| CPC H04L 63/0263 (2013.01) [H04L 63/0236 (2013.01); H04L 63/105 (2013.01); H04L 63/20 (2013.01)] | 11 Claims |
|
1. A System-on-a-Chip (SoC) comprising:
computing resources configured to implement a root security manager, the computing resources comprising at least a first processor and a second processor;
system resources comprising hosts and devices, each of the devices having a firewall;
a virtualized first domain cluster comprising a plurality of first domains, a virtualized second domain cluster comprising a plurality of second domains;
the root security manager configured to:
assign the first processor to the first domain cluster to implement a first second-level security manager and the second processor to the second domain cluster to implement a second second-level security manager;
assign system resources to the first domain cluster and the second domain cluster; and
provide a domain cluster firewall configuration scheme between the first domain cluster and the second domain cluster;
the first second-level security manager and the second second-level security manager each configured to:
assign domain identifiers to each of the hosts and devices assigned to the first domain cluster and the second domain cluster respectively; and
provide a domain firewall configuration scheme for each of the first domains and second domains respectively;
a firewall controller implemented by the computing resources; the firewall controller configured to:
assign a domain cluster identification index to each of the hosts and the devices;
assign identifications to each of the first second-level security manager and the second second-level security manager;
assign domain identifications to the hosts and devices; and
configure firewall access permissions for each of the firewalls.
|