WO2003009118A2 - Computer multiplexor - Google Patents

Computer multiplexor Download PDF

Info

Publication number
WO2003009118A2
WO2003009118A2 PCT/GB2002/003039 GB0203039W WO03009118A2 WO 2003009118 A2 WO2003009118 A2 WO 2003009118A2 GB 0203039 W GB0203039 W GB 0203039W WO 03009118 A2 WO03009118 A2 WO 03009118A2
Authority
WO
WIPO (PCT)
Prior art keywords
multiplexor
keyboard
computer
computers
mouse
Prior art date
Application number
PCT/GB2002/003039
Other languages
French (fr)
Other versions
WO2003009118A3 (en
Inventor
Richard Middleton Hicks
Original Assignee
Qinetiq Limited
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Qinetiq Limited filed Critical Qinetiq Limited
Priority to AU2002345195A priority Critical patent/AU2002345195A1/en
Publication of WO2003009118A2 publication Critical patent/WO2003009118A2/en
Publication of WO2003009118A3 publication Critical patent/WO2003009118A3/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/01Input arrangements or combined input and output arrangements for interaction between user and computer
    • G06F3/03Arrangements for converting the position or the displacement of a member into a coded form
    • G06F3/033Pointing devices displaced or positioned by the user, e.g. mice, trackballs, pens or joysticks; Accessories therefor
    • G06F3/038Control and interface arrangements therefor, e.g. drivers or device-embedded control circuitry
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • G06F21/83Protecting input, output or interconnection devices input devices, e.g. keyboards, mice or controllers thereof
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/01Input arrangements or combined input and output arrangements for interaction between user and computer
    • G06F3/02Input arrangements using manually operated switches, e.g. using keyboards or dials
    • G06F3/023Arrangements for converting discrete items of information into a coded form, e.g. arrangements for interpreting keyboard generated codes as alphanumeric codes, operand codes or instruction codes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2143Clearing memory, e.g. to prevent the data from being stolen

