RU2850757C1 - Complex information protection device against leaks through technical channels - Google Patents

Abstract

FIELD: computer technology.

SUBSTANCE: device for comprehensive protection of information against leakage through technical channels contains a first controller, a sensor for opening the doors of a vehicle body, a detector of electromagnetic signals, a means of active protection consisting of a second controller, a potentiometer, a multi-channel noise signal generator, an antenna module, a noise generator, a power supply unit, a frequency synthesiser, a modulation unit, an amplifier unit, with the additional introduction of a noise filter, a voltage converter, a comparison unit, a sound source and an electric field sensor.

EFFECT: increased protection of restricted information from leakage through technical channels when it is processed on secure computing equipment.

1 cl, 1 dwg

Description

The invention relates to the field of computer technology and can be used to protect restricted information from leakage through technical channels when it is processed on secure computer equipment located in the van bodies of vehicles.

The purpose of the invention is to increase the security of restricted information from leakage through technical channels when it is processed on secure computing equipment located in the van bodies of vehicles, by continuously monitoring the state of the vehicle van body doors and the grounding circuit of the information technology facility and changing the level of the output radiation power of the active protection device when they are opened and the permissible characteristics of the grounding circuit are violated, as well as by monitoring radio signals from radio transmitting devices and suppressing them when detected at the information technology facility.

An invention known as "Device for increasing the security of information from leakage through a channel of side electromagnetic radiation and interference" (patent for invention of the Russian Federation No. 2827678 IPC G06F 21/75 (2013.01) dated 01.10.2024, Bulletin No. 28) comprises a housing, a display module with an interface cable located in the housing, wherein the interface cable contains a protective coating, the display module is provided with glass with a conductive coating pressed by a frame to the module, and their ends are glued with conductive adhesive tape, characterized in that a voltage converter, a microcontroller, a comparison unit, an electric field sensor connected to the comparison unit and the voltage converter are additionally introduced, wherein the comparison unit is also connected to the voltage converter, a sound source connected to the microcontroller and the comparison unit, an interference suppression filter connected to the voltage converter, when In this case, the microcontroller and display module are connected to the motherboard of the computing device, to any of its connectors for connecting peripheral devices, and the device body is connected to the grounding circuit of the information technology facility.

A disadvantage of this invention is that the device disables the operation of secure computing equipment, preventing its continued operation if the contact connection between the equipment and the grounding system is disrupted or the permissible characteristics of the grounding circuit are degraded. Furthermore, the device has low security, as it does not protect restricted information if the integrity of the vehicle's body is compromised, nor if exposed to portable industrial espionage equipment implemented via radio transmitters.

The closest to the proposed invention is the invention: "Device for protecting information from leakage through technical channels" (patent for invention of the Russian Federation No. 2836710 IPC G06F 21/75 (2013.01) dated 03/19/2025, Bulletin No. 8) containing a first controller, a sensor for opening the doors of a van body of a vehicle, an active protection means consisting of a control unit, which consists of a second controller and a potentiometer, a master noise generator, a multi-channel noise signal generator, an antenna module and a power supply unit, characterized in that an electromagnetic signal detector is additionally introduced, and a frequency synthesizer, a modulation unit and an amplifier unit are added to the active protection means, wherein the first controller is connected to the sensor, the electromagnetic signal detector and a computing means, which is connected to the second controller of the active protection means, the potentiometer is connected to the second controller, the master noise generator and the multi-channel a noise signal generator, which is connected to the antenna module, the power supply is connected to the master oscillator and frequency synthesizer, which is connected to the modulation unit and the second controller, and the amplifier unit is connected to the modulation unit and the antenna module.

The disadvantage of this invention is that the device has low security due to the fact that it does not provide protection for limited distribution information from leakage through the channel of side electromagnetic radiation, when it is processed on computer equipment in a protected design in the event of a break in the contact connection of this equipment with the grounding system and deterioration of the permissible characteristics of the grounding circuit.

The technical result is aimed at increasing the security of restricted information from leakage through technical channels during its processing on secure computing equipment located in the van bodies of vehicles, due to continuous monitoring of the state of the vehicle van body doors and the grounding circuit of the information technology facility and changing the level of the active protection equipment's radiation output power when they are opened and the permissible characteristics of the grounding circuit are violated, as well as due to monitoring radio signals from radio transmitting devices and suppressing them when detected at the information technology facility.

