An Insurmountable and Fail-Secure Network Interface
Conference paper
First Online:
Abstract
The security risks of network connectivity include malware intrusion into servers and sabotage such as denial-of-service attacks. It will be shown here how these security risks can, in contrast to employing firewalls, effectively be coped with by an adequate network interface whose architecture combines two malware-proof programmable controllers with specific software functions. By design and physical separation, the interface behaves in a fail-secure way, i.e. there is never open access from a network to a computer even if the interface fails itself.
Keywords
Network interfacing Malware prevention Air gapping Hardware-based security Fail-secure behaviour Security by designReferences
- 1.Engel, T., Haffner, E.-G., Meinel, C.: Datenverbindung zwischen zwei Rechnern und Verfahren zur Datenübertragung zwischen zwei Rechnern (Data link between two computers and method for transmitting data between said computers). German Patent 198, 38, 253 (1998)Google Scholar
- 2.Halang, W.A., Komkhao, M., Sodsee, S.: Secure cloud computing. In: Boonkrong, S., Unger, H., Meesad, P. (eds.) IC2IT 2014. Advances in Intelligent Systems and Computing, vol. 265, pp. 305–314. Springer, Heidelberg (2014)Google Scholar
- 3.Hasso-Plattner-Institut. http://www.lock-keeper.org
- 4.Witte, M.: Eine virenresistente Netzschnittstelle (A Virus-resistent Network Interface). B.Eng. thesis. Bochum University of Applied Science (1992)Google Scholar
Copyright information
© Springer International Publishing Switzerland 2016