Definitions

  • This invention relates to a computer multiplexor and a method of multiplexing computers.
  • Multiplexors are known which allow a user to use a single keyboard, video screen and mouse to control two or more computers: They are referred to as keyboard video mouse (KV ) multiplexors.
  • KV keyboard video mouse
  • a user may have multiple computers on separate networks for security reasons, i.e. to avoid any computer having access to information on any other computer.
  • the security requirement may be due to confidentiality or integrity or both. If however two otherwise separate computer networks are linked by a multiplexor, the multiplexor provides a route for unauthorised transfer of information from one network to another.
  • the present invention provides a computer multiplexor for connecting a plurality of computers to at least one of a keyboard a mouse and a monitor characterised in that the multiplexor incorporates elements linked by hardware-implemented unidirectional data links and by virtue of such links is arranged to inhibit communication between the plurality of computers while providing for necessary data flow to and from one of the plurality of computers selected for operation in conjunction with the multiplexor.
  • the invention provides the advantage that unwanted data flow is inhibited by hardware, and so unlike the prior art it cannot be defeated by software faults.
  • the multiplexor of the invention may be arranged to gather configuration information from ' a keyboard and mouse to storage means and to make it available from the storage means to a computer selected for operation in conjunction with the multiplexor.
  • the keyboard and mouse may be connected to the storage means by unidirectional links along which the configuration information is passed, the unidirectional links being enabled during multiplexor power up and disabled at other times.
  • the multiplexor may include means for interfacing the storage means to a computer selected for operation with the multiplexor, such interfacing means being arranged to supply such computer with scan codes appropriate for a keyboard mode selected by such computer.
  • It may include means for interfacing the keyboard to a computer selected for operation with the multiplexor, such interfacing means being arranged to set a fixed auto- repeat delay and typematic rate so that these information need not be provided by a computer selected for operation with the multiplexor. It may also include keyboard status indicators actuated via unidirectional links and responsive to a computer selected for operation in conjunction with the multiplexor.
  • the invention provides a method of multiplexing a plurality of computers to at least one of a keyboard, a mouse and a monitor, characterised in that it includes the step of linking multiplexing elements by hardware-implemented unidirectional data links and by virtue of such links arranging to inhibit communication between the plurality of computers while providing for necessary data flow to and frqm one of the plurality of computers selected for operation.
  • Figure 1 is a schematic drawing of a computer multiplexor of the invention.
  • Figure 2 is a schematic drawing of a computer multiplexor of the invention arranged to include connections for a video monitor.
  • a computer multiplexor 10 of the invention connects a computer keyboard 12 and a mouse 14 to two computers 16 and 18: one computer 16 is part of a high confidentiality, high trust network and the other computer 18 is part of a low confidentiality, low trust network.
  • the mouse 14 and keyboard 12 are connected directly to a mouse interface 20 and a keyboard interface 22 by respective bi-directional links 26 and 24.
  • Each of the interfaces 20 and 22 is a single microprocessor.
  • the multiplexor 10 has two sets of keyboard and mouse connectors K1/M1 , K2/M2 connected to respective computers 16 and 18: these are conventional PS/2 cables.
  • the connectors K1/M1 and K2/M2 are connected by bi-directional links 27k/27m and 28k/28m to dedicated microprocessors 29 and 30 respectively, each emulating a keyboard and a mouse and acting as a keyboard/mouse interface.
  • the keyboard/mouse interfaces 29 and 30 are connected to respective stores 32 and 34 which contain configuration information for the keyboard 12 and mouse 14: the stores 32 and 34 are dedicated microprocessors which supply configuration information to stores 29 and 30 if requested by respective computers 16 and 18.
  • the software in each of these interface and store microprocessors 29 to 34 is untrusted.
  • the keyboard interface 22 is connected to the stores 32 and 34 by upwardly unidirectional optically coupled links 36 and 38: arrows 36a and 38a indicate link directionality. Unidirectionality arises from use of a commercially available optical isolator incorporating an optical emitter and an optical detector - The optical emitter has no receive function and the optical detector has no transmit function hence giving a unidirectional path.
  • the keyboard interface 22 is also connected to two link enable devices 40 and 42 by connections 44 and 46 which are unidirectional or bi-directional as convenient: the link enable devices are hardware switches which are automatically disabled while the multiplexor 10 is powering up.
  • the mouse interface 20 is connected to the stores 32 and 34 by upwardly unidirectional optically coupled links 48 and 50: here "upwardly” indicates the upward direction in the drawing, and “downwardly” (see below) indicates the downward direction in the drawing It is also connected to the link enable devices 40 and 42 by connections 52 and 54 which are unidirectional or bi-directional as before.
  • a user-operated toggle switch 55 is connected to the link enable devices 40 and 42 by downwardly unidirectional optically coupled links 56 and 58.
  • the link enable devices 40 and 42 are connected to the keyboard/mouse port interfaces 29 and 30 respectively by pairs of upwardly unidirectional optically coupled links 60k/60m and 62k/62m.
  • the keyboard/mouse port interfaces 29 and 30 and the toggle switch 55 are connected to a controller 68 of status lights 70 by respective upwardly unidirectional optically coupled links 72, 74 and 76.
  • the controller is implemented as a microprocessor. Signals from computers 16 and 18 which would control on/off states of lights on a conventional keyboard are connected via the links 72 and 76 to the controller, which controls the state of the status lights 70 accordingly.
  • the multiplexor 10 operates as follows: in power-up mode the link enable devices 40 and 42 are disabled; links 36, 38, 48 and 50 are enabled and via them the stores 32 and 34 receive configuration information from the keyboard 12 and mouse 14.
  • the keyboard and mouse interfaces 24 and 26 interrogate the keyboard 12 and mouse 14 respectively to identify their characteristics, as implemented by conventional computer operating systems. These characteristics are sent by the interfaces 24 and 26 to the stores 32 and 34 via links 36/48 and 38/50 respectively.
  • the interfaces 20 and 22 configure the mouse 14 and keyboard 12 for auto-repeat delay and typematic rate, which would in the absence of the multiplexor 10 be implemented by a computer connected to the keyboard 12 and mouse 14.