The technical result is achieved in that the invention, comprising a first controller, a vehicle van body door opening sensor, an electromagnetic signal detector, an active protection means consisting of a second controller, a potentiometer, a multi-channel noise signal generator, an antenna module, a noise master oscillator, a power supply unit, a frequency synthesizer, a modulation unit, an amplifier unit, additionally includes an interference suppression filter, a voltage converter, a comparison unit, a sound source, an electric field sensor, wherein the voltage converter is connected to the interference suppression filter, a protected computing device and a comparison unit, which is connected to the field sensor and the sound source, the first controller is connected to the sound source, the vehicle van body door opening sensor, the electromagnetic signal detector and a protected computing device, which is connected to the second controller of the active protection means, the potentiometer is connected to the second controller, the noise master oscillator and a multi-channel noise signal generator, which is connected to the antenna module, the power supply unit is connected to the master oscillator and a frequency synthesizer, which is connected to the modulation unit and the second controller, and the amplifier unit is connected to the modulation unit and the antenna module, and the interference suppression filter and power supply are connected to a 220 V electrical network, and the computing equipment in a protected design is connected to the grounding circuit.

A comparative analysis with the prototype shows that the proposed invention differs in the change in the design and the connection diagram of its elements, namely by introducing into it an interference suppression filter, a voltage converter, a comparison unit, a sound source, an electric field sensor, wherein the voltage converter is connected to the interference suppression filter, a protected computing device and a comparison unit, which is connected to the field sensor and the sound source, the first controller is connected to the sound source, a sensor for opening the doors of the vehicle van body, an electromagnetic signal detector and a protected computing device, which is connected to the second controller of the active protection device, the potentiometer is connected to the second controller, a noise master generator and a multi-channel noise signal generator, which is connected to the antenna module, the power supply unit is connected to the master generator and a frequency synthesizer, which is connected to the modulation unit and the second controller, and the amplifier unit is connected to the modulation unit and the antenna module, wherein the interference suppression filter and the power supply unit are connected to a 220 V electrical network, and the protected computing device is connected to the grounding circuit.

Changing the design and connection diagram of the elements, namely the introduction of an interference suppression filter, a voltage converter, a comparison unit, a sound source, an electric field sensor, wherein the voltage converter is connected to the interference suppression filter, a protected computing device and a comparison unit, which is connected to the field sensor and the sound source, the first controller is connected to the sound source, a sensor for opening the doors of the vehicle van body, an electromagnetic signal detector and a protected computing device, which is connected to the second controller of the active protection device, the potentiometer is connected to the second controller, a noise master oscillator and a multi-channel noise signal generator, which is connected to the antenna module, the power supply unit is connected to the master oscillator and a frequency synthesizer, which is connected to the modulation unit and the second controller, and the amplifier unit is connected to the modulation unit and the antenna module, wherein the interference suppression filter and the power supply unit are connected to a 220 V electrical network, and the protected computing device is connected to the grounding circuit makes it possible to increase the security of restricted information from leaks through technical channels during its processing on protected computing equipment located in the van bodies of vehicles, due to constant monitoring of the state of the van body doors of the vehicle and the grounding circuit of the information technology facility and changes in the level of the output power of the active protection equipment when they are opened and the permissible characteristics of the grounding circuit are violated, as well as due to monitoring of radio signals of radio transmitting devices and their suppression when detected at the information technology facility, and allows us to conclude that the claimed invention meets the criterion: "significant differences."

The device for comprehensive protection of information from leakage through technical channels is illustrated by a drawing.

The drawing shows a block diagram of the device, where: 1 is an interference suppression filter; 2 is a voltage converter; 3 is a comparison unit; 4 is a sound source; 5 is an electric field sensor; 6 is a sensor for opening the doors of the vehicle body-van, 7 is an electromagnetic signal detector, 8 is a first controller; 9 is a protected computing device; 10 is an active protection device consisting of 11 is a second controller, 12 is a potentiometer, 13 is a multichannel noise signal generator, 14 is an antenna module, 15 is a noise master oscillator, 16 is a power supply unit, 17 is a frequency synthesizer, 18 is a modulation unit, 19 is an amplifier unit, and operates under the control of the operating system of the protected computing device.

The device comprises: an interference suppression filter 1; a voltage converter 2; a comparison unit 3; a sound source 4; an electric field sensor 5; a sensor for opening the doors of the vehicle van body 6, an electromagnetic signal detector 7, a first controller 8; a computing device in a protected design 9; an active protection device 10 consisting of a second controller 11, a potentiometer 12, a multi-channel noise signal generator 13, an antenna module 14, a master noise generator 15, a power supply unit 16, a frequency synthesizer 17, a modulation unit 18, an amplifier unit 19, wherein the voltage converter 2 is connected to an interference suppression filter 1, a protected computing device 9 and a comparison unit 3, which is connected to a field sensor 5 and a sound source 4, the first controller 8 is connected to a sound source 4, a vehicle van body door opening sensor 6, an electromagnetic signal detector 7 and a protected computing device 9, which is connected to the second controller 11 of the active protection device 10, the potentiometer 12 is connected to the second controller 11, the master noise generator 15 and a multi-channel noise signal generator 13, which is connected to the antenna module 14, power supply 16 is connected to master oscillator 15 and frequency synthesizer 17, which is connected to modulation unit 18 and second controller 11, and amplifier unit 19 is connected to modulation unit 18 and antenna module 14, wherein interference suppression filter 1 and power supply 16 are connected to 220 V electrical network, and computing equipment in protected design 9 is connected to ground circuit.

