US 12,169,589 B1
Apparatus and methods relying on non-flashable circuitry for improving security for a system connected to a public or private network
Victor Bryan Friday, Houston, TX (US); and David Lee Ronn, Houston, TX (US)
Assigned to ZECURITY, LLC, Houston, TX (US)
Filed by ZECURITY, LLC, Houston, TX (US)
Filed on Sep. 13, 2023, as Appl. No. 18/367,943.
Int. Cl. G06F 21/87 (2013.01); G06F 21/62 (2013.01); H04L 67/06 (2022.01)
CPC G06F 21/87 (2013.01) [G06F 21/629 (2013.01); H04L 67/06 (2013.01)] 12 Claims
OG exemplary drawing
 
7. A method of providing protection for a system connected to a private or public network, comprising:
providing an apparatus including: an enclosure having first and second connections; one or more switch(es) having at least a first position, a second position, and a third position, wherein the one or more switch(es) are mounted on the enclosure;
non-flashable circuitry located in the enclosure, connecting the non-flashable circuitry to the private or public network via the first connection;
connecting the non-flashable circuitry to the system via the second connection;
causing the non-flashable circuitry to receive data packets or frames from the private or public network via the first connection;
causing the non-flashable circuitry to determine whether the data packets or frames contain an instruction of a known file-sharing protocol other than a reading instruction;
causing the non-flashable circuitry to transmit the data packets or frames to the system via the second connection when the data packets or frames do not contain the instruction other than the reading instruction;
causing the non-flashable circuitry to determine whether the instruction is addressed to a runtime file;
causing the non-flashable circuitry to determine whether the one or more switch(es) are in the first position, the second position, or the third position;
causing the non-flashable circuitry to discard the data packets or frames when the one or more switch(es) are in the first position, and the data packets or frames contain the instruction other than the reading instruction, and the instruction is not addressed to a runtime file;
causing the non-flashable circuitry to transmit the data packets or frames to the system via the second connection when the one or more switch(es) are in the first position, and the data packets or frames contain the instruction other than the reading instruction, and the instruction is addressed to a runtime file, wherein the runtime file is one of a cookie file or a temp file;
causing the non-flashable circuitry to discard the data packets or frames when the one or more switch(es) are in the second position, and the data packets or frames contain the instruction other than the reading instruction;
causing the non-flashable circuitry to transmit all the data packets or frames to the system via the second connection when the one or more switch(es) are in the third position;
causing the non-flashable circuitry to receive other data packets or frames from the system via the second connection; and
causing the non-flashable circuitry to transmit the other data packets or frames to the public or private network via the first connection or via a third connection provided on the enclosure and connected to the non-flashable circuitry.