公开(公告)号：US20190173990A1

公开(公告)日：2019-06-06

申请号：US16258723

申请日：2019-01-28

Applicant: High Sec Labs LTD.

Inventor： Aviv SOFFER

IPC: H04M1/68 ,  H04M1/253

Abstract: A security implant device and a method of operation of the security implant, for securing Voice over IP (VoIP) phone, the implant device disables audio input and output components of the VoIP phone in order to prevent audio eavesdropping.

公开(公告)号：US20150020189A1

公开(公告)日：2015-01-15

申请号：US13937581

申请日：2013-07-09

Applicant: High Sec Labs ltd.

Inventor： Aviv SOFFER

IPC: G06F21/70

CPC classification number: G06F21/70 ,  G06F21/85 ,  H01R13/6275 ,  H01R13/6397 ,  H01R13/66 ,  H01R2201/06

Abstract: USB ports present risk of data leak from computers. The invention provides an electromechanical USB port protection device capable of mechanically block unused USB port, thus preventing the connection of any USB device to that port. Removal of the device requires electrically energizing the lock using security code. Security software provides scalable and secure centralized keys management. The device provides clear and continuous user visual indications when device is secure. Device derivative secures USB cable to the computer USB port. Another device derivative filters and secures a connected user peripheral device, for example a USB locking device that only allows a connection of USB mouse or keyboard.

Abstract translation: USB端口存在计算机数据泄漏的风险。 本发明提供一种机电USB端口保护装置，其能够机械地阻塞未使用的USB端口，从而防止任何USB设备连接到该端口。 拆除设备需要使用安全码对锁进行电力通电。 安全软件提供可扩展和安全的集中密钥管理。 当设备安全时，该设备提供清晰和连续的用户可视化指示。 设备派生将USB电缆固定到计算机的USB端口。 另一个设备导数过滤和保护连接的用户外围设备，例如仅允许USB鼠标或键盘连接的USB锁定设备。

公开(公告)号：US20250103709A1

公开(公告)日：2025-03-27

申请号：US18834120

申请日：2023-01-03

Applicant: HIGH SEC LABS LTD.

Inventor： Aviv SOFFER ,  David HIRSHBERG ,  Andrey VORBYOFF

IPC: G06F21/55

Abstract: A method, security agents, devices and medium for securing devices using combined power data (CPD) protocols that support power delivery side channels. The method/devices/medium comprise one or more security agents that perform at least one of or any combination of: monitoring the signaling and power on the power delivery pins; analyzing the power delivery protocol traffic to detect cyber-security events; detecting malicious activity on the power delivery protocol; filtering or blocking specific type of packets or messages with specific data payload; enforcing unidirectional data flow on the power delivery protocol; logging, auditing and archiving events on the power delivery protocol; locking or disconnecting suspicious devices; preventing activation of some power delivery modes; disabling firmware updates through power delivery protocol; enabling firmware updates through power delivery protocol only in the presence or with a confirmation of a setup device; and allowing passage of only specific type of packets or messages with specific data payloads.

公开(公告)号：US20180091639A1

公开(公告)日：2018-03-29

申请号：US15277424

申请日：2016-09-27

Applicant: High Sec Labs LTD.

Inventor： Aviv SOFFER

IPC: H04M1/68 ,  H04M1/82

CPC classification number: H04M1/68 ,  H04M1/2535 ,  H04M1/82

Abstract: A security implant device and a method of operation of the security implant, for securing Voice over IP (VoIP) phone, the implant device disables audio input and output components of the VoIP phone in order to prevent audio eavesdropping.

公开(公告)号：US20250053669A1

公开(公告)日：2025-02-13

申请号：US18721239

申请日：2022-12-22

Applicant: HIGH SEC LABS LTD.

Inventor： Aviv SOFFER ,  David HIRSHBERG

IPC: G06F21/60 ,  G06F9/54 ,  G06F21/55

Abstract: A peripheral sharing device for supporting secure copy-paste operations between hosts comprising: a plurality of copy-emulators and a plurality of paste emulators, configured cach to be connected to a copy-paste driver, wherein cach copy-paste driver is running on one of a plurality of hosts that are connected to the peripheral sharing device, and the copy-paste driver is configured to fetch or store clipboard objects from the clipboard of the corresponding host, a security bridge that is configured to securely pass clipboard objects between pairs of copy emulator and paste emulator. The security bridge performs security operations, such as, enforce unidirectional data transfer of the clipboard object, monitor the clipboard object and enable or disable the copy-paste operation according to a set of security rules; enable or disable the copy-paste operation according to security policy, analyze clipboard object traffic to detect cybersecurity events, locking suspicious peripheral sharing devices, and preventing clipboard object transfer between pairs of copy-paste controllers according to security rules. The copy emulator receives the clipboard object from the copy-paste driver of a first host, transfer the clipboard object to the security bridge and conditioned upon passing the security conditions the security bridge transfer the clipboard object to the paste emulator that further pass the clipboard object to a second computer's copy-paste driver.

公开(公告)号：US20210090579A1

公开(公告)日：2021-03-25

申请号：US17044751

申请日：2019-04-01

Applicant: HIGH SEC LABS LTD.

