organisation RPN and yet allows free exchange of information / data / mail between the two networks. e. If gives the Enterprise / Organisation the facility for e-Commerce without jeopardising the security of its internal Data Bases. f. It removes the major impediment to the growth of e-Business - the security concern for internal Data Bases of the enterprises / organisation The inventive features of the new system are described above and in the accompanying drawings Figures 1 to 5. CLAIM 1.A Secure Transfer System (STS) for free flow of information / data / mail between an enterprise's / organisation's RPN (real private network) and the public information highway - the Internet. 2.The Secure Transfer System (STS) comprising of a. A Proxy Server (PS) sitting on the Internet LAN bus b. A company Server (CS) sitting on the RPN LAN bus of the organisation / enterprise. c. An Intermediate Server (IS) connected through its LAN card to the LAN card of the electro-mechanical three position switch (EMTPS) d.The EMTPS connects the IS either to the Internet LAN bus, or the RPN LAN bus, or keeps it in the null position based on commands given by the IS. e. The change-of-state commands from the IS to the EMTPS is sent via its serial port to the serial port of the EMTPS 3.The data flow through the STS is as follows. a. Unidirectional for all publishable data and information from CS to IS to PS. b. Unidirectional for all external inputs and e-Business transactions from PS to IS to CS. c. Bidirectional for email from PS to IS to CS to IS to PS. 4.The EMTPS facilitates connection of a computer node sitting in an employees desk in the enterprise / organisation location, to connect either to the Internet LAN bus or to the RPN LAN bus through the respective I/O boxes, after due cleansing in the null state before connecting to either bus. This invention relates to a Secure Transfer System ( STS) which facilitates free exchange of information, data and mail between an organisations real private network (RPN), or integrated real private network (IRPN) and public networks like the internet without jeopardising the security of the former (RPN or IRPN).