  • the interface 22 sets the keyboard 12 to a fixed mode of operation with known scan codes indicating which keys are depressed. It is arranged to supply a user-selected computer 16 or 18 with scan codes appropriate for a keyboard mode selected by such computer.
  • the associated links 36, 38, 48 and 50 are disabled: when these links have been disabled, the keyboard 12 and mouse 14 are allowed to communicate with the link enable devices 40 and 42 respectively.
  • links 36, 38, 48 and 50 are disabled.
  • a user operates the toggle switch 55: when the toggle switch 55 is in an UP position, a binary Enable signal is sent to the link enable device 40 and a binary Disable signal is sent to the second link enable device 42; at the same time a signal indicating selection of the trusted computer 16 and non-selection of the untrusted computer 18 is sent to the status lights controller 68, which arranges for the status lights 70 to indicate this selection has been made.
  • keyboard status lights (Num Lock, Scroll Lock, Caps Lock) to be displayed on the status lights 70: in this connection in most circumstances a conventional computer operating system controls keyboard status lights in response to signals from keyboard keystrokes; in the multiplexor 10 control signals for keyboard status lights are routed from the computer 16 via link 27k to interface 28 and status lights controller 68.
  • a binary Enable signal is sent to the second link enable device 42 and a binary Disable signal is sent to the first link enable device 40.
  • a signal indicating selection of the untrusted computer 18 and non-selection of the computer 16 is sent to the status lights controller 68 for corresponding display by the status lights 70.
  • the untrusted computer 18 can now receive data from the keyboard 12 and mouse 14 via interfaces 22 and 20 and the second link enable device 42. Keyboard status lights under the control of the untrusted computer 18 via link 28k are displayed on the status lights 70.
  • the computers 16 and 18 can both receive from and send to respective keyboard/mouse port interfaces 28 and 30: by this means for example the computers 16 and 18 receive configuration information relating to the keyboard 12 and mouse 14 from the stores 32 and 34 respectively.
  • While trusted computer 16 is selected, because the other link enable device 42 is disabled, commands cannot pass from the keyboard 12 and mouse 14 to untrusted computer 18. Moreover, there are no connections of appropriate directionality between the computers 16 and 18: therefore unwanted information transfer between these computers cannot occur. Unidirectionality of connections is implemented by hardware, i.e. apparatus rather than software, so cannot be defeated by software faults. This is unlike the situation in other prior art mutiplexors where signal routing is done in software via which unwanted information transfer can take place between computers linked by such a multiplexor if there was a (possibly unknown) flaw in the software.
  • the multiplexor 10 has separate data links 36/48, 38/50, 44/54 and 46/52 and from the keyboard 12 and mouse 14 to each of the following, stores 32 and 34 and link enable devices 40 and 42: the respective pair of connections to each of the said devices could be combined without loss of generality or security.
  • the sequence may be firstly to send disable signals to both link enable devices 40 and 42 so that no computer 16 or 18 receives any information; secondly, both the keyboard 12 and mouse 14 are powered down, and then after a short time interval they are powered up once more and re- initialised. The objective of this is to make it more difficult to implement unauthorised modification of a keyboard; it is for example important to avoid keystrokes sent to one computer being .
  • FIG. 1 there is shown a multiplexor 100 of the invention for multiplexing a video monitor 102 to a plurality of computers 16 and 18 in addition to a keyboard 12 and mouse 14: parts equivalent to those described in connection with Figure 1 are like-referenced and function as indicated earlier, and will not be described further except where they interact with parts not already described.
  • the computers 16 and 18 have respective analogue video signal links 104 and 106 that are connected to a video signal-only analogue switch 108 in the multiplexor 100.
  • the switch 108 is also connected to the monitor 102 by a video signal link 110.
  • the links 104, 106 and 110 are unidirectional or bi-directional as convenient: they carry only red/green/blue analogue video signals and line/frame synch square wave signals. If preferred, line and frame synch signals could be put through optical isolators: this will normally be non-essential because these signals are square waves and do not normally convey unwanted information.
  • the analogue video signal links 104 and 106 from the computers 16 and 18 are effectively unidirectional: standard switching arrangements in a computer for such links use analogue techniques and signals are restricted to "write to screen" only.
  • a respective analogue optical coupler or a relay can be inserted in each of the links 104 and 106.
  • the link 1 10 is configured to allow a user to select which of the computers 16 and 18 is to provide video signals to the monitor 102.
  • the computers 16 and ' 18 have respective "Screen Id" terminals 112 and 114 which are left unconnected, i.e. open circuit (O/C) as indicated at 116 and 118.
  • a conventional Super VGA connector for video monitor signals typically has two or four electrical pins to enable a computer to interrogate the monitor to discover its maker and other information; there may also be an electrical pin to enable a computer to supply power to a monitor screen: the multiplexor 100 of the invention uses Super VGA connectors at 104/112 and 106/114 but leaves all such pins open-circuit to prevent unwanted information transfer.
  • the computers 16 and 18 consequently treat the monitor 102 as being of unknown type.
  • a unidirectional link 120 connects the toggle switch 55 to the video-only analogue switch 110. If the analogue switch 1 10 is implemented using a break-before-make relay, this provides the required isolation and the optical coupler 120 can be replaced by a bidirectional link: a break-before-make relay has the property of breaking a connection to one circuit before making a connection to another.
  • a video link equivalent to 104 or 106 from a computer 16 or 18 is digital instead of analogue, such a link will consist of data and clock lines in which digital optical couplers can be inserted to ensure that these too are unidirectional.
  • the multiplexor 100 operates as follows: a user operates the toggle switch 55 as before to select which of the computers is to receive data from the keyboard 12 and mouse 14. However, at the same time the toggle switch 55 activates the video-only analogue switch 110 to allow video and line/frame synch signals to pass to the monitor 102 from the selected computer only: i.e. one of the two links 104 and 106 (but not the other) is connected by the video-only analogue switch 110 to the link 1 10 to the monitor 102.
  • the invention may be extended to control more than two computers simply by increasing the number of toggle switch settings and providing appropriate connecting links.
  • unidirectional connecting links have been provided by optical couplers: the guarantee of unidirectionality may also be provided by conventional electronics, but with a reduced certainty of correct implementation.