Inventor： Aviv SOFFER

IPC: G10L19/00 ,  H04N7/52

Abstract: A secure audio switch comprising: a plurality of host computer interfaces, each for interfacing the secure audio switch with a corresponding host computer, for receiving audio signals from said corresponding host computer; a user audio interface, for interfacing the secure audio switch with at least one user audio device, wherein said at least one user audio device comprises at least one of a speaker or an earphone; an Audio Output Channel (AOC), coupled to said user audio interface comprises audio security device to reduce data leak by intentionally reducing data rate capable of flowing through said AOC to a maximum rate comparable to the minimal rate required for reproducing human speech, and forcing audio data flow only in the direction to said user audio interface; a monitor and control unit, for receiving user's selection of a selected one of said plurality of host computer to be interfaced with said user audio interface, and indicating to the user which of said hosts is currently selected to be interfaced with said user audio interface; and an audio MUX, receiving user selection of the host selected to be interfaced with said user audio interface from said monitor and control unit, and in response, coupling only said selected host computer interface to said AOC.

公开(公告)号：US20210006407A1

公开(公告)日：2021-01-07

申请号：US17009010

申请日：2020-09-01

Applicant: HIGH SEC LABS LTD.

Inventor： Aviv SOFFER

IPC: H04L9/32 ,  G06F21/85 ,  G06F13/10 ,  G06F21/82

Abstract: A USB security gateway device is integrated within a host computer. The USB security gateway device is used for protecting a USB port of a host computer against interaction with unauthorized USB device. The USB security gateway device qualifies any USB peripheral device before it allows it to interact with the host device. Qualification parameters are stored in the USB security gateway device and are reprogrammable.

公开(公告)号：US20200285778A1

公开(公告)日：2020-09-10

申请号：US16762995

申请日：2018-11-12

Applicant: High Sec Labs Ltd.

Inventor： Aviv SOFFER

IPC: G06F21/74 ,  G06F21/86 ,  G06F1/18 ,  G06F21/32 ,  G06F21/34 ,  G06F1/16 ,  G06F21/60 ,  H04W12/00 ,  G06F13/42 ,  G06F13/40

Abstract: A portable computer providing high level of security comprises of two completely logically and electrically isolated computer modules within one tamper resistant enclosure. One computer module is for Higher-Security applications (refer higher-security to as “red”) and the other is for Lower-Security applications such as email and internet (refer lower-security to as “black”). The two modules are coupled together to secure Peripheral Sharing Switch that enables intuitive user interaction while minimizing the security risk resulted from sharing same peripheral device.

公开(公告)号：US20160050375A1

公开(公告)日：2016-02-18

申请号：US14457247

申请日：2014-08-12

Applicant: High Sec Labs LTD.

Inventor： Aviv SOFFER ,  Zohar VERED

IPC: H04N5/268 ,  H04N5/63 ,  H04N7/01 ,  H04N5/45 ,  H04N5/265

CPC classification number: H04N5/268 ,  G06F3/14 ,  G06F3/1423 ,  G09G2370/025 ,  G09G2370/042 ,  G09G2370/20 ,  H04N5/265 ,  H04N5/63 ,  H04N21/4122 ,  H04N21/4363

Abstract: A meeting room power and multi-media center device having one or more wired or wirelessly connected displays or projectors selectively connected to one or more plurality of connected computers. The device provides user indications of qualified input video signals and enables remote control through wirelessly connected remote controller device. The device also provides AC power jacks and USB power jacks to power and charge various portable devices. Another embodiment of the current invention provides similar device further having video processing function to display multiple video sources simultaneously on one or more displays or projectors.

Abstract translation: 具有选择性地连接到一个或多个连接的计算机的一个或多个有线或无线连接的显示器或投影仪的会议室电源和多媒体中心设备。 该设备为用户提供合格输入视频信号的指示，并通过无线连接的遥控器设备进行远程控制。 该设备还提供交流电源插座和USB电源插座，为各种便携式设备供电和充电。 本发明的另一实施例提供了具有视频处理功能的类似装置，以在一个或多个显示器或投影仪上同时显示多个视频源。

公开(公告)号：US20150365237A1

公开(公告)日：2015-12-17

申请号：US14306352

申请日：2014-06-17

Applicant: High Sec Labs Ltd.

Inventor： Aviv SOFFER

IPC: H04L9/32

CPC classification number: H04L9/3234 ,  G06F21/85

Abstract: A USB gateway connected to a plurality of host computers having a USB device port connect to a peripheral device; and a security circuitry. The security circuitry comprises: a pre-qualification microcontroller; a mode select switch connected to the peripheral device port and selectively connecting it to one of: the pre-qualification microcontroller; or to a host selector switch that switches among the plurality of connected host computes. An enumeration and reset detector is connected to the USB peripheral device port to monitor that port and casing the mode select switch to switch back to the pre-qualification microcontroller when the peripheral device is disconnected or reset. The pre-qualification microcontroller is capable of enumerating a connected peripheral device and controlling the gateway according to a table containing lists of: device qualifications, indication of which device can connect to each host, and direction of data flow between host and device. The table of peripheral device qualifications may be field re-programmed.

Abstract translation: 连接到具有连接到外围设备的USB设备端口的多个主机的USB网关; 和安全电路。 安全电路包括：资格预审微控制器; 连接到外围设备端口的模式选择开关，并选择性地将其连接到以下之一：预认证微控制器; 或者在多个连接的主机计算之间切换的主机选择器开关。 当外围设备断开或复位时，枚举和复位检测器连接到USB外围设备端口，以监视该端口并套接模式选择开关以切换回预认证微控制器。 资格预审微控制器能够枚举连接的外围设备并根据包含以下内容的表格来控制网关：设备资格，哪个设备可以连接到每个主机的指示以及主机和设备之间的数据流的方向。 外围设备资格表可以是现场重新编程的。