The device operates as follows: the casing of the computing equipment 9 is connected to the grounding circuit of the information technology facility, the interference suppression filter 1 and the power supply unit 16 of the active protection device 10 are connected to a 220 V electrical network, the electric field sensor 5 is placed at a distance of 15 centimeters from the casing of the computing equipment in a protected design 9, the voltage converter 2, the computing equipment 9, the vehicle van door opening sensor 6, the electromagnetic signal detector 7 and the active protection device 10 are jointly started, when turning on and initializing the procedure for booting the operating system, the computing equipment 9 launches the software that requests control signals from the first controller 8, which are a digital code, in turn, the first controller 8 waits for the corresponding signals from the vehicle van door opening sensor 6, the electromagnetic signal detector 7 and the sound source 4, when the sensor 6 is opened, caused by the opening of the vehicle van doors, the voltage value on sensor 6 falls, the first controller 8 records the reduced voltage value on sensor 6, converts it into a digital code and sends it to computing equipment 9, the software processes the received code value and sends the corresponding command code to the second controller 11 of the active protection means 10, which converts it into a control signal and transmits it to potentiometer 12, while the master noise generator 15 continuously generates a broadband signal with a certain output power level, which in turn goes to potentiometer 12, potentiometer 12 receives the control signal from the second controller 11 and, based on it, sets the keys to the appropriate state, as a result of which the resistance value shifts downwards and the power level of the output signal of the master noise generator 15 increases, then the signal from potentiometer 12 goes to multi-channel noise signal generator 13, where N narrowband noise signals are generated in specified frequency ranges and transmitted to antenna module 14, which emits them in space, when the sensor 6 is closed, caused by the closing of the doors of the van body of the vehicle, the voltage value on the sensor 6 increases, the first controller 8 records the increased voltage value on the sensor 6, converts it into a digital code and sends it to the computing device 9, the software processes the received code value and sends the corresponding command code to the second controller 11 of the active protection means 10, which converts it into a control signal and transmits it to the potentiometer 12, the potentiometer 12 receives the control signal from the second controller 11 and, based on it, sets the keys to the appropriate state, as a result of which the resistance value shifts upward and the power level of the output signal of the master noise generator 15 decreases, in turn, the power level of the master noise generator 15, to which it is necessary to change its operation, is determined for the specific conditions of its use, taking into account the provision of the established standard for information protection at the boundary of the controlled zone of the operated information technology facility and is established by instrumental measurements during the certification of information technology facilities located in van bodies of vehicles, in compliance with information security requirements.

When the integrity of the grounding circuit of the housing of the computing equipment 9 is violated, the network interference suppression filter 1 forms a capacitive divider and a voltage approximately equal to half the supply voltage appears on the housing 9 relative to the conductors of the power supply network, as a result, the level of the electric component of the field of the screen of the computing equipment 9 increases significantly, the electric field sensor 5 records the corresponding level and transmits it to the comparison unit 3, which compares it with the value of the voltage level coming from the voltage converter 2 and sets a logical one signal at its output, as a result, the voltage goes to the sound source 4, which emits an audible signal about the violation of the grounding circuit, the voltage value in the form of an analog signal is recorded by the first controller 8, which converts it into a digital code and sends it to the motherboard of the computing equipment 9, the software performs processing of the received code value and sends the corresponding command code to the second controller 11 of the active protection means 10, which converts it into a control signal and transmits it to the potentiometer 12, the potentiometer 12 receives the control signal from the second controller 11 and on its basis sets the keys to the appropriate state, as a result of which the resistance value shifts downwards and the power level of the output signal of the master noise generator 15 increases, then the signal from the potentiometer 12 goes to the multi-channel noise signal generator 13, where N narrowband noise signals are formed in specified frequency ranges and transmitted to the antenna module 14, which radiates them into space, when the integrity of the grounding circuit of the housing of the computing equipment 9 is restored, its electromagnetic field is caused by the flow of leakage currents and interference to the ground and is characterized by a relatively low level, the electric field sensor 5 records the corresponding level and transmits it to the comparison unit 3, which compares it with the value of the voltage level coming from the voltage converter 2 and sets at its output a logical zero signal with a voltage close to the negative supply voltage of the comparison unit 3, as a result, voltage does not go to the sound source 4, voltage in the form of an analog signal also does not go to the first controller 8, which records the absence of voltage and carries out the transmission the corresponding digital code to the motherboard of the computing device 9, the software performs processing of the received code value in accordance with the developed algorithm and sends the corresponding command code to the second controller 11, which converts it into a control signal and transmits it to the potentiometer 12, the potentiometer 12 receives the control signal from the second controller 11 and on its basis sets the keys to the corresponding state, as a result of which the resistance value shifts upward and the power level of the output signal of the master noise generator 15 decreases and becomes equal to zero, accordingly the signal from the potentiometer 12 to the multi-channel noise signal generator 13 does not arrive, the formation of N narrow-band noise signals in the specified frequency ranges and their emission into space is not carried out.