Abstract

A computer multiplexor (100) connects a keyboard (12) and mouse (14) via interfaces (24, 22) to configuration stores (32, 34) and link enable devices (40,42) respectively. The stores (32, 34) and link enable devices (40,42) are connected to keyboard/mouse port interfaces (29, 30) respectively, and these interfaces are connected to respective computers (16, 18). Certain of the connections (e.g. 56 to 62m, 72 to 76) are unidirectional: they provide for arranged to inhibit communication between the plurality of computers (16 or 18) while providing for necessary data flow to and from one of the plurality of computers (16 or 18) selected for operation in conjunction with the multiplexor (10).

Description

Computer Multiplexor
This invention relates to a computer multiplexor and a method of multiplexing computers.
Multiplexors are known which allow a user to use a single keyboard, video screen and mouse to control two or more computers: They are referred to as keyboard video mouse (KV ) multiplexors.
A user may have multiple computers on separate networks for security reasons, i.e. to avoid any computer having access to information on any other computer. The security requirement may be due to confidentiality or integrity or both. If however two otherwise separate computer networks are linked by a multiplexor, the multiplexor provides a route for unauthorised transfer of information from one network to another.
It is an object of the invention to provide a computer multiplexor arranged to inhibit unauthorised transfer of information between different computers.
The present invention provides a computer multiplexor for connecting a plurality of computers to at least one of a keyboard a mouse and a monitor characterised in that the multiplexor incorporates elements linked by hardware-implemented unidirectional data links and by virtue of such links is arranged to inhibit communication between the plurality of computers while providing for necessary data flow to and from one of the plurality of computers selected for operation in conjunction with the multiplexor.
The invention provides the advantage that unwanted data flow is inhibited by hardware, and so unlike the prior art it cannot be defeated by software faults.
The multiplexor of the invention may be arranged to gather configuration information from ' a keyboard and mouse to storage means and to make it available from the storage means to a computer selected for operation in conjunction with the multiplexor. The keyboard and mouse may be connected to the storage means by unidirectional links along which the configuration information is passed, the unidirectional links being enabled during multiplexor power up and disabled at other times. The multiplexor may include means for interfacing the storage means to a computer selected for operation with the multiplexor, such interfacing means being arranged to supply such computer with scan codes appropriate for a keyboard mode selected by such computer. It may include means for interfacing the keyboard to a computer selected for operation with the multiplexor, such interfacing means being arranged to set a fixed auto- repeat delay and typematic rate so that these information need not be provided by a computer selected for operation with the multiplexor. It may also include keyboard status indicators actuated via unidirectional links and responsive to a computer selected for operation in conjunction with the multiplexor.
In another aspect, the invention provides a method of multiplexing a plurality of computers to at least one of a keyboard, a mouse and a monitor, characterised in that it includes the step of linking multiplexing elements by hardware-implemented unidirectional data links and by virtue of such links arranging to inhibit communication between the plurality of computers while providing for necessary data flow to and frqm one of the plurality of computers selected for operation.
In order that the invention might be more fully understood, embodiments thereof will now be described, by way of example only, with reference to the accompanying drawings, in which:-
Figure 1 is a schematic drawing of a computer multiplexor of the invention; and
Figure 2 is a schematic drawing of a computer multiplexor of the invention arranged to include connections for a video monitor.
Referring to Figure 1 , A computer multiplexor 10 of the invention connects a computer keyboard 12 and a mouse 14 to two computers 16 and 18: one computer 16 is part of a high confidentiality, high trust network and the other computer 18 is part of a low confidentiality, low trust network. The mouse 14 and keyboard 12 are connected directly to a mouse interface 20 and a keyboard interface 22 by respective bi-directional links 26 and 24. Each of the interfaces 20 and 22 is a single microprocessor. The multiplexor 10 has two sets of keyboard and mouse connectors K1/M1 , K2/M2 connected to respective computers 16 and 18: these are conventional PS/2 cables. The connectors K1/M1 and K2/M2 are connected by bi-directional links 27k/27m and 28k/28m to dedicated microprocessors 29 and 30 respectively, each emulating a keyboard and a mouse and acting as a keyboard/mouse interface. The keyboard/mouse interfaces 29 and 30 are connected to respective stores 32 and 34 which contain configuration information for the keyboard 12 and mouse 14: the stores 32 and 34 are dedicated microprocessors which supply configuration information to stores 29 and 30 if requested by respective computers 16 and 18. The software in each of these interface and store microprocessors 29 to 34 is untrusted.
The keyboard interface 22 is connected to the stores 32 and 34 by upwardly unidirectional optically coupled links 36 and 38: arrows 36a and 38a indicate link directionality. Unidirectionality arises from use of a commercially available optical isolator incorporating an optical emitter and an optical detector - The optical emitter has no receive function and the optical detector has no transmit function hence giving a unidirectional path. The keyboard interface 22 is also connected to two link enable devices 40 and 42 by connections 44 and 46 which are unidirectional or bi-directional as convenient: the link enable devices are hardware switches which are automatically disabled while the multiplexor 10 is powering up.
The mouse interface 20 is connected to the stores 32 and 34 by upwardly unidirectional optically coupled links 48 and 50: here "upwardly" indicates the upward direction in the drawing, and "downwardly" (see below) indicates the downward direction in the drawing It is also connected to the link enable devices 40 and 42 by connections 52 and 54 which are unidirectional or bi-directional as before.
A user-operated toggle switch 55 is connected to the link enable devices 40 and 42 by downwardly unidirectional optically coupled links 56 and 58. The link enable devices 40 and 42 are connected to the keyboard/mouse port interfaces 29 and 30 respectively by pairs of upwardly unidirectional optically coupled links 60k/60m and 62k/62m.
The keyboard/mouse port interfaces 29 and 30 and the toggle switch 55 are connected to a controller 68 of status lights 70 by respective upwardly unidirectional optically coupled links 72, 74 and 76. The controller is implemented as a microprocessor. Signals from computers 16 and 18 which would control on/off states of lights on a conventional keyboard are connected via the links 72 and 76 to the controller, which controls the state of the status lights 70 accordingly. The multiplexor 10 operates as follows: in power-up mode the link enable devices 40 and 42 are disabled; links 36, 38, 48 and 50 are enabled and via them the stores 32 and 34 receive configuration information from the keyboard 12 and mouse 14. The keyboard and mouse interfaces 24 and 26 interrogate the keyboard 12 and mouse 14 respectively to identify their characteristics, as implemented by conventional computer operating systems. These characteristics are sent by the interfaces 24 and 26 to the stores 32 and 34 via links 36/48 and 38/50 respectively.