Full Text

This invention relates to a Secure Transfer System (STS) which
facilitates free exchange of information, data, and mail between an organisations real
private network (RPN), or integrated real private network (IRPN), and public
networks like the Internet, without jeopardising the security of the former (i.e. RPN or
IRPN).
The present state-of-the art for such security is through either
1.Various software firewalls, or
2. Software firewalls aided by router access controls, etc.
3.The present art is not able to deny telnet access from the Public networks to
the Real Private Networks (RPN or IRPN).
LIST OF ACCOMPANYING DRAWINGS
List of drawings accompanying the invented system are as follows.
Figure 1 - Present method of Internet connections to Organisation LANs / WAN
Figure 2 - Proposed method of Internet connection using new invention
Figure 3 - How computers in the company location may connect either to the Internet
LAN or the Company LAN using the invented system
Figure 4 - The invented Secure Transfer System (STS)
Figure 5 - Data flow through the Secure Transfer System (STS)
DESCRIPTION OF THE INVENTED SYSTEM
Private networks for multi-locational organisations have become a must for reasons
of security, in the wake of enterprise-wise computerisation and computing across
geographically separated locations.
The VPN or virtual private networks is a poor substitute for RPNs or real private
networks which ensure 100% security, achieved by point-to-point leased lines
between organisation locations, and there is growing realisation of this fact.
While on the one hand, for reasons of security, RPNs are required to ensure safety of
Company data bases in the process of WAN computing; on the other hand,
organisations and enterprises have to be a part of the Global Information Highway,
which is the Internet, and make all its publishable information available to the
business community and the general public, to facilitate the emerging e-Commerce
activity.
To ensure that both objectives are met, we have devised a Secure Transfer System
(STS) for transferring information, data, and mail back and forth between the 100%
secure Real private networks (RPNs) of the enterprise / organisation and the open
public information highway - the Internet.
The inventive features of the new Secure Transfer system for exchange of information
/ data / mail back and forth between the Enterprise / Organisation RPN and the Public
Internet is described as follows, and comprises of the following components.
All the information which the Enterprise / Organisation wishes to publish is loaded on
to a Proxy Server (PS). This is connected to the Internet LAN bus in the Company
Premises. The Proxy Server (PS) has three primary functions.
A.To display all publishable information of the Enterprise / Organisation, to
which all people logging in will have Read-only access.
B.To have WEB based interactive screens through which Organisation
outsiders may transact business - submit offers, place orders, exchange
information of mutual benefit, etc.
C.Receive and send mail from and to organisation outsiders, and act as the
Organisation's Internet Mail Gateway
A company server / s (CS) sitting on the RPN LAN bus in the Organisation's
premises, has fields identical to those in the Proxy Server (PS). These are
continuously updated from the other data base servers residing on the RPN LAN bus
of the Organisation.
The Intermediate Server (IS) which has the same fields as the Proxy and the Company
Servers, and periodically (settable) connects to either the Proxy or the Company
server to synchronise information / data / mail with these servers.
An electro-mechanical three-position switch (EMTPS) one end of which is
permanently connected to the LAN card of the of the Intermediate Server (IS). This
switch connects the IS either to the Internet LAN bus or the RPN LAN bus, but never
to both together. The switch also has a null position in which state the IS LAN card is
not connected to either of the LAN buses (the Internet or RPN LAN buses). In this
null state, the cleansing software residing in the IS cleans the content from viruses,
worms, etc., which may have come from either of the LAN buses (Internet or RPN)
during the last connect period, before transferring the information / data / mail to
either the CS or the PS through their respective LAN buses. The cleansing software
patches are updated every time the IS connects to the Internet LAN bus.
The change-of-state commands for the three position switch (EMTPS) also resides in
the IS and is given through the serial ports of the IS and the EMTPS.
The above connections are depicted in the accompanying drawing shown in Figure 4.
The data flow for all publishable information will be unidirectional from CS to IS to
PS as shown in the accompanying drawing Figure 5. The WEB based inputs of
information / submissions on the interactive screens will also be unidirectional from
PS to IS to CS as shown in Figure 5. The email flows will be bidirectional from PS to
IS to CS to IS to PS, as shown in Figure 5.
The EMTPS may also be used to connect a node computer in an organisation location
or employees work place either to the Internet LAN bus or the RPN LAN bus through
the respective I/O boxes placed at the location. The null position of the switch and the
enforced dwell time in this position ensures that the node computer may not connect
to either LAN bus, before it is properly cleansed from viruses / worms / etc., through
built-in cleansing software. The cleansing software patches are updated every time the
node computer connects to the Internet LAN bus. This function of the EMTPS is
shown in Figure 3 of the accompanying drawings.
Whereas, the change-of-state commands for the IS are settable and automatic, for the
node computer the change-of-state commands are given through manual ASCII
commands.
Figure 1 of the accompanying drawings shows how the Internet is connected to the
RPN LAN bus in the present art.
Figure 2, of the accompanying drawings shows how the Internet is connected to the
RPN with the new invention - STS (comprising of the PS / IS / CS / EMTPS each
with its own embedded software).
The main advantage of the new invention, Secure Transfer System (STS), is as
follows.
a. It facilitates free flow of information / data / mail between the company RPN
and the Internet.
b.It ensures that there is no telnet access from the organisation outsiders to the
organisation's RPN LAN and the data bases sitting on it.
c. It ensures 100% security of the RPN and data bases residing in it.
d.It creates an air gap between the Internet and the enterprise / organisation RPN
and yet allows free exchange of information / data / mail between the two
networks.
e. If gives the Enterprise / Organisation the facility for e-Commerce without
jeopardising the security of its internal Data Bases.
f. It removes the major impediment to the growth of e-Business - the security
concern for internal Data Bases of the enterprises / organisation
The inventive features of the new system are described above and in the
accompanying drawings Figures 1 to 5.
CLAIM
1.A Secure Transfer System (STS) for free flow of information / data / mail
between an enterprise's / organisation's RPN (real private network) and
the public information highway - the Internet.
2.The Secure Transfer System (STS) comprising of
a. A Proxy Server (PS) sitting on the Internet LAN bus
b. A company Server (CS) sitting on the RPN LAN bus of the
organisation / enterprise.
c. An Intermediate Server (IS) connected through its LAN card to the
LAN card of the electro-mechanical three position switch (EMTPS)
d.The EMTPS connects the IS either to the Internet LAN bus, or the
RPN LAN bus, or keeps it in the null position based on commands
given by the IS.
e. The change-of-state commands from the IS to the EMTPS is sent via
its serial port to the serial port of the EMTPS
3.The data flow through the STS is as follows.
a. Unidirectional for all publishable data and information from CS to IS
to PS.
b. Unidirectional for all external inputs and e-Business transactions from
PS to IS to CS.
c. Bidirectional for email from PS to IS to CS to IS to PS.
4.The EMTPS facilitates connection of a computer node sitting in an
employees desk in the enterprise / organisation location, to connect either
to the Internet LAN bus or to the RPN LAN bus through the respective I/O
boxes, after due cleansing in the null state before connecting to either bus.