In turn, the electromagnetic signal detector 7 continuously scans the frequency range, wherein the power level and the dynamic range of radio signals of radio transmitting devices scanned by the electromagnetic signal detector 7 are adjusted by changing the settings of the electromagnetic signal detector 7, when the electromagnetic signal detector 7 detects a radio signal of a mobile communication device or a bug at the information facility, the detector 7 determines the characteristics of the radio signal and, in the event of a threat, generates and transmits, by means of the first controller 8, a digital code to the computing equipment 9, the software processes the received code value and sends the corresponding command code to the second controller 11 of the active protection means 10, which, on its basis, sets the frequency synthesizer 17 to the frequency of the signal generated by it, necessary for suppressing, wherein the software generates a control signal for a period of time set in accordance with the software timer, in turn, when writing the software code for the software, a software timer, an initial value, a value for the response time, as well as a time interval for sending a control signal to the frequency synthesizer 17, the frequency synthesizer 17 generates a reference signal with the corresponding frequency specified by the second controller 11 and feeds it to the modulation unit 18, the modulation unit 18 changes the properties of the reference signal of the frequency synthesizer 17, thereby creating a noise signal necessary for suppression and feeds it to the amplifier unit 19, which amplifies the signal power to the level necessary for suppression of the electromagnetic signals detected by the detector 7 of radio transmitting devices, then the amplified noise signal from the amplifier unit 19 goes to the antenna module 14, which emits a noise signal into space, after the end of the software timer, the software generates and sends a corresponding command code to the second controller 11 of the active protection means 10, which, on its basis, turns off the frequency synthesizer 17, as a result of which the noise signal for suppression is not created and is not emitted into space, then the software, through the first controller 8, requests from the electromagnetic signals detector 7 the presence of previously and newly detected radio signals of radio transmitting devices, upon their detection, a repeated generation and supply of a control signal to frequency synthesizer 17 for generating the corresponding frequency required to suppress the detected radio signals according to the previously described algorithm.

Thus, when using the proposed device, the security of restricted information from leakage through technical channels will be increased when it is processed on secure computing equipment located in the van bodies of vehicles, due to the constant monitoring of the state of the vehicle van body doors and the grounding circuit of the information technology facility and the change in the level of the active protection equipment's radiation output power when they are opened and the permissible characteristics of the grounding circuit are violated, as well as due to the monitoring of radio signals from radio transmitting devices and the implementation of their suppression when detected at the information technology facility.

Claims (1)

A device for comprehensive protection of information from leakage through technical channels, comprising a first controller, a vehicle van body door opening sensor, an electromagnetic signal detector, an active protection means consisting of a second controller, a potentiometer, a multi-channel noise signal generator, an antenna module, a noise master oscillator, a power supply unit, a frequency synthesizer, a modulation unit, an amplifier unit, characterized in that an interference suppression filter, a voltage converter, a comparison unit, a sound source, an electric field sensor are additionally introduced, wherein the voltage converter is connected to the interference suppression filter, a protected computing device and a comparison unit, which is connected to the field sensor and the sound source, the first controller is connected to the sound source, the vehicle van body door opening sensor, the electromagnetic signal detector and a protected computing device, which is connected to the second controller of the active protection means, the potentiometer is connected to the second controller, the noise master oscillator and the multi-channel noise signal generator, which is connected to the antenna module, the unit The power supply is connected to the master oscillator and frequency synthesizer, which is connected to the modulation unit and the second controller, and the amplifier unit is connected to the modulation unit and the antenna module, with the interference suppression filter and power supply unit connected to a 220 V electrical network, and the protected computing equipment is connected to the grounding circuit.