The interfaces 20 and 22 configure the mouse 14 and keyboard 12 for auto-repeat delay and typematic rate, which would in the absence of the multiplexor 10 be implemented by a computer connected to the keyboard 12 and mouse 14. The interface 22 sets the keyboard 12 to a fixed mode of operation with known scan codes indicating which keys are depressed. It is arranged to supply a user-selected computer 16 or 18 with scan codes appropriate for a keyboard mode selected by such computer. After the keyboard and mouse characteristics have been sent to the stores 32 and 34, the associated links 36, 38, 48 and 50 are disabled: when these links have been disabled, the keyboard 12 and mouse 14 are allowed to communicate with the link enable devices 40 and 42 respectively.
At the end of power up mode, links 36, 38, 48 and 50 are disabled. A user operates the toggle switch 55: when the toggle switch 55 is in an UP position, a binary Enable signal is sent to the link enable device 40 and a binary Disable signal is sent to the second link enable device 42; at the same time a signal indicating selection of the trusted computer 16 and non-selection of the untrusted computer 18 is sent to the status lights controller 68, which arranges for the status lights 70 to indicate this selection has been made. This allows the trusted computer 16 to receive data from the keyboard 12 and mouse 14 via respective interfaces 22 and 20 and the link enable device 40. It also allows keyboard status lights (Num Lock, Scroll Lock, Caps Lock) to be displayed on the status lights 70: in this connection in most circumstances a conventional computer operating system controls keyboard status lights in response to signals from keyboard keystrokes; in the multiplexor 10 control signals for keyboard status lights are routed from the computer 16 via link 27k to interface 28 and status lights controller 68. When the toggle switch 55 is in a DOWN position, a binary Enable signal is sent to the second link enable device 42 and a binary Disable signal is sent to the first link enable device 40. At the same time a signal indicating selection of the untrusted computer 18 and non-selection of the computer 16 is sent to the status lights controller 68 for corresponding display by the status lights 70. The untrusted computer 18 can now receive data from the keyboard 12 and mouse 14 via interfaces 22 and 20 and the second link enable device 42. Keyboard status lights under the control of the untrusted computer 18 via link 28k are displayed on the status lights 70.
Since the links 27k, 27m, 28k and 28m are bi-directional, when these links are enabled the computers 16 and 18 can both receive from and send to respective keyboard/mouse port interfaces 28 and 30: by this means for example the computers 16 and 18 receive configuration information relating to the keyboard 12 and mouse 14 from the stores 32 and 34 respectively.
While trusted computer 16 is selected, because the other link enable device 42 is disabled, commands cannot pass from the keyboard 12 and mouse 14 to untrusted computer 18. Moreover, there are no connections of appropriate directionality between the computers 16 and 18: therefore unwanted information transfer between these computers cannot occur. Unidirectionality of connections is implemented by hardware, i.e. apparatus rather than software, so cannot be defeated by software faults. This is unlike the situation in other prior art mutiplexors where signal routing is done in software via which unwanted information transfer can take place between computers linked by such a multiplexor if there was a (possibly unknown) flaw in the software.
Similarly, if a user operates the toggle switch 55 to select untrusted computer 18, because the first link enable device 40 is disabled, commands cannot pass from the keyboard 12 and 14 to trusted computer 16. Moreover, because of the unidirectionality of the various links, unwanted information transfer between the computers 18 and 16 cannot occur.
The multiplexor 10 has separate data links 36/48, 38/50, 44/54 and 46/52 and from the keyboard 12 and mouse 14 to each of the following, stores 32 and 34 and link enable devices 40 and 42: the respective pair of connections to each of the said devices could be combined without loss of generality or security. Optionally, when a user operates the toggle switch 55, the sequence may be firstly to send disable signals to both link enable devices 40 and 42 so that no computer 16 or 18 receives any information; secondly, both the keyboard 12 and mouse 14 are powered down, and then after a short time interval they are powered up once more and re- initialised. The objective of this is to make it more difficult to implement unauthorised modification of a keyboard; it is for example important to avoid keystrokes sent to one computer being . duplicated and sent subsequently to another computer for which they were not intended. A keyboard has a keyboard buffer in which the last few key strokes are held and from which they can be duplicated. Referring now to Figure 2, there is shown a multiplexor 100 of the invention for multiplexing a video monitor 102 to a plurality of computers 16 and 18 in addition to a keyboard 12 and mouse 14: parts equivalent to those described in connection with Figure 1 are like-referenced and function as indicated earlier, and will not be described further except where they interact with parts not already described.
The computers 16 and 18 have respective analogue video signal links 104 and 106 that are connected to a video signal-only analogue switch 108 in the multiplexor 100. The switch 108 is also connected to the monitor 102 by a video signal link 110. The links 104, 106 and 110 are unidirectional or bi-directional as convenient: they carry only red/green/blue analogue video signals and line/frame synch square wave signals. If preferred, line and frame synch signals could be put through optical isolators: this will normally be non-essential because these signals are square waves and do not normally convey unwanted information. The analogue video signal links 104 and 106 from the computers 16 and 18 are effectively unidirectional: standard switching arrangements in a computer for such links use analogue techniques and signals are restricted to "write to screen" only. Optionally, if extra protection in this regard is required, a respective analogue optical coupler or a relay can be inserted in each of the links 104 and 106.
The link 1 10 is configured to allow a user to select which of the computers 16 and 18 is to provide video signals to the monitor 102.
The computers 16 and' 18 have respective "Screen Id" terminals 112 and 114 which are left unconnected, i.e. open circuit (O/C) as indicated at 116 and 118. A conventional Super VGA connector for video monitor signals typically has two or four electrical pins to enable a computer to interrogate the monitor to discover its maker and other information; there may also be an electrical pin to enable a computer to supply power to a monitor screen: the multiplexor 100 of the invention uses Super VGA connectors at 104/112 and 106/114 but leaves all such pins open-circuit to prevent unwanted information transfer. The computers 16 and 18 consequently treat the monitor 102 as being of unknown type.
A unidirectional link 120 connects the toggle switch 55 to the video-only analogue switch 110. If the analogue switch 1 10 is implemented using a break-before-make relay, this provides the required isolation and the optical coupler 120 can be replaced by a bidirectional link: a break-before-make relay has the property of breaking a connection to one circuit before making a connection to another.
If a video link equivalent to 104 or 106 from a computer 16 or 18 is digital instead of analogue, such a link will consist of data and clock lines in which digital optical couplers can be inserted to ensure that these too are unidirectional.
The multiplexor 100 operates as follows: a user operates the toggle switch 55 as before to select which of the computers is to receive data from the keyboard 12 and mouse 14. However, at the same time the toggle switch 55 activates the video-only analogue switch 110 to allow video and line/frame synch signals to pass to the monitor 102 from the selected computer only: i.e. one of the two links 104 and 106 (but not the other) is connected by the video-only analogue switch 110 to the link 1 10 to the monitor 102.
The invention may be extended to control more than two computers simply by increasing the number of toggle switch settings and providing appropriate connecting links. Moreover, unidirectional connecting links have been provided by optical couplers: the guarantee of unidirectionality may also be provided by conventional electronics, but with a reduced certainty of correct implementation.