This invention relates to a Secure Transfer System ( STS) which facilitates free
exchange of information, data and mail between an organisations real private network
(RPN), or integrated real private network (IRPN) and public networks like the internet
without jeopardising the security of the former (RPN or IRPN).

Documents:

626-KOL-2004-(17-02-2014)-CORRESPONDENCE.pdf

626-KOL-2004-(17-02-2014)-OTHERS.pdf

626-KOL-2004-(19-12-2013)-ABSTRACT.pdf

626-KOL-2004-(19-12-2013)-CLAIMS.pdf

626-KOL-2004-(19-12-2013)-CORRESPONDENCE.pdf

626-KOL-2004-(19-12-2013)-DESCRIPTION (COMPLETE).pdf

626-KOL-2004-(19-12-2013)-DRAWINGS.pdf

626-KOL-2004-(19-12-2013)-FORM-1.pdf

626-KOL-2004-(19-12-2013)-FORM-13.pdf

626-KOL-2004-(19-12-2013)-FORM-2.pdf

626-KOL-2004-(19-12-2013)-FORM-3.pdf

626-KOL-2004-(19-12-2013)-OTHERS.pdf

626-KOL-2004-(19-12-2013)-PA.pdf

626-KOL-2004-(28-04-2014)-ABSTRACT.pdf

626-KOL-2004-(28-04-2014)-CLAIMS.pdf

626-KOL-2004-(28-04-2014)-CORRESPONDENCE.pdf

626-KOL-2004-(28-04-2014)-DESCRIPTION (COMPLETE).pdf

626-KOL-2004-(28-04-2014)-DRAWINGS.pdf

626-KOL-2004-(28-04-2014)-FORM-2.pdf

626-KOL-2004-ABSTRACT-1.1.pdf

626-kol-2004-abstract.pdf

626-KOL-2004-CLAIMS-1.1.pdf

626-kol-2004-claims.pdf

626-kol-2004-correspondence.pdf

626-KOL-2004-DESCRIPTION (COMPLETE)-1.1.pdf

626-kol-2004-description (complete).pdf

626-KOL-2004-DRAWINGS-1.1.pdf

626-kol-2004-drawings.pdf

626-kol-2004-form 1.pdf

626-KOL-2004-FORM 2-1.1.pdf

626-kol-2004-form 2.pdf

626-KOL-2004-OTHERS-1.1.pdf

626-KOL-2004-REPLY TO EXAMINATION REPORT.pdf

626-kol-2004-specification.pdf

« Previous Patent

Next Patent »

Patent Number

262590

Indian Patent Application Number

626/KOL/2004

PG Journal Number

36/2014

Publication Date

05-Sep-2014

Grant Date

28-Aug-2014

Date of Filing

04-Oct-2004

Name of Patentee

PANKAJ KUMAR MITRA

Applicant Address

6/1A, KARTIK BOSE LANE, KOLKATA

Inventors:

#	Inventor's Name	Inventor's Address
1	PANKAJ KUMAR MITRA	6/1A, KARTIK BOSE LANE, KOLKATA 700006

PCT International Classification Number

H04L 9/00

PCT International Application Number

N/A

PCT International Filing date

PCT Conventions:

#	PCT Application Number	Date of Convention	Priority Country
1			NA