Claims

1. A computer multiplexor for connecting a plurality of computers (16, 18) to at least one of a keyboard (12), a mouse (14) and a monitor (102), characterised in that the multiplexor (10) incorporates elements (eg 20, 22, 30, 34, 55) linked by hardware- implemented unidirectional data links (eg 36, 50, 56, 60k, 60m) and by virtue of such links is arranged to inhibit communication between the plurality of computers (16, 18) while providing for necessary data flow to and from one of the plurality of computers (16 or 18) selected for operation in conjunction with the multiplexor (10).
2. A multiplexor according to Claim 1 characterised in that it is arranged to gather configuration information from a keyboard (12) and mouse (14) to storage means (32, 34) and to make it available from the storage means (32, 34) to a computer (16 or 18) selected for operation in conjunction with the multiplexor (10).
3. A multiplexor according to Claim 2 characterised in that the keyboard and mouse (22, 20) are connected to the storage means (32, 34) by unidirectional links (36, 38, 48, 50) along which the configuration information is passed, the unidirectional links (36, 38, 48, 50) being enabled during multiplexor, power up and disabled at other times.
4. A multiplexor according to Claim 3 characterised in that it includes means (29, 30) for interfacing the storage means (32, 34) to a computer (16 or 18) selected for operation with the multiplexor (10), such interfacing means (29, 30) being arranged to supply such computer with scan codes appropriate for a keyboard mode selected by such computer.
5. A multiplexor according to Claim 3 characterised in that that it includes means (22) for interfacing the keyboard (12) to a computer (16 or 18) selected for operation with the multiplexor (10), such interfacing means (22) being arranged to set a fixed auto- repeat delay and typematic rate so that these information need not be provided by a computer (16 or 18) selected for operation with the multiplexor (10).
6. A multiplexor according to Claim 1 characterised in that it includes keyboard status indicators actuated via unidirectional links and responsive to a computer (16 or 18) selected for operation in conjunction with the multiplexor (10).
7. A method of multiplexing a plurality of computers (16, 18) to at least one of a keyboard (12), a mouse (14) and a monitor (102), characterised in that it includes the step of linking multiplexing elements (eg 20, 22, 30, 34, 55) by hardware- implemented unidirectional data links (eg 36, 50, 56, 60k, 60m) and by virtue of such links arranging to inhibit communication between the plurality of computers (16, 18) while providing for necessary data flow to and from one of the plurality of computers (16 or 18) selected for operation.
8. A method according to Claim 7 characterised in that it includes the step of powering down a keyboard (12) and mouse (14) after a user of the computers (16, 18) has changed from using one (16) of the computers to another (18) to so as to make it more difficult to implement unauthorised transfer of information such as keystrokes between computers (16, 18).
PCT/GB2002/003039 2001-07-14 2002-07-02 Computer multiplexor WO2003009118A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU2002345195A AU2002345195A1 (en) 2001-07-14 2002-07-02 Computer multiplexor

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
GB0117243A GB0117243D0 (en) 2001-07-14 2001-07-14 Computer multiplexor
GB0117243.6 2001-07-14

Publications (2)

Publication Number Publication Date
WO2003009118A2 true WO2003009118A2 (en) 2003-01-30
WO2003009118A3 WO2003009118A3 (en) 2003-08-14

Family

ID=9918532

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/GB2002/003039 WO2003009118A2 (en) 2001-07-14 2002-07-02 Computer multiplexor

Country Status (3)

Country Link
AU (1) AU2002345195A1 (en)
GB (1) GB0117243D0 (en)
WO (1) WO2003009118A2 (en)

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007013237A1 (en) 2005-07-29 2007-02-01 Yoshino Kogyosho Co., Ltd. In-mold labeled containers and molding process for production thereof
WO2008040743A2 (en) * 2006-10-06 2008-04-10 Thales Method and device for secured swithing between a plurality of computer systems
EP2321944A2 (en) * 2008-08-19 2011-05-18 High Sec Labs Isolated multi-network computer system and apparatus
WO2011145095A3 (en) * 2010-05-20 2012-06-28 High Sec Labs Ltd. Computer motherboard having peripheral security functions
US20140019652A1 (en) * 2011-01-16 2014-01-16 High Sec Labs Ltd. Secure km switch
EP2958047A1 (en) 2014-06-17 2015-12-23 High Sec Labs Ltd. Usb security gateway
US9665525B2 (en) 2014-06-09 2017-05-30 High Sec Labs Ltd. Multi-host docking device
US10922246B1 (en) 2020-07-13 2021-02-16 High Sec Labs Ltd. System and method of polychromatic identification for a KVM switch
US11334173B2 (en) 2020-07-13 2022-05-17 High Sec Labs Ltd. System and method of polychromatic identification for a KVM switch
US11960428B2 (en) 2020-05-31 2024-04-16 High Sec Labs Ltd. Modular KVM switching system

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4233589A (en) * 1979-05-25 1980-11-11 Xerox Corporation Active T-coupler for fiber optic local networks which permits collision detection
US5499377A (en) * 1993-05-03 1996-03-12 Designed Enclosures, Inc. Multi-computer access switching system
AU698314B3 (en) * 1997-10-02 1998-10-29 Compucat Research Pty Limited Improved data switch
EP0982663A2 (en) * 1998-08-28 2000-03-01 Matsushita Electric Industrial Co., Ltd. USB hub and display device
US6108787A (en) * 1995-03-31 2000-08-22 The Commonwealth Of Australia Method and means for interconnecting different security level networks
WO2001015130A1 (en) * 1999-08-25 2001-03-01 Apex Inc. Terminal emulator for interfacing between a communications port and a kvm switch
US6256014B1 (en) * 1999-05-06 2001-07-03 Avocent Corporation Mouse ranking system for multiple users

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4233589A (en) * 1979-05-25 1980-11-11 Xerox Corporation Active T-coupler for fiber optic local networks which permits collision detection
US5499377A (en) * 1993-05-03 1996-03-12 Designed Enclosures, Inc. Multi-computer access switching system
US6108787A (en) * 1995-03-31 2000-08-22 The Commonwealth Of Australia Method and means for interconnecting different security level networks
AU698314B3 (en) * 1997-10-02 1998-10-29 Compucat Research Pty Limited Improved data switch
EP0982663A2 (en) * 1998-08-28 2000-03-01 Matsushita Electric Industrial Co., Ltd. USB hub and display device
US6256014B1 (en) * 1999-05-06 2001-07-03 Avocent Corporation Mouse ranking system for multiple users
WO2001015130A1 (en) * 1999-08-25 2001-03-01 Apex Inc. Terminal emulator for interfacing between a communications port and a kvm switch

Cited By (21)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007013237A1 (en) 2005-07-29 2007-02-01 Yoshino Kogyosho Co., Ltd. In-mold labeled containers and molding process for production thereof
WO2008040743A2 (en) * 2006-10-06 2008-04-10 Thales Method and device for secured swithing between a plurality of computer systems
FR2906905A1 (en) * 2006-10-06 2008-04-11 Thales Sa METHOD AND DEVICE FOR SECURING SWITCHES BETWEEN SEVERAL COMPUTER SYSTEMS
WO2008040743A3 (en) * 2006-10-06 2008-07-10 Thales Sa Method and device for secured swithing between a plurality of computer systems
US8769172B2 (en) 2008-08-19 2014-07-01 High Sec Labs Ltd. Secure KVM device ensuring isolation of host computers
EP2321944A2 (en) * 2008-08-19 2011-05-18 High Sec Labs Isolated multi-network computer system and apparatus
EP2321944A4 (en) * 2008-08-19 2011-10-19 High Sec Labs Isolated multi-network computer system and apparatus
US9767049B2 (en) 2008-08-19 2017-09-19 High Sec Labs Ltd. Isolated KVM combiner for multi-network computer system having a video processor
US8869308B2 (en) 2010-05-20 2014-10-21 High Sec Labs Ltd. Computer motherboard having peripheral security functions
CN103109294A (en) * 2010-05-20 2013-05-15 高赛科实验室公司 Computer motherboard having peripheral security functions
CN103109294B (en) * 2010-05-20 2016-02-03 高赛科实验室公司 There is the computing machine motherboard of peripheral defencive function
WO2011145095A3 (en) * 2010-05-20 2012-06-28 High Sec Labs Ltd. Computer motherboard having peripheral security functions
US20140019652A1 (en) * 2011-01-16 2014-01-16 High Sec Labs Ltd. Secure km switch
US9542006B2 (en) * 2011-01-16 2017-01-10 High Sec Labs Ltd. Secure KM switch
EP2663947A4 (en) * 2011-01-16 2017-07-05 High Sec Labs Ltd. Secure km switch
US9665525B2 (en) 2014-06-09 2017-05-30 High Sec Labs Ltd. Multi-host docking device
EP2958047A1 (en) 2014-06-17 2015-12-23 High Sec Labs Ltd. Usb security gateway
US10855470B2 (en) 2014-06-17 2020-12-01 High Sec Labs Ltd. USB security gateway
US11960428B2 (en) 2020-05-31 2024-04-16 High Sec Labs Ltd. Modular KVM switching system
US10922246B1 (en) 2020-07-13 2021-02-16 High Sec Labs Ltd. System and method of polychromatic identification for a KVM switch
US11334173B2 (en) 2020-07-13 2022-05-17 High Sec Labs Ltd. System and method of polychromatic identification for a KVM switch

Also Published As

Publication number Publication date
AU2002345195A1 (en) 2003-03-03
WO2003009118A3 (en) 2003-08-14
GB0117243D0 (en) 2001-09-05

Similar Documents

Publication Publication Date Title
US9501157B2 (en) Secure KVM system having multiple emulated EDID functions
US20070285394A1 (en) Kvm switch system capable of transmitting keyboard-mouse data and receiving video data through single cable
US8140733B2 (en) Secure external computer hub
CN202797544U (en) Active cable, cable assembly and electronic device
US7496666B2 (en) Multi-user computer system
CA2982019C (en) Human interface device switch with security function
CN1972212A (en) Kvm switch supporting ipmi communications with computing devices
IL281215A (en) Secured kvm switching device with unidirectional communications
US5848292A (en) System for data transmission between a wedge microcontroller and a personal computer microcontroller by disconnecting the keyboard microcontroller and placing the same in hold state
WO2003009118A2 (en) Computer multiplexor
EP1092194A1 (en) Device for use as stand-alone device and as slave device in a data bus system
EP2476076A1 (en) Secure kvm switch
CN106445182B (en) Key mouse screen safety switching and isolating method suitable for dual-computer environment
US20060087975A1 (en) Methods and systems for providing redundancy protection in a Y-cable-based signal transmitter arrangement
US11334173B2 (en) System and method of polychromatic identification for a KVM switch
EP1533680A2 (en) Server system and signal processing unit, server, and chassis thereof
US6038681A (en) Multi-array disk apparatus
US6675250B1 (en) Fault tolerant communications using a universal serial bus
US7254653B2 (en) Switch control system and method that distinguishes between a plurality of real and emulated input devices
CN109215279B (en) Fire alarm system and method based on cable tunnel
US20190278724A1 (en) Keyboard-video-mouse switch, signal processing method, and non-transitory computer-readable storage medium
US20050060394A1 (en) Programmable delay, transparent switching multi-port interface line card
CN115955352A (en) Data transmission system and transmission method
US9246848B2 (en) Relay apparatus, storage system, and method of controlling relay apparatus
KR100685189B1 (en) Multiplex transmission device and system

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SI SK SL TJ TM TN TR TT TZ UA UG US UZ VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR IE IT LU MC NL PT SE SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR IE IT LU MC NL PT SE SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG US

121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

122 Ep: pct application non-entry in european phase
NENP Non-entry into the national phase in:

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP